Security Engineer, CS Security
About The Position
Are you passionate about delivering innovative security solutions and protecting millions of customers through a blend of deep security expertise, hands-on coding, and building scalable security guardrails and paved paths? The Customer Service Application Security team is looking for a talented and results-driven Security Engineer to help shape how Amazon protects customer data through secure-by-design principles. In this role, you'll be a trusted security partner to development teams – reviewing application designs for security gaps, providing guidance on secure coding practices, and rolling up your sleeves to contribute code for security fixes directly alongside developers. You'll conduct threat modeling, evaluate system architecture to ensure sound security design, and leverage AWS services and modern development practices to transform manual security processes into scalable solutions. You’ll embed secure-by-default practices into applications early and throughout the software development lifecycle through guardrails and paved path solutions. If you're a security engineer who loves writing code, thrives on partnering with developers, and is excited about solving complex security challenges, join our team and help define the future of application security at Amazon.
Requirements
- Bachelor's degree in computer science or equivalent
- 3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language experience
- Knowledge of networking protocols such as HTTP, DNS and TCP/IP
Nice To Haves
- 2+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience
- Experience with AWS products and services
- Experience implementing security solutions at the business division level or equivalent
- Experience in identifying security issues and risks, and developing mitigation plans
- Experience leveraging Large Language Models (LLMs) to automate and scale security, with a strong understanding of associated security risks and mitigation strategies
Responsibilities
- Design, build, and maintain automated security guardrails and paved paths that enable secure-by-default practices across Amazon's technology landscape
- Engage early with development teams at the ideation and design stage to embed security into applications from the start, providing guidance on secure architecture and coding practices
- Build automated, continuous security assessment capabilities that replace manual security reviews and scale across our business unit
- Contribute code for security fixes and paved path solutions directly alongside developers, making the secure path the easy path
- Partner with developers to build scalable, self-service security tools that enable teams to identify and remediate security risks without bottlenecking on security teams
- Design and implement preventive and detective security controls that provide continuous assurance rather than point-in-time assessments
- Collaborate with security stakeholders to define and drive the long-term security strategy and participate in periodic on-call rotations to support security incidents
Benefits
- health insurance (medical, dental, vision, prescription, Basic Life & AD&D insurance and option for Supplemental life plans, EAP, Mental Health Support, Medical Advice Line, Flexible Spending Accounts, Adoption and Surrogacy Reimbursement coverage)
- 401(k) matching
- paid time off
- parental leave
- sign-on payments
- restricted stock units (RSUs)
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
