Seattle

At Amazon Healthcare Security, we are on a mission to make healthcare secure and easy. We are developing a patient-centric healthcare experience that is personal, transparent, and convenient. We are looking for a Senior Security Engineer to join our team.As a Security Engineer, your responsibility is to ensure the data, devices, 3rd Party services, and systems are secure, resilient, and compliant. Your teammates are a global team of security engineers, software developers, and technical program managers dedicated to continuously raising the security bar.A Security Engineer in Amazon will be strong in multiple security domains and sought out for advice on technical issues. Efficient time management skills are required along with the ability to deliver results in the face of uncertainty. Engineers in this role must show exemplary judgment in making technical trade-offs between short versus long term security and business goals. They must also demonstrate resilience and navigate difficult situations with composure and tact. The successful candidate must be one that can handle several difficult challenges and problems, can make risk-based assessments founded on data and facts.Additionally, the successful candidate will be: - A leader on the team who can earn trust with the people they work with, both on their team and external partners - Methodically empirical and experimental in approach and evaluation without being bound by over paralysis-by-analysis; - Continuously improve knowledge of the security field, threat landscape, security intelligence, moving proactively toward prevention and detection of threats; - Be an enthusiastic learner and curiosity seeker, focusing on what can be done rather than hindered by notions of what cannot be; - Possess effective verbal and written communication skills, be passionate about sharing knowledge, tactics, strategy, as well as advocating for the project mission; - Have excellent time management skills along with the ability to deliver results in the face of uncertainty; and - Evangelize security within Amazon.com and be an advocate for customer trust.A successful candidate will be a deeply curious individual who brings technical expertise, and ability to work within a fast-paced startup culture in a large company that has broad business impact.Key job responsibilitiesCreating, updating, and maintaining threat models for a wide variety of software projectsManual and Automated Secure Code Review, primarily in Java, Python and JavascriptDevelopment of security automation toolsAdversarial security analysis using cutting-edge tools to augment manual effortProvide Security training and outreach for internal development teamsProvide Security architecture and design guidance to application development teamsIndependently solve systemic, complex security problems that require novel methods or approachesInfluence your team’s and partners’ process, priorities, and choices by using data to improve security outcomesProvide technical and strategic guidance to senior leaders and stakeholders through effective oral and written communicationsA day in the lifeAs a Security Engineer, you will collaborate with application development teams to ensure we keep our customers safe while developing novel services. In a given day, you might be inspecting an application’s code for security issues, building a new framework to help our software developers build faster and more securely, or fine-tuning the design for a new service. The ideal candidate combines technical acumen with an ability to lead by influence and communicate clearly. Technically, this person will be a security specialist with one or more areas of deep expertise within application security. They will clearly articulate risks to technical and non-technical audiences alike. Successful candidates will effectively harmonize disparate opinions while effectively prioritizing risks to guide their partners towards secure solutions.About the teamThe Amazon HealthSec ProdSec team is tasked with enabling the business to build secure, trustworthy healthcare products and services. We work closely with the business throughout the development process to help ensure great security decisions are made early and often. This allows us to be a partner with the business so security tradeoffs are infrequent.Working closely with our product teams means that we get to take part in deep technical discussion and decisions. We make sure we have time to get the right training and career growth opportunities so we can Dive Deep and Earn Trust with our build teams.We believe the best employees are ones who find what they do impactful, enjoyable, and purposeful. To that end we value training, career development, team culture, and work life balance for the long run. We want to make strategic choices for our team that will help build a culture of diversity, inclusion, development, and trust so our team works well together for a long time.Diverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying. Why Amazon Security At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Work/Life Balance We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve. Inclusive Team Culture In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Training and Career growthWe’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional. BASIC QUALIFICATIONS- Bachelor's degree in computer science or equivalent- 5+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience- Experience applying threat modeling or other risk identification techniques or equivalent- Knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits or equivalent- Experience reading and writing in at least one programming language ...

As part of the AWS Solutions organization, we have a vision to provide business applications, leveraging Amazon’s unique experience and expertise, that are used by millions of companies worldwide to manage day-to-day operations. We will accomplish this by accelerating our customers’ businesses through delivery of intuitive and differentiated technology solutions that solve enduring business challenges. We blend vision with curiosity and Amazon’s real-world experience to build opinionated, turnkey solutions. Where customers prefer to buy over build, we become their trusted partner with solutions that are no-brainers to buy and easy to use.Help us protect not only the Amazon Web Services (AWS) cloud computing environment but all of our customers as well! Since 2006, our great team at AWS has been enabling our customers to bring great ideas to life in ways that aren’t possible in traditional IT environments. With AWS you can flexibly harness compute, storage, security, and other services from across the globe as your business demands them.AWS Security is on the cutting edge of security for a wide variety of platforms and technologies including cloud services, Internet of things (IoT), identity and access management, mobile devices, virtualization, and custom hardware, all operating at massive scale. Similarly, our highly collaborative team is committed to each team member’s growth as our business grows.AWS Security is looking for a Security Engineer to design security controls and help validate that our services, applications, and emerging technologies are designed and implemented to the highest security standards. You will be responsible for analyzing the security of applications and services, discovering and addressing security issues, building security automation, articulating the security posture of a service, and decisively taking action to mitigate emerging threats throughout a full secure development life-cycle (SDLC).This role will provide career growth opportunities as you gain new security skills in the course of your work. Security engineers at AWS have an opportunity to experiment, learn, build tools, and work with teams building new technology and services at massive scale. Security engineers at all levels have the opportunity to learn from and be mentored by those who are building and securing our cutting-edge services. A security engineer is also expected to be a mentor for others and be a trusted security advisor within the organization.A security engineer at Amazon is expected to have technical expertise in multiple domains and provide significant contributions to the AWS Security team and to multiple groups throughout Amazon. Security engineers are expected to develop elegant solutions to complex security risk problems and apply appropriate technologies while following security engineering best practices.A security engineer should demonstrate strong Amazon leadership principles. This role requires the ability to foster constructive dialogue and seek resolution when confronted with differing viewpoints on security risks. Engineers in this role are expected to participate fully in the planning of the AWS Security team's work and constantly seek opportunities for process improvement.You will need a combination of troubleshooting, technical, and communication skills. An AWS Security engineer must have the ability to take ownership and deliver on multiple complex objectives which may include project and software development work.Key job responsibilitiesYour responsibilities will include: - Security reviews for new products, technologies, and services- Secure design, architecture, and implementation- Secure development life-cycle (SDLC) practices including threat modeling and security testing- Influence decision-makers and stakeholders to achieve a consistently high security bar- Conduct network and/or application penetration testing- Create security guidance and documentation- Develop security tools and automation- Develop and deliver security training and outreach to internal development teams- Lead security projects (including security reviews, tool development, and creation of new security practices) with end-to-end ownership- Support for mentoring, team building and recruiting activitiesOur team puts a high value on work-life balance. It isn’t about how many hours you spend at home or at work; it’s about the flow you establish that brings energy to both parts of your life. We believe striking the right balance between your personal and professional life is critical to life-long happiness and fulfillment. We offer flexibility in working hours and encourage you to find your own balance between your work and personal lives.About the teamWhy AWSAmazon Web Services (AWS) is the world’s most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating — that’s why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses.Diverse ExperiencesAmazon values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Work/Life BalanceWe value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve in the cloud.Inclusive Team CultureHere at AWS, it’s in our nature to learn and be curious. Our employee-led affinity groups foster a culture of inclusion that empower us to be proud of our differences. Ongoing events and learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences, inspire us to never stop embracing our uniqueness.Mentorship and Career GrowthWe’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.BASIC QUALIFICATIONS- 3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language experience- Bachelor's degree in computer science or equivalent- Knowledge of networking protocols such as HTTP, DNS and TCP/IP ...

