Security Engineer II - Container Security, Infrastructure Security

Come join Earth’s most customer-centric company! Amazon is looking for a Security Engineer with strong insight and passion for security to ensure our infrastructure is designed and built to the highest standards, focussing on container and OS security. You will work in a fast-paced environment on cutting edge security at-scale solutions. You will be a technical contributor on a highly-skilled team responsible for securing Amazon-sized infrastructure implementations. You will be responsible for establishing and driving security best practices across Amazon for container and operating system security and drive adoption across Amazon.

A Security Engineer is a leader who is expected to participate in the planning of the work and to seek opportunities for process improvement. The successful candidate is passionate for security and seeks to grow in multiple Information Security domains and is expected to contribute to the efforts to solve complex security problems at Amazon scale.

Key job responsibilities

• Develop security best practices for container and operating system usage across Amazon.
• Develop standards of container and operating system hardening.
• Improve host monitoring services to detect anomalous behavior
• Drive adoption of security best practices for container and operating system usage across Amazon.
• Provide consultation support on security to dev teams.
• Develop tooling to detect security misconfigurations

Basic Qualifications

• BS in Computer Science or related field, or equivalent work experience.
• 3+ years of experience in operating system and container hardening, threat modeling, and secure coding practices
• Experience with one or more programming languages (such as, Java, Python, C++, Ruby, etc.)
• Meets or exceeds Amazon’s leadership principles requirements for this role

Preferred Qualifications

• Knowledge and understanding of operating system and/or container security
• Experience working with Docker, containers, and Kubernetes.
• Prior work or research focused on secure execution environments through low-level technologies such as virtual machines and containers.
• Basic understanding of security in Linux / Windows systems and cloud deployments.
• Basic understanding of application security.
• Basic understanding of network security, cryptography, and security protocols.
• An understanding of network and web related protocols (such as, TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.


Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $135,500/year in our lowest geographic market up to $212,800/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits. Applicants should apply via our internal or external career site.