Security Engineer II

Job summary
AWS CloudFormation provides an easy declarative way to create, deploy and manage applications and infrastructure in the AWS cloud. The CloudFormation teams are pioneers in the “Infrastructure as Code” space. We develop distributed systems that spin up infrastructure across AWS at unprecedented scale. This would have an impact in shaping our resource framework that allows CloudFormation to provision hundreds of AWS services. We are looking for an experienced security engineer to join us in building the most secure and user-friendly tools available. You should have experience securing scalable, customer-centric systems and a passion for designing secure software solutions. Along with senior leaders, principal engineers, and security specialists you will drive best practices across our service teams as they utilize tools and libraries to raise the bar on security for all our services.

Your responsibilities include:
· Owning the complete software development lifecycle; defining, prioritizing, designing, testing, implementing, and supporting encryption tools and libraries
· Delivering foundational libraries to be used inside and outside Amazon.
· Contributing to open source projects, including the AWS Encryption SDK, the DynamoDB Encryption Client

Work/Life Balance
The CloudFormation team values work-life balance. Most days, our entire team is co-located in the Seattle office, but we’re also flexible when people occasionally need to work from home. We generally keep core in-office hours from 10am to 5pm. About half of us come in earlier and the other half of us stay later. We are builder-operators of our services at AWS and have an on-call rotation where you’ll participate once every 5-6 weeks. We work together to reduce our on-call load by ensuring that our systems are fault tolerant, and resolve the root cause of an issue so that we don’t get paged for the same issue twice.

Here at AWS, we embrace our differences. We are committed to furthering our culture of inclusion. We have ten employee-led affinity groups, reaching 40,000 employees in over 190 chapters globally. We have innovative benefit offerings, and host annual and ongoing learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences. Amazon’s culture of inclusion is reinforced within our 14 Leadership Principles, which remind team members to seek diverse perspectives, learn and be curious, and earn trust.


Learn more about Amazon on our Day 1 Blog: https://blog.aboutamazon.com/



Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, visit https://www.amazon.jobs/en/disability/us
Learn more about Amazon on our Day 1 Blog: https://blog.aboutamazon.com/”

Basic Qualifications

· BS in Computer Science or related field, or equivalent work experience
· Minimum of 3 years of experience with any combination of the following: mobile security, threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security
· Knowledge and understanding of security engineering, system and network security, authentication and security protocols, cryptography, or application security

Preferred Qualifications

· Excellent written and verbal communication skills with the ability to convey technical information to a wide variety of audiences
· Demonstrated experience collaborating with other security engineers and developers to deliver complex projects
· Strong and creative problem solving abilities
· Knowledge and experience with cryptography and computer security
· Knowledge of full life-cycle software engineering practices including coding standards, testing, source control management, and operations
· Demonstrated ability to take a project or significant feature from concept to launch
· Distributed systems experience
· Knowledge of Linux systems and operating system internals
· Experience with large scale systems
· Knowledge and experience with Trusted Platform Modules (TPMs), Hardware Security Modules, or other cryptographic hardware



Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.