Security Engineer I, Healthcare Security

Amazon•Austin, TX

5d•Onsite

About The Position

At Amazon Healthcare Security, we are on a mission to make healthcare secure and easy. We are developing a patient-centric healthcare experience that is personal, transparent, and convenient. We are looking for a Security Engineer to join our team. As a Security Engineer, your responsibility is to ensure AHS customer data, devices, and systems are secure, resilient, and compliant. Your teammates are a global team of security engineers, software developers, and technical program managers dedicated to continuously raising the security bar. A Security Engineer at Amazon will be strong in multiple security domains and sought out for advice on technical issues. You must show sound judgment in making technical trade-offs between short and long-term security and business goals, demonstrate resilience, and navigate difficult situations with composure and tact. You must handle multiple difficult challenges, make risk-based assessments founded on data and facts, and deliver results under uncertainty.

Requirements

Bachelor's degree in Engineering, Computer Science, or a related field
2+ years of web protocols, common security attacks, and remediation (non-internship) experience
Knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits or equivalent
Experience with web protocols, common security attacks, and remediation (non-internship)
Experience solving basic problems by writing code or scripts with some assistance

Nice To Haves

Experience with AWS services or other cloud offerings
Experience with any combination of the following: threat modeling, secure coding, identity management and authentication, software development, cryptography, system administration and network security
Experience in complex problem solving, and working in a tight schedule environment
Experience in information security and compliance
Experience with vulnerability risk and impact assessment

Responsibilities

Embed throughout the development lifecycle of high-risk health programs, from ideation through implementation.
Assist with the secure architecture of Health systems across diverse ecosystems.
Provide remediation and mitigation guidance to development teams.
Participate in developer team architecture and strategy meetings; serve as a sounding board and guide for architectural considerations regarding access control and systems integration.
Consult on secure development practices and secure-by-default opportunities.
Provide security subject matter expertise to the Product Security team and development teams.
Provide security knowledge and advocate for developer needs while maintaining security standards.
Integrate security guidance into builder frameworks across the development lifecycle to identify and prevent security issues before deployment.
Design security automation and select tooling to improve detection of application vulnerabilities and assist in remediation of findings.
Develop detection prototypes for static and dynamic analysis.
Automate Application Security processes at scale.
Document security guidance for Amazon Security.
Deliver metrics showing initiative effectiveness.
Identify opportunities to prevent security problems at scale and improve developer velocity.
Address detected security problems with builders and service teams.
Develop products and processes for Application Security services.
Period on-call responsibilities and occasional travel.

Benefits

health insurance (medical, dental, vision, prescription, Basic Life & AD&D insurance and option for Supplemental life plans, EAP, Mental Health Support, Medical Advice Line, Flexible Spending Accounts, Adoption and Surrogacy Reimbursement coverage)
401(k) matching
paid time off
parental leave
sign-on payments
restricted stock units (RSUs)

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume