Senior Security Engineer, AWS Proactive Security

Job ID: 2721293 | Amazon Development Center U.S., Inc.

The Amazon Web Services (AWS) Proactive Security team continuously works to ensure our services and resources are implemented and maintained to meet the highest standards of security. Our mission is to prevent security incidents from happening and when they do, we detect and mitigate them in real time.

We are looking for a Senior Security Engineer who has a strong passion for security-at-scale. We develop tools and prototypes to automatically detect and prevent security problems in AWS source code, services, and resources. Our team deals with immense quantities of resources and we use cutting-edge analysis techniques to solve the most complex security issues at scale.

You will use your security expertise to define new tooling domains and build new security-focused products within AWS Security. You will collaborate with Builders, Security Analysts, and Applied Scientists to drive security improvements. The ideal candidate combines technical acumen with an ability to lead by influence and communicate clearly. Technically, you will be a security generalist with one or more areas of deep expertise. You will communicate risks across the business to both technical and non-technical audiences, and effectively harmonize disparate opinions while reducing risk.

Key job responsibilities

  1. Research, identify, and prioritize security problems that can be detected using automation.
  2. Effectively drive conversations with Principal Engineers, Directors, and VPs to influence business investments and prioritize risks.
  3. Develop detection prototypes for these security problems to enhance our tool-set for static, dynamic, or network analysis. Provide security architecture and design guidance and develop security automation tools.
  4. Work with Builders and service teams to address detected security issues in an appropriate and timely fashion.
  5. Identify opportunities to prevent security issues at scale.
  6. Document and provide security guidance that will be used across AWS services.
  7. Deliver metrics to show the effectiveness of our security initiatives.
  8. Mentor and develop teammates both technically and professionally.
  9. Seek out, develop, and advocate for new technology to research, identify, and mitigate complex risks.
  10. Effectively navigate novel situations and problems that do not have a defined solution.

BASIC QUALIFICATIONS

- BS in Computer Science, Information Security, or equivalent
- Minimum of 5 years of experience with any combination of the following: mobile security, threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration, and network security
- Knowledge and understanding of security engineering, system and network security, authentication and security protocols, cryptography, or application security
- An understanding of network and web-related protocols (such as, TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)
- Experience with multiple programming languages (such as, Java, C++, Ruby, Python, Perl, etc.)

PREFERRED QUALIFICATIONS

- Experience managing and delivering security solutions at scale
- Demonstrated experience collaborating with other security engineers and developers to deliver complex projects
- Experience with AWS or similar enterprise cloud computing platforms
- Knowledge of Linux systems and operating system internals
- Excellent written and verbal communication skills with the ability to convey technical information to a wide variety of audiences; and strong and creative problem-solving abilities
- Strong sense of ownership, urgency, and drive

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.

#J-18808-Ljbffr