Security Engineer, AWS Security
About The Position
We're looking for a Security Engineer to join the team that secures the foundational compute and networking systems powering AWS — the systems behind EC2, Nitro, EBS, VPC, and more. You'll work directly with service teams across some of the most critical systems in cloud computing to find and fix security risks before they become problems. You will design security controls and provide architectural guidance for systems that operate at massive scale and underpin everything from generative AI workloads to the core cloud platform millions of customers depend on. You'll also work closely with fast-paced engineering teams to pioneer new ways of securing AI-first and AI-native development, shaping how security keeps up as the industry transforms.
Requirements
- 3+ years of scripting, programming, and security code review in a common programming language (non-internship) experience
- 3+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience
- Knowledge of industry-based security vulnerabilities and remediation techniques
- Knowledge of networking protocols such as HTTP, DNS and TCP/IP
- Bachelor's degree in computer science or other related discipline
- Demonstrated experience using AI/ML tools and techniques to solve security problems, such as automating threat detection, triaging vulnerabilities, or augmenting code review and security analysis workflows
Nice To Haves
- 5+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience
- Experience performing security activities across one or more phases of the software development lifecycle (SDLC), such as security design review, threat modeling, secure code review, and security testing
- Hands-on experience with AI-native development practices.
Responsibilities
- Design, build, and maintain automated security guardrails and paved paths that enable secure-by-default practices
- Engage early with development teams at the ideation and design stage to embed security into applications from the start, providing guidance on secure architecture and coding practices
- Build automated, continuous security assessment capabilities that replace manual security reviews and scale across our business unit
- Contribute code for security fixes and paved path solutions directly alongside developers, making the secure path the easy path
- Partner with developers to build scalable, self-service security tools that enable teams to identify and remediate security risks without bottlenecking on security teams
- Design and implement preventive and detective security controls that provide continuous assurance rather than point-in-time assessments
- Collaborate with security stakeholders to define and drive the long-term security strategy and participate in periodic on-call rotations to support security incidents
- Leverage AI tools and techniques to accelerate security assessments, automate threat detection, and drive innovation in how we secure systems at scale
Benefits
- health insurance (medical, dental, vision, prescription, Basic Life & AD&D insurance and option for Supplemental life plans, EAP, Mental Health Support, Medical Advice Line, Flexible Spending Accounts, Adoption and Surrogacy Reimbursement coverage)
- 401(k) matching
- paid time off
- parental leave
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
