Sr Security Engineer III

Pittsburgh, Pennsylvania, USA

Applications have closed

Amazon.com

Free shipping on millions of items. Get the best of Shopping and Entertainment with Prime. Enjoy low prices and great deals on the largest selection of everyday essentials and other products, including fashion, home, beauty, electronics, Alexa...

View company page

At Amazon Care, we are on a mission to make healthcare easy. We are developing a patient-centric healthcare experience that is personal, transparent, and convenient. We are looking for a Senior Security Engineer to join our team.

As Senior Security Engineer, you will work with a distributed team of security professionals whose responsibility is to ensure the data we collect and generate is secure from unauthorized access, and that our devices and systems are secure, resilient, and compliant.

The ideal candidate will have a sophisticated understanding of:
· Best practices in distributed, cloud-based system design
· Security tooling such as telemetry (logging, alerting, monitoring), drift detection, anomaly detection
· Securing remote equipment using mobile device management and scanning tools
· OWASP, WAF, VPC, container security frameworks, and other common cloud-based security tools

In this role, you will:
· Collaborate with experienced Amazonians to create and execute security controls, defenses, and countermeasures to intercept and prevent internal and/or external attacks
· Develop, test, review, debug, or deploy code that supports security protocols
· Work with software development teams to identify security problems and improve the security aspects of their service(s)
· Assess risks that could affect the integrity, availability, or confidentiality of data, systems, or services
· Resolve security events, incidents, or conduct security assessments using penetration tests, ethical hacking tools, or risk mitigation methodologies to evaluate vulnerabilities
· Classify, store, and handle data in accordance with policy or best practices
· Troubleshoot, research the root cause of, and resolve security or risk issues with guidance



Our team is dedicated to supporting new members. We have a broad mix of experience levels and tenures, and we’re building an environment that celebrates knowledge sharing and mentorship. Our senior members enjoy one-on-one mentoring and thorough, but kind, code reviews. We care about your career growth and strive to assign projects based on what will help each team member develop into a better-rounded engineer and enable them to take on more complex tasks in the future.

Here at Amazon, we embrace our differences. We are committed to furthering our culture of inclusion. We have ten employee-led affinity groups, reaching 40,000 employees in over 190 chapters globally. We have innovative benefit offerings, and we host annual and ongoing learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences. Amazon’s culture of inclusion is reinforced within our 14 Leadership Principles, which remind team members to seek diverse perspectives, learn and be curious, and earn trust.

Our team also puts a high value on work-life balance. Striking a healthy balance between your personal and professional life is crucial to your happiness and success here, which is why we aren’t focused on how many hours you spend at work or online. Instead, we’re happy to offer a flexible schedule so you can have a more productive and well-balanced life—both in and outside of work.


Basic Qualifications


· Bachelor’s Degree in Computer Science or related discipline with 5+ years total experience.
· 5+ yrs in Information Technology Security areas, such as Security Engineering, systems/network security, authentication and security protocols, cryptography and application security.
· 3+ years in distributed cloud-based system design.
· 3+ years in security modeling and verification, including threat modeling, penetration testing and red-team exercises

Preferred Qualifications

· Experience with coding/scripting in one or more languages e.g. Python, C, C++, Java, Ruby, or PowerShell.
· Firsthand experience in the following domains: web application development, penetration testing, mobile security, cryptography, public key infrastructure, forensic security, IP security, SSL/TLS, computer viruses and malware, network security, trusted security, trusted execution, threat intelligence, IoT security implications, authentication

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, ethnicity, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.

Tags: Application security C Cloud Computer Science Cryptography Ethical hacking Java Malware Mobile security Monitoring Network security OWASP Pentesting PowerShell Python Ruby Scripting Security assessment Threat intelligence TLS Vulnerabilities

Perks/benefits: Career development Conferences Flex hours Team events

Region: North America
Country: United States
Job stats:  19  3  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.