Security Engineer, AmSec

About The Position

Requirements

• 2+ years of web protocols, common security attacks, and remediation (non-internship) experience
• Bachelor's degree in Engineering, Computer Science, or a related field
• Knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits or equivalent
• Experience solving basic problems by writing code or scripts with some assistance

Nice To Haves

• Experience with AWS services or other cloud offerings
• Experience evaluating security of Generative Artificial Intelligence (GenAI) applications

Responsibilities

• Perform technical deep-dive security assessments of third-party services across diverse and well-defined use cases, including AI/ML integrations, cloud architectures, and services handling sensitive customer data
• Identify and trace data flows through complex systems, evaluating where security controls are lacking or require supplementation
• Evaluate vendor penetration test reports, assessing finding applicability and severity within the context of each engagement
• Threat model third-party use cases to rapidly surface sharp edges and drive risk-proportionate decisions
• Contribute to AI-powered security tooling that automates and scales review decisions across the organization
• Clearly communicate identified risks and recommendations to service teams and leadership, driving resolution through escalation when needed
• Improve security baselines, decision rubrics, and implementation patterns for novel third-party use cases

Benefits

• sign-on payments
• restricted stock units (RSUs)
• health insurance (medical, dental, vision, prescription, Basic Life & AD&D insurance and option for Supplemental life plans, EAP, Mental Health Support, Medical Advice Line, Flexible Spending Accounts, Adoption and Surrogacy Reimbursement coverage)
• 401(k) matching
• paid time off
• parental leave