Amazon.com

Security Engineer - Application and Architecture Security, Vulnerability Management

Company: Amazon.com

Location: Austin, TX, United States

Posted on: September 23

Job details

Job Type
Full-time

Full Job Description

  • Bachelors degree in Computer Science, Information Security, Engineering or equivalent industry experience
  • 3+ years of security engineering experience
  • Experience in threat modeling or other risk identification techniques

Job summary
The Team: How often have you had an opportunity to be a founding member of a team that is tasked with solving a huge business problem through technology innovations? Would you like to know more about how cutting edge in computer science like computer vision and machine learning can be used to solve these problems? If this sounds intriguing, then wed like to talk to you about a role on a new Amazon initiative. We are highly entrepreneurial, wear many hats, and work in a highly collaborative environment thats more startup than a big company.

The Role: As a Security Engineer you will help ensure our applications and services are designed and implemented to the highest standards. If you enjoy analyzing the security of applications and services, discovering and addressing security issues and quickly reacting to new threat scenarios, this position will provide you with a challenging opportunity. You will participate in security audits, risk analysis, vulnerability testing and security reviews across all elements of this project's software systems.

This role will draw on multiple disciplines:
  • Security Engineering: emphasis on operating systems and networking, foundational Internet services, modern exploitation techniques, and hacking tools.
  • Software Development: ability to develop your own small tools and scripts to aid in data processing or other aspects of an investigation.
  • Threat modeling: Identify and quantify threats and recommend remediation methods.

You will tackle challenging, novel situations every day and given the size of this initiative, youll have the opportunity to work with multiple technical teams at Amazon in different locations. You should be comfortable with a high degree of ambiguity and relish the idea of solving problems that havent been solved at scale before. Along the way, we guarantee that youll learn a ton, have fun and make a positive impact on millions of people.

  • Knowledge of system security vulnerabilities and remediation techniques
  • Familiarity with common attack patterns and exploitation techniques
  • Experience with manual and automated static code analysis for languages such as Java, C++, and C#
  • Master's degree in computer science, information security, engineering, or equivalent.
  • Experience working with development teams that have delivered enterprise software, commercial software, or software-based services.
  • Experience with dynamic web application security testing with tools such as Burp Suite.
  • Ability to write proof-of-concept exploits for vulnerabilities.
  • Experience with AWS-specific technologies.
  • Solid understanding of cryptographic fundamentals.
  • Scripting skills for automation purposes.
  • Experience with fuzzing.
  • Experience with reverse engineering tools such as IDA Pro, Ghidra, etc.
  • Experience with software defined networking in public cloud environments.

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.

Hiring Insights

Job activity

Posted Today

Similar Jobs