Security Engineer (SysDev Team), Vulnerability Management
New York City, USA
Amazon.com
Free shipping on millions of items. Get the best of Shopping and Entertainment with Prime. Enjoy low prices and great deals on the largest selection of everyday essentials and other products, including fashion, home, beauty, electronics, Alexa...
Amazon Defensive Security is hiring a security engineer with development experience and a strong bias for action. Do you want to solve security problems on a globally unrivaled scale? Do you want to build mission critical software to help keep Amazon and our Customers safe? Then we want to hear from you!
As a Defensive Security Engineer you will work with our customers to understand their roles, as well as their daily pain points and challenges. You'll then design and implement cutting edge solutions to stream-line and automate Vulnerability Management operations. From building vulnerability assessment tooling, to automating detections and remediation efforts, your work will be essential to the continuing safety and security of Amazon and our Customers.
You will work with other members of our growing team to deep dive problems, investigate approaches, prototype new technology, and evaluate technical feasibility of competing solutions. You will design, implement, and operate high quality distributed vulnerability management systems operating at a globally unrivaled scale.
Key job responsibilities
- Translate Security tasks to technical deliverables
- Advise on Cloud Design patterns
- Assist with implementation of software solutions
- Keep up to date on current security tooling and the evolving threat landscape
- Deep dive systemic security problems, and design approaches to address them
- Work hand in hand with our customers to understand their requirements
- Prototype new projects, then mature them into long term solutions
- Architect high quality horizontally scalable systems, evaluating and documenting technological and operational trade offs
- Create production ready code following best practices with an emphasis on operational excellence.
- Participate in our on weekly call rotation: answer tickets, review alarms, and follow run-books to fix platform problems.
The successful candidate will have sound development and system design knowledge while being able to bridge the gap between our SysDevs and Security Engineers. You will have commiserate development experience with an SDE while also exceling in security competencies.
10003AS
About the team
We are the development engineering arm of the “Vulnerability Management and Remediation” team. We operate on the front lines, building tools to streamline the assessment of vulnerabilities, ingest hundreds of millions of detections a day, and drive remediation efforts. Our work is mission critical to protect our customers and ensure the continued confidentiality, integrity, and availability of Amazon services world wide.
Our space moves fast, and so do we. We’re passionate about agile processes, and are constantly pushing the envelope when it comes to new technologies and approaches, all while delivering rock solid scalable projects at a globally unrivaled scale. Come join us and make a difference!
We are open to hiring candidates to work out of one of the following locations:
New York, NY, USA
- 3+ years of hands on security or vulnerability management experience
- Strong understanding of core CWEs and compensating controls
- Basic threat modeling knowledge
- 3+ years experience with cloud infrastructure
- 3+ years experience with agile methodologies and iterative development
- 3+ years experience with statically typed or scripting languages
- 3+ years of experience architecting, designing, and implementing new systems
- 2+ years of experience uplifting of existing systems
- 3+ years experience with reusable micro-service architecture
- 3+ years experience with Python, Java, and TypeScript
- 2+ years experience with Reactjs
- 2+ years experience with NoSQL
- Experience designing and leading implementation of large horizontally scaling applications
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.
Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $135,500/year in our lowest geographic market up to $212,800/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits. Applicants should apply via our internal or external career site.
As a Defensive Security Engineer you will work with our customers to understand their roles, as well as their daily pain points and challenges. You'll then design and implement cutting edge solutions to stream-line and automate Vulnerability Management operations. From building vulnerability assessment tooling, to automating detections and remediation efforts, your work will be essential to the continuing safety and security of Amazon and our Customers.
You will work with other members of our growing team to deep dive problems, investigate approaches, prototype new technology, and evaluate technical feasibility of competing solutions. You will design, implement, and operate high quality distributed vulnerability management systems operating at a globally unrivaled scale.