At Amazon Healthcare Security, we are on a mission to make healthcare secure and easy. We are developing a patient-centric healthcare experience that is personal, transparent, and convenient. We are looking for a Senior Security Engineer to join our team.As a Security Engineer, your responsibility is to ensure the data, devices, 3rd Party services, and systems are secure, resilient, and compliant. Your teammates are a global team of security engineers, software developers, and technical program managers dedicated to continuously raising the security bar.A Security Engineer in Amazon will be strong in multiple security domains and sought out for advice on technical issues. Efficient time management skills are required along with the ability to deliver results in the face of uncertainty. Engineers in this role must show exemplary judgment in making technical trade-offs between short versus long term security and business goals. They must also demonstrate resilience and navigate difficult situations with composure and tact. The successful candidate must be one that can handle several difficult challenges and problems, can make risk-based assessments founded on data and facts.Additionally, the successful candidate will be: - A leader on the team who can earn trust with the people they work with, both on their team and external partners - Methodically empirical and experimental in approach and evaluation without being bound by over paralysis-by-analysis; - Continuously improve knowledge of the security field, threat landscape, security intelligence, moving proactively toward prevention and detection of threats; - Be an enthusiastic learner and curiosity seeker, focusing on what can be done rather than hindered by notions of what cannot be; - Possess effective verbal and written communication skills, be passionate about sharing knowledge, tactics, strategy, as well as advocating for the project mission; - Have excellent time management skills along with the ability to deliver results in the face of uncertainty; and - Evangelize security within Amazon.com and be an advocate for customer trust.A successful candidate will be a deeply curious individual who brings technical expertise, and ability to work within a fast-paced startup culture in a large company that has broad business impact.Key job responsibilitiesCreating, updating, and maintaining threat models for a wide variety of software projectsManual and Automated Secure Code Review, primarily in Java, Python and JavascriptDevelopment of security automation toolsAdversarial security analysis using cutting-edge tools to augment manual effortProvide Security training and outreach for internal development teamsProvide Security architecture and design guidance to application development teamsIndependently solve systemic, complex security problems that require novel methods or approachesInfluence your team’s and partners’ process, priorities, and choices by using data to improve security outcomesProvide technical and strategic guidance to senior leaders and stakeholders through effective oral and written communicationsA day in the lifeAs a Security Engineer, you will collaborate with application development teams to ensure we keep our customers safe while developing novel services. In a given day, you might be inspecting an application’s code for security issues, building a new framework to help our software developers build faster and more securely, or fine-tuning the design for a new service. The ideal candidate combines technical acumen with an ability to lead by influence and communicate clearly. Technically, this person will be a security specialist with one or more areas of deep expertise within application security. They will clearly articulate risks to technical and non-technical audiences alike. Successful candidates will effectively harmonize disparate opinions while effectively prioritizing risks to guide their partners towards secure solutions.About the teamThe Amazon HealthSec ProdSec team is tasked with enabling the business to build secure, trustworthy healthcare products and services. We work closely with the business throughout the development process to help ensure great security decisions are made early and often. This allows us to be a partner with the business so security tradeoffs are infrequent.Working closely with our product teams means that we get to take part in deep technical discussion and decisions. We make sure we have time to get the right training and career growth opportunities so we can Dive Deep and Earn Trust with our build teams.We believe the best employees are ones who find what they do impactful, enjoyable, and purposeful. To that end we value training, career development, team culture, and work life balance for the long run. We want to make strategic choices for our team that will help build a culture of diversity, inclusion, development, and trust so our team works well together for a long time.Diverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying. Why Amazon Security At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Work/Life Balance We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve. Inclusive Team Culture In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Training and Career growthWe’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional. BASIC QUALIFICATIONS- Knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits or equivalent- 5+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience- Bachelor's degree in computer science or equivalent ...

