About Canoo

If you're intrigued by the dream of working alongside the smartest & most revolutionary designers and engineers in the EV space, Canoo just may be the place for you. Are you a person who is irked by the status quo? Do you derive personal satisfaction from doing something you've never done before, and seeing that work actually put into production? Here at Canoo, every day is vastly different from the one before it, as we're moving swiftly toward our goal of changing the way the world looks at Urban Mobility. We’re a well-funded start-up, led by the who's who of EV business leaders, whose passion brought them together on this special mission. We're diligently preparing for our first vehicle launch and looking for deeply experienced and passionate talent, who are not just looking for a “job," but rather are driven to raise the bar and create new benchmarks within the global EV industry. Read on...

Job Purpose

The Cloud Security Engineer is responsible for the design and implementation security architectures for protecting cloud-based application and data.


  • Create security requirements for engineering application and data.
  • Work with software developer to implement security requirement in application.
  • Work with IT security governance to implement and validate compliance to overall enterprise security policies.
  • Serve as SME for other teams within canoo for all matters related to AWS cloud security.


  • Design and develop security architecture for AWS cloud-based application.
  • Implement security policies (IAM, S3 bucket, IoT Core) using principle of least privilege.
  • Audit, report overly permissive of AWS IAM policies, S3 bucket policy, IoT core polices.
  • Configure monitoring dashboard to alert any security violations, threat detection using AWS CloudWatch, GuardDuty, Security Hub or external monitoring tool such as Datadog.
  • Integrate AWS Single-Sign-On with 3rd party Identity management like Okta, AzureAD
  • Design and implement Public Key Infrastructure
  • Strong understanding of AWS security services offerings: IAM, WAF, S3 bucket policy, CloudTrail, Config, KMS, Cognito.
  • Understanding of CCPA and GDPR compliance
  • Good knowledge of common and industry standard like PCI DSS Compliance, authentication and authorization mechanisms like OAuth2

What's Cool About Working Here...

  • Four months paid primary care giver leave.
  • Flexible PTO
  • Participation in the Employee Share Option Plan
  • Beautiful new facility in Torrance
  • Casual workplace with an unbelievable feeling of energy
  • Work in a high growth start up that will redefine urban mobility.
  • A world-class team. Most of our leaders have their own Wikipedia page.

Canoo is an equal opportunity-affirmative action employer and considers all qualified applicants for employment based on business needs, job requirements and individual qualifications, without regard to race, color, religion, sex, age, disability, sexual orientation, gender identity or expression, marital status, past or present military service or any other status protected by the laws or regulations in the locations where we operate.