Amazon Security Engineer

Job is more than 1 month old.

Job Details

Posted date: Aug 01, 2024

There have been 29 jobs posted with the title of Security Engineer all time at Amazon.
There have been 29 Security Engineer jobs posted in the last month.

Location: Seattle, WA

Estimated salary: $174,400
Range: $136,000 - $212,800


Description

Amazon's Offensive Security Research team is seeking a Security Engineer II to join our mission of protecting customer data and keeping Amazon secure. You will partner with cutting-edge engineering teams to uncover vulnerabilities, design novel abuse scenarios, and assess large-scale security solutions across Amazon's products, services, and infrastructure.

In this role, you will leverage your skills in vulnerability assessment, exploitation, penetration testing, and red teaming to identify and mitigate risks. Your work will span source code analysis, network penetration, and application exploitation. You will design, implement, and execute methodologies for security assessments of critical Amazon systems. You will be exposed to the full breadth of technology used across Amazon and it’s subsidiaries, influence security architectures, and communicate risks to Senior Executives.

You must demonstrate resilience, navigating ambiguity with composure and tact. This role requires technical depth coupled with the ability to operate independently and as part of highly-skilled teams.

Key job responsibilities

- Conduct full-cycle security engagements spanning vulnerability discovery, exploitation, risk analysis, and remediation planning

- Perform security assessments including design reviews, threat modeling, and penetration testing on production software, hardware, networks, and cloud services

- Develop novel abuse scenarios and campaigns to push boundaries and enhance Amazon's security

- Build large-scale security solutions for testing, monitoring, remediation, analytics, and automation across Amazon

- Collaborate with development teams to create cutting-edge security tooling and enable secure software practices

- Demonstrate exceptional judgment, integrity, technical expertise, business acumen, and communication skills

- Prepare and deliver authoritative recommendations to technical teams and leadership



Qualifications

- 4+ years experience in offensive and/or defensive security roles

- Bachelor's degree in Computer Science, related fields, or equivalent experience

- Proficiency in multiple programming and scripting languages like Python, Ruby, Bash, C, and Java

- Hands-on experience with security testing tools and techniques



Extended Qualifications

- Domain expertise in at least two of: security architecture and engineering, communication and network security, identity and access management (IAM), security assessment and testing, cryptography, software development security, and reverse engineering.

- Exceptional written/verbal communication skills to inform technical and leadership audiences

- Vulnerability research experience with complex software and hardware components

- Cloud computing (AWS), virtualization, containerization architecture knowledge

- Experience with the design and implementation of technical security controls at the business division level.

- Microservices, APIs, distributed systems experience

- Strong data analysis abilities to derive insights from security signals

- Participation in bug bounty programs

- Experience building scalable, reusable security frameworks and tools

- Web service assessment experience with authentication controls, session management, access controls, logic flaws, injection vulnerabilities, request smuggling, cloud privilege escalation, DOS attacks

- Experience using boto3

- Ability to navigate ambiguity, make tough technical decisions, and drive initiatives

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.

Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $136,000/year in our lowest geographic market up to $212,800/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits. This position will remain posted until filled. Applicants should apply via our internal or external career site.



Check out other jobs at Amazon.