The AWS Cloud Response Team manages the security and availability of AWS Cloud services. We operate on the ‘AWS’ side of the Shared Responsibility Model to ensure “Security of the Cloud” and to protect our customers. This role requires engineers to work tactically with both internal and external stakeholders to solve security challenges at massive scale, and to think strategically to develop and implement changes to drive automation, scalability and continuous progress for the organization.An ideal candidate should possess most of the following:- be able to assess technical vs. business risks and consistently drive internal engineering teams to take the right actions in the appropriate time frames to mitigate risks.- have a good mix of broad and deep technical knowledge and a demonstrated background in information security.- be technically proficient in the fields of network and operating system security, cryptography, software security, security operations, incident response, and emergent security intelligence.- possess a combination of troubleshooting, technical, and communication skills, as well as the ability to manage a mix of disparate tasks which may include small-project and software development work.- be comfortable challenging and escalating to senior leadership to always ensure the best outcome for customers.Key job responsibilitiesA successful candidate will need a combination of troubleshooting, technical, and communication skills, as well as the ability to handle a mix of disparate tasks which may include small-projects in addition to managing incident response activities. This role will provide career growth opportunities as you gain new security skills in the course of your duties.- Triage new incoming issues to determine the level of risk they present to AWS, and then accordingly prioritise its remediation in conjunction with the impacted service team.- Communicate the state of these issues to various audiences, both technical and non-technical, at various levels of seniority (up to and including AWS’ Chief Information Security Officer).- Participate in efforts to promote security throughout the Company and build good working relationships within the team and with others across Amazon- Demonstrate high capacity and tolerance for extreme context switching and interruptions while remaining productive and effective- Escalate issues to senior AWS leadership if you feel your issues are not progressing at the correct pace based on impact to ensure we are putting customers first.- Explore building and improving our tooling to make your own life easier and share that benefit with all our engineers globally.- Assistance with recruiting activities and administrative work- Fulfill regular on-call responsibilities.#SecOpsA day in the lifeA day in the lifeThis position supports AWS with security operations and incident response activities. You will be responsible for coordinating and facilitating security response activities for all AWS products and services. You will drive security related issues to resolution across numerous service teams, interacting directly with those teams and other AWS Security engineers.About the teamAbout the teamCloud Response is a team inside AWS Security Operations. This team is broadly responsible for the 'AWS' side of the Shared Responsibility Model, and provides oversight of security issues from their identification through to resolution. Cloud Response operates follow-the-sun with teams based around four different geographical locations.We work with other AWS teams, to ensure security issues are resolved with the right level of urgency, whilst ensuring that our stakeholders are kept into the loop. Diverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Why Amazon Security?At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Inclusive Team CultureIn Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Training & Career GrowthWe’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.Work/Life BalanceWe value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.BASIC QUALIFICATIONS- Bachelor's degree in computer science or equivalent- Knowledge of networking protocols such as HTTP, DNS and TCP/IP- 3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language experience- 3+ years of proven experience with a focus in areas such as digital forensics and incident response- 3+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security- Strong demonstrated knowledge of web protocols, common attacks, and an in-depth knowledge of Linux/Unix tools and architecture. ...

The AWS Cloud Response Team manages the security and availability of AWS Cloud services. We operate on the ‘AWS’ side of the Shared Responsibility Model to ensure “Security of the Cloud” and to protect our customers. This role requires engineers to work tactically with both internal and external stakeholders to solve security challenges at massive scale, and to think strategically to develop and implement changes to drive automation, scalability and continuous progress for the organization.An ideal candidate should possess most of the following:- be able to assess technical vs. business risks and consistently drive internal engineering teams to take the right actions in the appropriate time frames to mitigate risks.- have a good mix of broad and deep technical knowledge and a demonstrated background in information security.- be technically proficient in the fields of network and operating system security, cryptography, software security, security operations, incident response, and emergent security intelligence.- possess a combination of troubleshooting, technical, and communication skills, as well as the ability to manage a mix of disparate tasks which may include small-project and software development work.- be comfortable challenging and escalating to senior leadership to always ensure the best outcome for customers.Key job responsibilitiesA successful candidate will need a combination of troubleshooting, technical, and communication skills, as well as the ability to handle a mix of disparate tasks which may include small-projects in addition to managing incident response activities. This role will provide career growth opportunities as you gain new security skills in the course of your duties.- Triage new incoming issues to determine the level of risk they present to AWS, and then accordingly prioritise its remediation in conjunction with the impacted service team.- Communicate the state of these issues to various audiences, both technical and non-technical, at various levels of seniority (up to and including AWS’ Chief Information Security Officer).- Participate in efforts to promote security throughout the Company and build good working relationships within the team and with others across Amazon- Demonstrate high capacity and tolerance for extreme context switching and interruptions while remaining productive and effective- Escalate issues to senior AWS leadership if you feel your issues are not progressing at the correct pace based on impact to ensure we are putting customers first.- Explore building and improving our tooling to make your own life easier and share that benefit with all our engineers globally.- Assistance with recruiting activities and administrative work- Fulfill regular on-call responsibilities.A day in the lifeThis position supports AWS with security operations and incident response activities. You will be responsible for coordinating and facilitating security response activities for all AWS products and services. You will drive security related issues to resolution across numerous service teams, interacting directly with those teams and other AWS Security engineers.About the teamCloud Response is a team inside AWS Security Operations. This team is broadly responsible for the 'AWS' side of the Shared Responsibility Model, and provides oversight of security issues from their identification through to resolution.Cloud Response operates follow-the-sun with teams based around four different geographical locations.We work with other AWS teams, to ensure security issues are resolved with the right level of urgency, whilst ensuring that our stakeholders are kept into the loop. #SecOpsDiverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Why Amazon Security?At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Inclusive Team CultureIn Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Training & Career GrowthWe’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.Work/Life BalanceWe value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.BASIC QUALIFICATIONS- 3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language experience- Bachelor's degree in computer science or equivalent- Knowledge of networking protocols such as HTTP, DNS and TCP/IP- 3+ years of proven experience with a focus in areas such as digital forensics and incident response ...

