Security Engineer III - AMZ9725544
About The Position
Perform application security reviews including architecture reviews, threat modeling, code reviews and security testing to help AWS development teams to launch new products and services security. Drive proactive security initiatives and programs to help improve the security posture of AWS products and services and help drive down security risks. Conduct application security reviews, develop threat models for AWS services, review designs, analyze application codes and perform security testing. Drive engagement with AWS development teams and other security teams. Coordinate with internal customers to ensure parity in Amazon security bar across teams. Develop security tooling, automation and guidance to help with seamless integration of security into AWS products and services. Resolve ambiguities and developing alterative plans to minimize technical risks. Train and educate junior members in the team to perform security reviews. Develop runbooks, security guidance and other documentation for other security engineers and development teams.
Requirements
- Bachelor's degree or foreign equivalent degree in Computer Science, Engineering, Information Systems or Technology, Mathematics, or a related field and three years of experience in the job offered or a related occupation.
- Must have one year of experience in the following skills: (1) application and infrastructure information security; (2) application of threat modeling or other risk identification techniques; (3) knowledge of system security vulnerabilities and remediation techniques, including penetration testing, source code review, configuring advanced runtime and static vulnerability testing tools and the development of exploits; (4) programming in Java, C, C++, Perl, Ruby or Python; (5) coordinating responsibility of technical security tasks; (6) working with network and web related protocols, including TCP/IP, UDP, IPSEC, HTTP, HTTPS, and related routing protocols; (7) experience with common attack patterns, fuzzing, dynamic code assessment, and exploitation techniques for web and mobile applications; and (8) working with cloud native services in AWS, Azure, or GCP.
Responsibilities
- Perform application security reviews including architecture reviews, threat modeling, code reviews and security testing to help AWS development teams to launch new products and services security.
- Drive proactive security initiatives and programs to help improve the security posture of AWS products and services and help drive down security risks.
- Conduct application security reviews, develop threat models for AWS services, review designs, analyze application codes and perform security testing.
- Drive engagement with AWS development teams and other security teams.
- Coordinate with internal customers to ensure parity in Amazon security bar across teams.
- Develop security tooling, automation and guidance to help with seamless integration of security into AWS products and services.
- Resolve ambiguities and developing alterative plans to minimize technical risks.
- Train and educate junior members in the team to perform security reviews.
- Develop runbooks, security guidance and other documentation for other security engineers and development teams.
Benefits
- equity
- sign-on payments
- medical
- financial
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
