Security Engineer, Vulnerability Discovery Operations

Seattle, Washington, USA

Amazon.com logo

Amazon.com

Free shipping on millions of items. Get the best of Shopping and Entertainment with Prime. Enjoy low prices and great deals on the largest selection of everyday essentials and other products, including fashion, home, beauty, electronics, Alexa...

View all employer listings

Apply now Apply later

Job summary
Amazon Vulnerability Management and Remediation (VMR) is looking for a Security Engineer to join our Vulnerability Discovery team. Our team is responsible for the discovery, assessment, triage, and remediation of vulnerabilities across Amazon. We are data-driven, set big goals, and are always challenging ourselves and each other to identify better solutions and take on new challenges. Our team offers the unique opportunity to work with leading industry security experts and engage across Amazon teams and leadership.

As a Security Engineer on the VMR Discovery team, you will play a central, hands-on-keyboard role in proactively identifying and remediating security issues at Amazon. You will be part of a global-scale vulnerability discovery service supporting a diverse technical ecosystem. Your teammates are an international team of security engineers, software developers, and technical program managers dedicated to continuously raising the security bar.

Key job responsibilities
* Hands-on management of Amazon’s global vulnerability discovery tools and infrastructure
* Work with senior security engineers to extend vulnerability discovery services to new teams and technologies
* Help customers and partner teams with vulnerability discovery services by identifying solutions and offering technical support
* Work with VMR teams and stakeholders to continuously improve discovery services and processes.
* Periodic on-call responsibilities.

This position can office at any of the following locations: Seattle, Washington; New York City, New York; and Austin, Texas.

Basic Qualifications


* 1 year experience in system, network, and/or application security.
* 1 year experience in threat modeling and interpreting vulnerability disclosures
* 1 year experience troubleshooting networking, operating systems, applications, or cloud services.
* 1 year experience supporting internal or external customers.
* 1 year experience building with C, C++, Java, Python, Perl, PowerShell, or Ruby.

Preferred Qualifications

* Experience in vulnerability management.
* Understanding of networking, operating system internals, and system design.
* Experience with AWS services.
* Meets/exceeds Amazon’s leadership principles requirements for this role.
* Meets/exceeds Amazon’s functional/technical depth and complexity for this role.


Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.

Job region(s): North America
Job stats:  9  0  0
  • Share this job via
  • or

Explore more Information Security career opportunities