Amazon Web Services (AWS) Security seeks a passionate and innovative Security Engineer for the AWS Vulnerability Management (AVM) team. At AWS, security is job zero, and our AVM team leads the way in securing our cloud services. We continuously raise the bar for security by blending analytics, cybersecurity skills, and technical expertise to protect our customers and the cloud. We are data-driven, set big goals, and are always challenging ourselves and each other to identify better solutions and take on new challengesAs a security engineer, you will focus on host operating systems (OS) patching and enable software builders to improve their service's security posture. You will define and execute both short-term and long-term strategies for vulnerability remediation, and drive remediation activities across AWS’s vast scale. You'll work closely with the builders to gain deep insights into their operational constraints, architectural consideration and compensating control and partner with senior security engineers to review, refine and optimize remediation plans. Your impact will be critical in helping AWS maintain top-tier security by balancing risk and service delivery. You'll focus on identifying security trends, enhancing security visibility, and recommending improvements to our security posture.Key job responsibilities- Collaborate closely with service teams to identify opportunities to improve the overall security posture- Partnering with product teams across AWS to develop scalable solutions to security problems- Developing tooling to automate and refine vulnerability management processes- Identifying security risks through data analytics.- Identifying and owning projects that continuously improve proactive security across AWS- Periodic on-call responsibilitiesAbout the teamDiverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Why Amazon Security?At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Inclusive Team CultureIn Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Training & Career GrowthWe’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.Work/Life BalanceWe value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.BASIC QUALIFICATIONS- 3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language experience- Bachelor's degree in computer science or equivalent- Knowledge of networking protocols such as HTTP, DNS and TCP/IP- Knowledge of system security vulnerabilities and remediation techniques. ...

The Amazon Web Services Security Operations Center (AWS-SOC) Cloud Operations Team manages security issues across the globe. The team is looking for a highly motivated, technically inclined individual to work as a Security Engineer. A successful candidate will need to embody our 16 leadership principles; especially in Learn and Be Curious, Earns Trust, and Dives Deep. You will work from the Seattle, WA SOC location. You need to be comfortable working in a fast paced technical, and at times, ambiguous environment.Key job responsibilitiesYou will need a combination of troubleshooting, technical, and communication skills, as well as the ability to handle an assortment of disparate tasks which may include small-project and software development work. This role will provide career growth opportunities as you gain new security skills in the course of your duties.A day in the lifeThis position supports AWS Security Engineers and Technical Program Managers with security operations and incident response activities. You will be responsible for coordinating and facilitating security response activities for a wide range of AWS products and services. You will drive “Tier 1” and "Tier 2" related issues to resolution across numerous service teams and other more senior AWS Security Engineers.About the teamDiverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Why Amazon Security?At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Inclusive Team CultureIn Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Training & Career GrowthWe’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.Work/Life BalanceWe value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.BASIC QUALIFICATIONS- BS degree in Computer Science, Computer Engineering, Electrical Engineering, or 3+ years’ equivalent technology experience.- Minimum of 2 years’ experience on a Security Operations team, especially experience coordinating responses to security incidents.- 1+ year knowledge of web protocols, common attacks, and an in-depth knowledge of Linux/Unix tools and architecture. ...

Amazon is seeking a Security Engineer to join the AVM (AWS Vulnerability Management) organization. Our organization is accountable for the end-to-end software vulnerability lifecycle across all aspects of AWS. We are responsible for building the platform that monitors intelligence, detects vulnerabilities, drives remediation response, and drives innovation to meet the scale and demand of all AWS customers. Working with teams such as EC2, S3, RDS, CloudHSM, Containers, and Amazon Linux requires us to dive deep into all aspects of first- and third-party software across AWS including Operating Systems, firmware, databases, service/system hardening, cryptography, and audit analysis. We are passionate about diving deep to identify and build solutions that keep our customers safe.As a security engineer, you will help define and execute short-term and long-term strategy for vulnerability remediation. You're well-known for your excellent prioritization skills, as well as your ability to communicate at all levels of an organization (technical and non-technical). The successful candidate must be autonomous, comfortable operating in highly ambiguous situations, and relish the idea of solving security problems at scale.The successful candidate is one who loves working directly with software developers to understand their needs, and design security systems and solutions that enable developers to operate more effectively, securely and safely. You will have the opportunity to engage with systems that are at the cutting edge of technology. You will work directly with AWS service teams, partner security teams, and administrative teams to identify opportunities to improve our security posture. You will build tooling, drive process improvements, and work with service owners and cutting-edge technology to develop innovative solutions to complex technical challenges.The role can be located in Seattle, WAA day in the life AWS Security is on the cutting edge of many security issues for a wide variety of platforms and technologies including cloud services, Internet of things (IoT), identity and access management, mobile devices, virtualization and custom hardware, all operating at massive scale. Our team drives large scale, long-term programs across all of AWS.About the teamOur organization is accountable for the end-to-end software vulnerability lifecycle across all AWS.Diverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Why Amazon Security?At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Inclusive Team CultureIn Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Training & Career GrowthWe’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.Work/Life BalanceWe value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.BASIC QUALIFICATIONS- 3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language experience- Bachelor's degree in computer science or equivalent- Knowledge of networking protocols such as HTTP, DNS and TCP/IP ...

Are you passionate about delivering innovative security solutions and protecting millions of customers through automation and scalable security guardrails and paved roads? The Customer Service Security - Application Security team is looking for a talented and results-driven Security Engineer to help shape how Amazon protects customer data through secure-by-design principles.In this role, you'll protect our customers by combining deep security expertise with automation and scalable solutions. You'll conduct threat modeling and security reviews, architect and implement automated security solutions, and partner with development teams and other security stakeholders to embed secure-by-default practices into their applications early and throughout the software development lifecycle. Using AWS services and modern development practices, you'll transform manual security processes into scalable solutions that secure Amazon's technology landscape.If you're excited about solving complex security challenges through a blend of security engineering and automation, and want to deliver innovative solutions that protect millions of customers, join our team and help define the future of application security at Amazon.Key job responsibilities1. Design, develop, and implement automated security guardrails and paved roads that enable secure-by-default practices across Amazon's technology landscape2. Conduct application security reviews, threat modeling sessions, and penetration testing to identify and remediate security risks early in the development lifecycle3. Partner with development teams to embed security controls into their applications, providing technical guidance on complex architectural decisions4. Lead security initiatives to establish automated security solutions using AWS services, transforming manual processes into scalable controls5. Create and maintain security documentation, including architecture designs, implementation guides, and best practices to promote secure development practices6. Identify security risks and drive continuous improvement in security controls and practices7. Collaborate with security stakeholders to develop comprehensive security strategies and participate in periodic on-call rotations to support security incidentsAbout the teamThe Customer Service Security - Application Security team provides proactive security guidance and support to an Amazon Customer Service. We address security early in the software development lifecycle by providing guardrails and paved paths. We bridge gaps between application security and software engineering by advocating for secure coding standards, automating processes, and developing reusable security solutions that are leveraged company-wide. We stay ahead through continuous research into emerging threats and the adoption of new techniques and best practices. Our collaborative environment encourages diverse perspectives and continuous learning to shape strategies that protect customer data while delivering reliable, trusted services.Diverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying. Why Amazon Security At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Work/Life Balance We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve. Inclusive Team Culture In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Training and Career growthWe’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional. BASIC QUALIFICATIONS- 3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language experience- Bachelor's degree in computer science or equivalent- Knowledge of networking protocols such as HTTP, DNS and TCP/IP- 3+ years of experience in application security with any combination of the following: threat modeling experience, secure design reviews, code reviews ...

