Staff Security Engineer - Vulnerability Management and IAM at Mozilla

Posted on:
January 5, 2023

🔭 Our mission & vision

Job Description

Hiring Ranges:

US Tier 1 Locations: $163,000 USD - $239,000 USD

US Tier 2 Locations: $150,000 USD - $220,000 USD

US Tier 3 Locations: $138,000 USD - $203,000 USD


To learn more about our Hiring Range System, please click this link.

Mozilla’s ITEO Security Engineering Team is looking for an experienced Security Engineer to help drive key programs as we continue to modernize and scale our environment. You will have direct responsibility for engineering systems in areas such as vulnerability management, IAM/PAM, and related infrastructure. You will also be involved in all other aspects of our SecEng team’s duties.

You will be hardening and guiding recommendations for Mozilla’s systems and networks, infrastructure, application security services, and company assets, while ensuring the mission of privacy and security is upheld at all times. This is a hands-on role, however you will work with many teams to guide proper security practices throughout the company as well.

As a Staff Security Engineer at Mozilla, you will…

Design, build and deploy vulnerability management frameworks and technologies across Mozilla Corporation

Work with the Risk Assurance team to ensure that our policies and governance are well written and achievable

Review and improve IAM systems across MoCo. This will include new designs and implementation, as well as ensuring other teams are successfully integrated

Design, review and improve the security controls of the organization alongside other SecEng engineers

Write, maintain, and expand automation scripts and monitoring tools

Protect the services which Mozilla Corporation and our products like Firefox and others depend on from attacks and abuses

Work with developers and operations teams across the organization to keep the Firefox backend infrastructure safe

Your Professional Profile

This role will likely involve some development work as we build and improve our security tools and automation. You should be proficient in Python, and Go is a definite plus as well. You should also feel comfortable running cloud infrastructure for the code you write and documenting your applications for other ops teams to run with.  Additional skills include:

Strong infrastructure and application security knowledge, including popular web stacks, SaaS platforms, AppSec concepts, and security methodologies

A thorough understanding of vulnerability management beyond scanning tools. Vuln Management Program experience is key, along with creative thinking on how vulns exist and come to be - especially in a software development / DevSecOps environment such as ours

You know how modern IAM and PAM are designed and implemented, especially in mixed public cloud environments and SaaS integrations

A B.S. in Computer Science is fantastic, but real-world experience is preferred

About Mozilla 

Mozilla exists to build the Internet as a public resource accessible to all because we believe that open and free is better than closed and controlled. When you work at Mozilla, you give yourself a chance to make a difference in the lives of Web users everywhere. And you give us a chance to make a difference in your life every single day. Join us to work on the Web as the platform and help create more opportunity and innovation for everyone online.

Commitment to diversity, equity, inclusion, and belonging

Mozilla understands that valuing diverse creative practices and forms of knowledge are crucial to and enrich the company’s core mission.  We encourage applications from everyone, including members of all equity-seeking communities, such as (but certainly not limited to) women, racialized and Indigenous persons, persons with disabilities, persons of all sexual orientations, gender identities, and expressions.

We will ensure that qualified individuals with disabilities are provided reasonable accommodations to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment, as appropriate. Please contact us at to request accommodation.

We are an equal opportunity employer. We do not discriminate on the basis of race (including hairstyle and texture), religion (including religious grooming and dress practices), gender, gender identity, gender expression, color, national origin, pregnancy, ancestry, domestic partner status, disability, sexual orientation, age, genetic predisposition, medical condition, marital status, citizenship status, military or veteran status, or any other basis covered by applicable laws.  Mozilla will not tolerate discrimination or harassment based on any of these characteristics or any other unlawful behavior, conduct, or purpose.


Group: C


Req ID: R1891

Responsibilities & tasks

Ideal candidate

Skills & qualifications

About the team

How to apply

Is something wrong with this job posting? Doesn't match your idea of good?
Let us know and help us maintain the quality of jobs.

Apply for this job

Similar jobs


No related jobs

Want to stay up to date of all new job openings poping up? Subscribe to our newsletter to receive great jobs every week.

Thanks for joining our newsletter.
Oops! Something went wrong.