Senior Security Engineer, Audible Security
Amazon•Cambridge, MA
1d
About The Position
As a Security Engineer at Audible you will advocate for information security throughout all our software development and business processes. You will work with other Security Engineers, Application Developers, System Engineers, and Business Stakeholders to protect our customers and Audible’s business. Audible Information Security team is looking for an experienced Security Engineering Leader to join our world class team. We are obsessed with protecting customer trust. We are a hands-on team working to protect our computer networks, servers, applications and data assets.
Requirements
- Experience working as a technical lead
- BS in Cybersecurity or Computer Science, or other relevant degree
- 7+ years experience in security engineering in multiple areas including: application security, SDLC, penetration testing, manual code review, GenAI security, cyber-resiliency, incident response, and risk mitigation
- Experience in using standard Security Assessment and Penetration Testing tools
- Experience in formal threat modeling
- Proven experience with information security principles and the Common Body of Knowledge
- Experience in advocating security best practices for third party integrations
- Experience in scripting, programming, and security code reviewing
- Knowledge of industry-based security vulnerabilities and remediation techniques
Nice To Haves
- Master's degree in Cybersecurity, Information Security, or a related field
- Experience leveraging GenAI to build security tools or automate operations
- DDoS and Bot Protection knowledge
- Excellent writing and verbal communication skills
- Expert knowledge of web and mobile application vulnerabilities, attacks, and mitigation methods Demonstrated experience using communication skills to advocate security for both technical and non-technical audiences
- Sharp analytical abilities and proven innovation skills to unblock adoption of security mechanisms
- Relevant industry certifications (e.g., SANS/GIAC, OSCP/OSWA/OSWE, CompTIA, Microsoft, Linux, AWS)
Responsibilities
- Contribute to designing, implementing, and executing security review and test methodologies for recurring testing of critical production services
- Partner with service teams to ensure risks are remediated
- Conduct design review, threat modeling, security review, and penetration testing on production systems
- Scope and perform penetration testing and vulnerability research on complex proprietary software and hardware
- Leverage GenAI to build solutions to help scale security efficiently and reduce friction for developers
- Collaborate with internal development teams at Audible and Amazon to enhance security tooling and functionality at scale
- Prepare and present detailed, written technical information for internal and external audiences
- Provide guidance on risk, compliance, and policy to technical and non-technical internal customers, including security training and outreach to internal teams and external supply chain partners
Benefits
- health insurance (medical, dental, vision, prescription, Basic Life & AD&D insurance and option for Supplemental life plans, EAP, Mental Health Support, Medical Advice Line, Flexible Spending Accounts, Adoption and Surrogacy Reimbursement coverage)
- 401(k) matching
- paid time off
- parental leave
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Upload and Match Resume
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