Key job responsibilities
- Translate Security tasks to technical deliverables
- Advise on Cloud Design patterns
- Assist with implementation of software solutions
- Keep up to date on current security tooling and the evolving threat landscape
- Deep dive systemic security problems, and design approaches to address them
- Work hand in hand with our customers to understand their requirements
- Prototype new projects, then mature them into long term solutions
- Architect high quality horizontally scalable systems, evaluating and documenting technological and operational trade offs
- Create production ready code following best practices with an emphasis on operational excellence.
- Participate in our on weekly call rotation: answer tickets, review alarms, and follow run-books to fix platform problems.
The successful candidate will have sound development and system design knowledge while being able to bridge the gap between our SysDevs and Security Engineers. You will have commiserate development experience with an SDE while also exceling in security competencies.
10003AS
About the team
We are the development engineering arm of the “Vulnerability Management and Remediation” team. We operate on the front lines, building tools to streamline the assessment of vulnerabilities, ingest hundreds of millions of detections a day, and drive remediation efforts. Our work is mission critical to protect our customers and ensure the continued confidentiality, integrity, and availability of Amazon services world wide.
Our space moves fast, and so do we. We’re passionate about agile processes, and are constantly pushing the envelope when it comes to new technologies and approaches, all while delivering rock solid scalable projects at a globally unrivaled scale. Come join us and make a difference!
We are open to hiring candidates to work out of one of the following locations:
New York, NY, USA
Basic Qualifications
- 3+ years of hands on security or vulnerability management experience
- Strong understanding of core CWEs and compensating controls
- Basic threat modeling knowledge
- 3+ years experience with cloud infrastructure
- 3+ years experience with agile methodologies and iterative development
- 3+ years experience with statically typed or scripting languages
- 3+ years of experience architecting, designing, and implementing new systems
- 2+ years of experience uplifting of existing systems
- 3+ years experience with reusable micro-service architecture
Preferred Qualifications
- 3+ years experience with AWS infrastructure and CDK- 3+ years experience with Python, Java, and TypeScript
- 2+ years experience with Reactjs
- 2+ years experience with NoSQL
- Experience designing and leading implementation of large horizontally scaling applications
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.
Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $135,500/year in our lowest geographic market up to $212,800/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits. Applicants should apply via our internal or external career site.
Job stats:
9
0
0
Category:
Security Engineering Jobs
Tags: Agile AWS Cloud Java NoSQL Python Scripting TypeScript Vulnerabilities Vulnerability management
Perks/benefits: Career development Equity / stock options
Region:
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Security Operations Engineer jobsSystems Administrator jobsIT Security Analyst jobsSenior Cloud Security Engineer jobsSenior Cybersecurity Engineer jobsSenior Security Analyst jobsSenior Information Security Analyst jobsCyber Security Specialist jobsInformation Security Manager jobsSenior Network Security Engineer jobsSecurity Consultant jobsSenior Product Security Engineer jobsInformation System Security Officer (ISSO) jobsChief Information Security Officer jobsInformation Systems Security Engineer jobsSenior Information Security Engineer jobsSecurity Specialist jobsSenior Cyber Security Engineer jobsIT Security Engineer jobsCyber Threat Intelligence Analyst jobsSenior IT Auditor jobsSecurity Operations Analyst jobsCybersecurity Specialist jobsSenior Software Engineer jobsNetwork Engineer jobs
Java jobsBash jobsTS/SCI jobsEncryption jobsEDR jobsSDLC jobsSplunk jobsMalware jobsThreat detection jobsRMF jobsFinance jobsTerraform jobsTop Secret jobsForensics jobsIDS jobsCompTIA jobsSQL jobsITIL jobsIPS jobsActive Directory jobsSOC 2 jobsDocker jobsOWASP jobsClearance Required jobsGIAC jobs
Intrusion detection jobsCRISC jobsAnsible jobsVPN jobsTCP/IP jobsOSCP jobsHIPAA jobsDoDD 8570 jobsMITRE ATT&CK jobsData Analytics jobsZero Trust jobsJavaScript jobsSOAR jobsIT infrastructure jobsBanking jobsCCSP jobsSOX jobsIndustrial jobsUNIX jobsDNS jobsJira jobsNIST 800-53 jobsGCIH jobsKPIs jobsCISO jobs