We are open to hiring candidates to work out of one of the following locations:Herndon, VA, USA | Seattle, WA, USAAmazon is seeking a highly motivated Security Engineer to join our world-class Amazon Security organization and work within the response function of the Enterprise Protection Program to help protect Amazon from insider attacks.As part of the Response team, you will be involved with investigating active insider threats to Amazon on a daily basis. We are looking for someone who is a fan of "diving deep"; someone who enjoys building queries and processing data to identify and pursue security issues. You will also work with team members and partners within our legal and engineering teams to develop proactive insider threat solutions. You will be effective both working independently and cooperatively across partner teams and able to contribute and deliver results. You will participate in building large scale, customized tools that enable you and the team to rapidly investigate, proactively detect, and increase collaboration across partner teams.This position involves on-call responsibilities, typically for one week every few months. Key job responsibilitiesLead investigations into and potential insider threats. Perform deep dive analysis of internal and external datasets to identify trends, anomalies, and activities indicative of insider threats.Collaborate with engineering teams to build and develop solutions and tools that identify and mitigate risk. Translate use cases into technical requirements.Create quantitative feedback mechanisms to drive automation and optimization of analytics and tools.Communicate and collaborate with partner teams and the security community across Amazon.About the teamDiverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Why Amazon Security?At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Inclusive Team CultureIn Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Training & Career GrowthWe’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.Work/Life BalanceWe value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.BASIC QUALIFICATIONS- 3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language experience- Bachelor's degree in computer science or equivalent- Knowledge of networking protocols such as HTTP, DNS and TCP/IP ...

The Amazon Security Enterprise Protection team builds tools and services for the monitoring and response to malicious activity on the Amazon internal network. We collect, process, and analyze data from all parts of Amazon's worldwide infrastructure to identify and reduce risks to Amazon.We are looking for a Security Engineer who is excited about designing and building secure solutions to solve challenging problems for mission critical systems that protect Amazon and our customer data. In Amazon Security, our challenges are broad and deep -- we build flexible, secure, scalable, high-performance and robust tools and services.
As a Security Engineer, you will collaborate to ensure we keep our customers safe while developing these novel tools and services. In a given day, you might be inspecting an application’s code for security issues, fine-tuning the design for a new tool alongside its developers, or designing and developing a new tool or service.The ideal candidate combines technical acumen with an ability to lead by influence and communicate clearly. They should be comfortable with a high degree of ambiguity and relish the idea of solving problems that haven't been solved at scale before. In their communication, they will clearly articulate risks to technical and non-technical audiences alike. Interpersonally, successful candidates will effectively harmonize disparate opinions while effectively prioritizing risks to guide their partners towards secure solutions.
Our organization prizes its employees, and we show it through investing in work-life harmony. We have dedicated resources that consistently innovate in reducing on-call time and ensuring the team spend their time on the highest-value tasks. Join the Amazon Security organization to work hard, have fun, and make history!Key job responsibilitiesThis role will allow you to work with internal service teams, IT services teams, Risk Assessment and Security Response teams to build detections and analytics that find and reduce insider risk.You will bring deep security knowledge and experience to builder teams to help them build better controls and audit capabilities, while developing detections and response plans that inform the right people when anomalies occur.As a security engineer on the team you will work and lead the most complex and ambiguous projects. However you also be paying attention to the team's work as well as your own.You will contribute to think big ideas about how we radically change how we approach this problem space, help drive feedback and prioritization models. You'll lead calibration and review exercises across teams to ensure a consistent approach to detections is being taken. A day in the lifeNo two days are the same in Insider Risk teams - the nature of the work we do and constantly shifting threat landscape means sometimes you'll be working with an internal service team to find anomalous use of their data, other days you'll be working with IT teams to build improved controls. Some days you'll be busy writing detections and response plans, or mentoring or running design review meetings.About the teamAbout AmSec:Diverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Why Amazon SecurityAt Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Work/Life BalanceWe value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.Inclusive Team CultureIn Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Training and Career growthWe’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.BASIC QUALIFICATIONS- Bachelor's degree in computer science or equivalent- 3+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience- Common knowledge and understanding of security engineering, system and network security, authentication and security protocols, cryptography, or application security. Experience reading and writing in at least one programming language. ...

Amazon Web Services is looking for experienced Security Engineers to join the Security Analytics and AI Research group within AWS Security Services. This group is entrusted with researching and developing core data mining and machine learning algorithms for Amazon GuardDuty (https://aws.amazon.com/guardduty/). On this team, you will invent and implement innovative solutions for never-before-solved problems. If you have experience with information security and a passion for large scale machine learning systems, this will be an exciting opportunity.GuardDuty also detects potentially compromised instances or reconnaissance by attackers. This is an advanced engineering team that is using cutting edge techniques to help customers assess, monitor and protect their cloud based resources.The AWS Security Services team builds technologies that help customers strengthen their security posture and better meet security requirements in the AWS Cloud. The team interacts with security researchers to codify our own learnings and best practices and make them available for customers. We are building massively scalable and globally distributed security systems to power next generation services.Utility Computing (UC)AWS Utility Computing (UC) provides product innovations — from foundational services such as Amazon’s Simple Storage Service (S3) and Amazon Elastic Compute Cloud (EC2), to consistently released new product innovations that continue to set AWS’s services and features apart in the industry. As a member of the UC organization, you’ll support the development and management of Compute, Database, Storage, Internet of Things (Iot), Platform, and Productivity Apps services in AWS, including support for customers who require specialized security solutions for customers who require specialized security solutions for their cloud services.About AWSAmazon Web Services (AWS) is the world’s most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating — that’s why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses.Diverse ExperiencesAWS values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying. Work/Life BalanceWe value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve in the cloud. Inclusive Team CultureHere at AWS, it’s in our nature to learn and be curious. Our employee-led affinity groups foster a culture of inclusion that empower us to be proud of our differences. Ongoing events and learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences, inspire us to never stop embracing our uniqueness.Mentorship & Career GrowthWe’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.Key job responsibilities- Collaborate with scientists and engineers to research and develop innovative ML/AI solutions for challenging cybersecurity problems.- Analyze the output of ML/AI models for accuracy, customer impact, and interpretability.- Integrate successful experiments into large scale, highly complex production services.- Build complex systems that turn machine/deep learning and AI research into great products for our customers.- Rapidly design and conduct large scale experiments in a high-ambiguity environment, making use of both quantitative and business judgment.- Interact with other security engineers and related domain experts to dive deep into the types of challenges that we need innovative solutions for.BASIC QUALIFICATIONS- 3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language experience- Bachelor's degree in computer science or equivalent- Knowledge of networking protocols such as HTTP, DNS and TCP/IP ...

