We make it easy for customers to author and associate firewall policies to help protect their web applications from attacks by allowing them to configure rules that allow, block, monitor (count), or CAPTCHA web requests based on conditions that they define. These conditions include IP addresses, HTTP headers, HTTP body, URI strings, SQL injection and cross-site scripting. By supporting association with CloudFront, Application Load Balancer, API Gateway, and AppSync customers can protect their applications and resources whether all in on the Cloud, maintaining on premise data centers, or using a hybrid Cloud approach.

We build a highly available low latency distributed system that allows customers to propagate changes worldwide in minutes to respond to active attacks in real-time. We’re fully integrated with several others AWS Services to give customers the insight and control they need. With CloudWatch and Sampled Web Requests we give customers the visibility they need see which requests were blocked, allowed, or counted and what rule was matched on a given request (i.e., this web request was blocked due to an IP address condition, etc.). Using AWS Firehose, customers can store their full WAF logs for compliance and auditing as well as use them for debugging and additional forensics. We support using AWS Config to track historical changes to the rules and metrics associated with their WAF RuleGroups. Using CloudFormation customers can automate the deployment of their WAF Security Automations on the AWS Cloud.

We own the direct customer experience as well as the per request processing of rules for CloudFront, API Gateway, and ALB. Not only do we build an AWS Security service, but we’re a customer of AWS using other AWS services to provide the solutions to our customers that scale and seamlessly integrate with their existing workflows. Engineers on our team get to solve some of the hardest computer science problems including building highly available distributed micro-services, global scaling across both AWS Regions and CloudFront edge locations, and processing millions of requests with single digit millisecond latency.

You will play a lead role on the team and influence how we design, develop, build, deploy, and support AWS WAF. To be successful in the role, you must be able to research, innovate and create unique solutions. There is no precedent to follow in this problem space. You will be involved from inception to deployment and beyond. You’ll interact with our customers, gathering requirements, designing, implementing, testing and supporting the product operationally; soup to nuts. You will be expected to use your technical background and have a significant impact on the direction of AWS WAF as well as new services that we develop in the future.

BASIC QUALIFICATIONS

- 3+ years of non-internship professional software development experience
- 2+ years of non-internship design or architecture (design patterns, reliability and scaling) of new and existing systems experience
- Experience programming with at least one software programming language

PREFERRED QUALIFICATIONS

- Advanced degree in Computer Science or a related technical field
- Proven programming ability in one or more of these languages C/C++, Python, and/or Java
- Excellent analytical and communication skills
- Experience working in Linux based environments
- Experience working on large-scale, highly available, low latency, high quality systems
- Meets/exceeds Amazon’s leadership principles requirements for this role
- Meets/exceeds Amazon’s functional/technical depth and complexity for this role.

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.

Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $129,300/year in our lowest geographic market up to $223,600/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits. This position will remain posted until filled. Applicants should apply via our internal or external career site.