• Senior Security Engineer

    Location US-WA-Seattle
    Posted Date 2 months ago(1/3/2019 3:05 PM)
    Job ID
    Company/Location (search) : Country (Full Name)
    United States
  • Job Description

    Are you excited at the prospect of keeping millions of customers’ data safe? Are you passionate about helping customers protect their most precious memories? Security is the #1 concern of customers storing their memories in Amazon Photos. If you're excited by security at massive scope, cloud computing, significant customer impact, big data, and securing scalable systems that process massive amounts of data, we want to talk to you!

    Amazon Photos is looking for an expert Senior Application Security Engineer to ensure that our applications are designed and implemented to the highest standards in order to maintain and enhance customer trust. You will participate in security audits, risk analysis, vulnerability testing and security reviews.
    • Application security reviews
    • Secure architecture design
    • Threat modeling
    • Identifying security issues and risks, and developing mitigation plans
    • Projects and research work as needed
    • Security training and outreach to internal development teams
    • Security guidance documentation
    • Security tool development
    • Security metrics delivery and improvements
    • Participating in incident handling
    • Evaluating and recommending new and emerging security products and technologies

    A successful candidate will have experience working through ambiguity, helping to define security requirements with managers and engineers and incorporating customer feedback, as well as identifying potential problems before they become real problems.

    Basic Qualifications

    • Bachelor’s degree in Computer Science, Computer Engineering or related field, or 7+ years relevant work experience
    • 5+ years of experience in application-level vulnerability testing and auditing
    • 5+ years of application security experience
    • Advanced knowledge of security engineering, system and network security, authentication and security protocols, cryptography, application security.
    • Experience with the application of threat modeling or other risk identification techniques
    • Development experience in C, C++ and/or Java
    • Experience with scripting (e.g. python, ruby, bash)
    • Experience working effectively with software engineering teams
    • Excellent written and verbal communication skills

    Preferred Qualifications

    • Experience with service-oriented architecture, web services, and mobile application security.
    • Experience in reviewing complex systems design/code for security best practices and compliance with industry standards
    • Detailed knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits
    • Knowledge of network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)
    • Knowledge of Linux systems and operating system internals
    • Distributed systems development experience
    • Strong and creative problem solving abilities
    • Sharp analytical abilities and proven design skills
    • Results oriented, high energy, self-motivated
    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share this job