Amazon is seeking qualified Security Engineers to join our innovative, high energy Information Security team. In this role you will work within the Amazon Security Incident Response Team (SIRT). SIRT Security Engineers respond to security events, conduct analysis of threats such as malware and intrusion attempts, and provide security services to safeguard highly sensitive data. They work hands-on with detection systems and vulnerability analysis tools to respond to potential threats to Amazon systems. SIRT Security Engineers are unique individuals prepared to relentlessly resolve security issues by gathering and analyzing event data and conducting root-cause analysis. With your technical expertise, you will be solving security challenges at scale, working to protect the applications powering the most sophisticated e-commerce platform ever built. We value broad and deep technical knowledge, specifically in the fields of forensics, malware analysis, network security, application security, threat hunting, and threat intelligence.Key job responsibilities- Responding to security incidents, and coordinating a cohesive response involving multiple teams across Amazon.- Providing security engineering solutions and support during customer-facing incidents, proactively considering the prevention of similar incidents from occurring in the future.- Assisting in the development of pragmatic solutions that achieve business requirements while maintaining an acceptable level of risk.- Identifying and recommending solutions that improve or expand Amazon’s incident response capabilities.- Working alongside and mentoring Information Security engineers to improve security, reduce and quickly address risk.- Evaluating the impact of current security trends, advisories, publications, and academic research to Amazon, coordinating response as necessary across affected teams.- Keeping your knowledge and skills current with the rapidly changing threat landscape.- Participating in a follow-the-sun on-call rotation.About the teamDiverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying. Why Amazon Security At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Work/Life Balance We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve. Inclusive Team Culture In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Training and Career GrowthWe’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional. BASIC QUALIFICATIONS- Bachelors Degree in Computer Science or related field with 3+ years (non- internship) experience performing scripting, automation, and DFIR- 3+ years providing incident command at all stages (identification, containment, eradication, recovery, etc) while coordinating with various teams and providing reporting to leadership- Knowledge of networking protocols such as HTTP, DNS and TCP/IP ...

Help us protect not only the Amazon Web Services (AWS) cloud computing environment but all of our customers as well! Since 2006, our great team at AWS has been enabling our customers to bring great ideas to life in ways that aren’t possible in traditional IT environments. With AWS you can flexibly harness compute, storage, security, and other services from across the globe as your business demands them.You will be responsible for managing a team of security engineers, support engineers, and technical program managers deeply investigating problems to enable builders to patch their host operating systems (OS) within the AWS patching SLAs. This includes prioritizing risks, building programs to build detection and prevention capabilities, collaborating closely with stakeholders in Builder Tools and the centralized patching automation tooling teams to simplify how host OS patching occurs in AWS. You will measure success through defined KPIs and program metrics to ensure we are achieving the security outcomes expected for this team. You will help set the direction for a team of security professionals that is responsible for all AWS products and services. This role combines long term strategic planning to raise the bar on security across the enterprise with the excitement and challenge of quickly reacting to new threat scenarios.As a security engineering manager at Amazon, you will be expected to speak authoritatively on behalf of your team and your technical knowledge should demonstrate both depth and breadth. You will be responsible for your team’s organizational structure and how that team works within the context of the larger AWS Security team. Leveraging the strengths of individual team members, delegating tasks appropriately and managing delivery of long term projects will all be critical tasks for this role. A security manager has deep knowledge in their domain and is a sought after thought leader across the organization. They have both management and technical expertise and actively participate in the organization’s planning processes.Key job responsibilities* Team management, growth, and organization* Professional development of team members* Project management* Metrics and projections* Driving security initiatives* Recruiting* Process Improvement* Work across AWS to partner on solutionsA day in the lifeIn this role you'll lead a team of engineers and TPMs, you'll build their careers and help solve complex security problems. You'll help identify trends in the findings your team generates and will work with partners to remove these bug classes at source. You'll participate in hiring, development, training, and team leadership. You'll own a part of the team and will be encouraged to grow your ownership and role.About the teamAt Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Diverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Why Amazon Security?At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Inclusive Team CultureIn Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Training & Career GrowthWe’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.Work/Life BalanceWe value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.BASIC QUALIFICATIONS- A Bachelor’s degree in Computer Science, Cybersecurity, Information Security, degree in similar technical field, or equivalent professional experience can be used in lieu of a degree- Minimum of 5 years of experience in Security Engineering management- Minimum of 5 years of experience in managing or leading engineering teams- Experience in vulnerability management ...

The Amazon Web Services team is looking for a passionate Security Incident Response Engineer who can lead the response to security issues across the largest cloud provider in the world. You must thrive in dynamic/ambiguous situations, and think like both an attacker and defender, while working through the entire incident response lifecycle. You’ll be working in a global team environment where clear and accurate communication and collaboration on security issues is critical. In this role you’ll be conducting security monitoring and response activities for the Amazon internal network. We value broad and deep technical knowledge, specifically in the fields of operating system security, network security, cryptography, software security, malware analysis, forensics, security operations, incident response, and emergent security intelligence. We don’t expect you to be an expert in all of the domains mentioned above, but we do expect you to be excited to learn about them! You’ll apply your creative and critical problem solving skills to quickly design and build tooling that enables programmatic automation at a massive scale. You must have a passion for engineering solutions to complex security challenges, and recognize and fill gaps in capabilities. Above all, you should be passionate about information security, the threat landscape and security automation and tooling.A day in the lifeDiverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Why Amazon Security?At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Inclusive Team CultureIn Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Training & Career GrowthWe’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.Work/Life BalanceWe value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.BASIC QUALIFICATIONS- Bachelor's degree in computer science or equivalent- 5+ years or more of demonstrated experience with a focus in areas such as systems, network, and/or application security.- 3+ years of experience on a Security Operations team, coordinating responses to security incidents.- Proficiency with one high-level programming or scripting language. ...

Are you looking for an exciting role where you can analyze and develop a program end-to-end with big improvement impacts for our customers? The Santos Supply Chain Security, Compliance, Privacy and Trust team is looking for a talented, self-motivated Security Program Manager (PM) who possess a unique balance of security and compliance proficiency along with program management skills to join our team. This security-focused Program Manager will support a business-level security team by:* Building and supporting team programs and providing program management and business intelligence support* Defining, measuring, and utilizing project/program KPIs* Identifying and driving continuous process improvements across the various programs comprising the security team * Being the glue that is able to keenly prioritize and manage dependencies across teams/stakeholders* Interacting and communicating with program stakeholders and leadership on status, develops, escalations* Resolving roadblocks through driving trade-off decisions to move work forwardThe successful candidate is passionate about operational efficiencies and data analysis. We have a team culture that encourages ownership, diversity, inclusion, and innovation. We expect team members and management alike to take a high degree of ownership for their program vision and execution of ideas. We expect this person to balance their unique perspective with those of the diverse perspectives of the team and its stakeholders. You will act as a leader who can prioritize well, communicate clearly, and have a consistent track record of delivery. You are proactive in removing roadblocks, pave the way for innovation, and can handle multiple competing priorities in a fast-paced environment. You will be a positive influencer across diverse teams, be able to effectively rally support for your initiatives and be able to drive simple, scalable solutions to meet customer, security, and business expectations. You are able to handle business escalations with a data-driven approach and high judgment.The candidate must be comfortable with balancing strategic thinking with tactical, detailed execution while working independently, sorting through ambiguously defined problems, identifying and facing big challenges and adjusting to sudden and frequent change.Key job responsibilitiesKey responsibilities will include:* Develop, maintain and manage the operating procedures for all aspects of the security program.* Identify, assess, manage, remediate, and track activities and lead weekly/monthly/quarterly business reporting to leadership and stakeholders * Coordinate and drive program enhancements including mechanisms to improve documentation and actively monitor metrics to advance program effectiveness.* Drive process improvement by identifying risks/opportunities in strategies and/or org structure(s), effectively force multiplying where possible and applicable* Lead the strategic direction of tools to track tasks on the team with the goal of producing meaningful metrics and proposing solutions based on those metrics* Collaborate with multiple internal teams to drive process improvements, measure effectiveness and enhance documentation and data visualization* Drive efficiency across our team, particularly in terms of managing large volumes of disparate data, on different platforms, and to support different technical disciplines (governance, compliance, controls testing, data security analysis)* Possess high proficiency in the use of management and collaboration tools; have strong attention to detail and polished communication skills* Drive security campaigns across multiple business units that involve working with technical partners (software developers, technical program managers) for issuing, tracking, remediating ticketsBASIC QUALIFICATIONS* 7+ years of program management experience with a proven track record of delivery following Project Management principles* 7+ years of security and compliance experience* Bachelor’s degree or relevant work experience equivalent* Excellent written and oral communication with multiple levels of leadership involving both business and partner sides of the business* Demonstrated passion for understanding ambiguous, complex business problems and driving high-quality and innovative solutions* Experience managing projects across cross functional teams, building sustainable processes and coordinating release schedules* Experience developing and delivering on project milestones* Experience with automated self-service reporting tools (Tableau, XLS, Quicksight, etc.) ...

Are you passionate about security and access governance, monitoring and risk management? Buy with Prime and Multi-Channel Fulfillment (MCF) are looking for a highly motivated and experienced Security Governance Specialist ready to partner across Amazon tech and security groups to secure and protect our services and data. This security specialist will drive programs focused on providing multiple cross-cutting capabilities such as Access governance, Access policy management, security monitoring and detections, risk management, and continuous monitoring. You will act as a key member of the team responsible for Security Operations including Access Governance, security design, and exception activities, including automation. Candidates must have experience designing access control solution, access governance and risk management experience, including performing control self-assessments and managing external audits, designing controls, and prioritizing risk. We operate in a hyper-growth environment where priorities shift quickly, so a passion and discipline around security and delivery is critical. You will tackle challenging situations every day and, given the size of this initiative, you will collaborate with various levels across Buy with Prime, MCF and Amazon. We are seeking a security specialist, who is comfortable working in a fast-paced, ever-changing environment and willing to dive deep into assessments and analytical rigor. Our team is growing, and we need security specialists who don't work reactively, but can operate independently, anticipate potential security challenges, and proactively monitor and improve the mechanisms we use to detect and correct potential non-compliance. The ability to partner with Service Teams and develop automated mechanisms and responses to potential instances of non-compliance will be key to scale the security program in key areas of Access Management, Risk Management, and Continuous Monitoring. Key job responsibilities* Design, implement and manage access control governance process and access control policies*Analyze business, product and security data, uncover evolving threats, identify weaknesses and opportunities in risk defense* Apply a working knowledge of information security and privacy regulation and policy to articulate customer and control impact and drive alignment to controls.* Quantify risk control effects and trends, collaborate with engineering, operational and product teams, contribute to risk measurement, mitigation and prevention.* Build detection rules to recognize, prevent and mitigate access violations. * Establish regular reporting mechanisms for measuring compliance and performance; * Develops metrics that demonstrate the current risk state, indicators of progress, and business alignment * Support Continuous Monitoring initiatives to drive enforcement, oversight and improvement of security controls implementation through automation * Partner with tech and security teams and to review and challenge identified risks, remediation plans, progress and status, and drive action as needed * Monitor and oversee performance against Key Risk Indicators, including “Path to Green” plans * Drive the successful achievement of business goals, including timely identification, escalation and remediation of risks and issues that impact program execution and deliveryAbout the teamMentorship & Career GrowthOur team is dedicated to supporting new members. We have a broad mix of experience levels and tenures, and we’re building an environment that celebrates knowledge sharing and mentorship.Work/Life BalanceOur team puts high value on work-life balance. Striking a healthy balance between your personal and professional life is crucial to your happiness and success here, which is why we aren’t focused on how many hours you spend at work or online. Instead, we’re happy to offer a flexible schedule so you can have a more productive and well-balanced life—both in and outside of work.BASIC QUALIFICATIONS- 5+ years of governance, risk, and monitoring experience for a large and complex organization - Strong knowledge of security certification and compliance frameworks (e.g. ISO 27001, AICPA SOC 1/2/3, HIPAA, HiTRUST, and NIST SP 800-171 / CMMCv2) and ability to adapt and apply them- in conjunction with business requirements- as required - Knowledge of cloud-based models (IaaS, PaaS, SaaS) and technologies used to implement controls within these environments - Ability to communicate and manage information security concepts and requirements to personnel of varying technical backgrounds and positions * Understand and ensure compliance and risk management requirements for supported area and work with other stakeholders to implement key risk initiatives - Functional experience across two or more information and cyber security domains (e.g., application security, identity and access management, vulnerability management, Continuous Monitoring) ...

Amazon is a pioneering, dynamic, and energetic company that thrives on unique and peculiar ways. We take pride in our single-minded obsession over customer satisfaction and our ability to maintain a curious and vibrant culture no matter how large the company grows. We endeavor to build our legacy as Earth’s most customer-centric company and to continue to cultivate and nourish our innovative environment through our mission to hire the best. If you are a financial accounting professional who consistently exceeds expectations, who dares to make bold decisions, and whose ears perk up at the prospect of a challenge, then Amazon is a place where your career can flourish.When working at Amazon, your ability to make a difference and take ownership of your career begins on day one. You can expect a collaborative, team-driven environment that encourages employees to learn, be curious, and have a bias for action. Part of this propensity for continuous learning shows itself in Amazon’s strong encouragement of movement and growth within the Accounting department and within the company as a whole. We aim to hire and develop those who will raise the bar over the course of their career at Amazon (and not just in their first position). Key job responsibilities• Supporting various aspects of our accounting and reporting process. • End-to-end process ownership to support finance and business partners. • Understand internal control design concepts sufficient to assess the effectiveness of controls in their area and to design new processes and controls for emerging and growing business activities. • Execute judgments to keep projects moving and ensure the right decisions are reached to close the books each month. • Escalating risks and issues as necessary to leadership. • Strong sense of ownership. • Ability to identify process improvement and automation opportunities to drive positive change across the organization. • Lead delivery of accounting tasks and projects. • Enhance partnerships between Accounting and various business and IT groups. • Research, conclude and memorialize technical accounting position papers.BASIC QUALIFICATIONS- 3+ years of finance or a related analytical field experience- Bachelor's degree in accounting or related field ...

Amazon is a pioneering, dynamic, and energetic company that thrives on unique and peculiar ways. We take pride in our single-minded obsession over customer satisfaction and our ability to maintain a curious and vibrant culture no matter how large the company grows. We endeavor to build our legacy as Earth’s most customer-centric company and to continue to cultivate and nourish our innovative environment through our mission to hire the best. If you are a financial accounting professional who consistently exceeds expectations, who dares to make bold decisions, and whose ears perk up at the prospect of a challenge, then Amazon is a place where your career can flourish.When working at Amazon, your ability to make a difference and take ownership of your career begins on day one. You can expect a collaborative, team-driven environment that encourages employees to learn, be curious, and have a bias for action. Part of this propensity for continuous learning shows itself in Amazon’s strong encouragement of movement and growth within the Accounting department and within the company as a whole. We aim to hire and develop those who will raise the bar over the course of their career at Amazon (and not just in their first position). Amazon’s accounting group offers opportunities at the Senior Accountant level in Legal Entity & Intercompany, Accounting Policy & Reporting, Operations and Capital, Transportation, Payments & Merchant Services, Retail Operations, Digital, and AWS Accounting.BASIC QUALIFICATIONS- 3+ years of finance or a related analytical field experience- Bachelor's degree in accounting or related field ...

Amazon is a pioneering, dynamic, and energetic company that thrives on unique and peculiar ways. We take pride in our single-minded obsession over customer satisfaction and our ability to maintain a curious and vibrant culture no matter how large the company grows. We endeavor to build our legacy as Earth’s most customer-centric company and to continue to cultivate and nourish our innovative environment through our mission to hire the best. If you are a financial accounting professional who consistently exceeds expectations, who dares to make bold decisions, and whose ears perk up at the prospect of a challenge, then Amazon is a place where your career can flourish.When working at Amazon, your ability to make a difference and take ownership of your career begins on day one. You can expect a collaborative, team-driven environment that encourages employees to learn, be curious, and have a bias for action. Part of this propensity for continuous learning shows itself in Amazon’s strong encouragement of movement and growth within the Accounting department and within the company as a whole. We aim to hire and develop those who will raise the bar over the course of their career at Amazon (and not just in their first position). Key job responsibilities• Supporting various aspects of our accounting and reporting process. • End-to-end process ownership to support finance and business partners. • Understand internal control design concepts sufficient to assess the effectiveness of controls in their area and to design new processes and controls for emerging and growing business activities. • Execute judgments to keep projects moving and ensure the right decisions are reached to close the books each month. • Escalating risks and issues as necessary to leadership. • Strong sense of ownership. • Ability to identify process improvement and automation opportunities to drive positive change across the organization. • Lead delivery of accounting tasks and projects. • Enhance partnerships between Accounting and various business and IT groups. • Research, conclude and memorialize technical accounting position papers.BASIC QUALIFICATIONS- 3+ years of finance or a related analytical field experience- Bachelor's degree in accounting or related field ...