Job Information
Amazon Security Engineer II, Vulnerability Management and Remediation Operations in Seattle, Washington
Description
Embark on a Mission to Fortify Amazon's Defenses as a Security Engineer II with the Vulnerability Management & Remediation Operations team!
Amazon Security is seeking an experienced and innovative Security Engineer to join our Vulnerability Management and Remediation Operations (VMRO) team in Seattle, Washington. The VMRO team is responsible for discovering, assessing, triaging, detecting, and driving the remediation of vulnerabilities across the Amazon ecosystem.
Key job responsibilities
Analyse public and private vulnerability disclosures and exploit code.
Deeply understand and assess the technical details and potential impact of vulnerabilities across Amazon's infrastructure, services, and applications.
Investigate and triage vulnerabilities, identifying severity and the scope of potential impact to Amazon.
Support response and remediation efforts, assisting builder teams to fix their security issues in a timely manner.
Engineer high quality, scalable, and accurate vulnerability detection mechanisms.
Design and implement automation, tools and workflows to enhance our operations capabilities.
Be part of a global team and participate in periodic on-call responsibilities to ensure the continuous monitoring and remediation of vulnerabilities.
Basic Qualifications
3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language experience
2+ years of scripting, programming, and security code review in a common programming language (non-internship) experience
2+ years of troubleshooting systems issues, analyzing logs, or automating basic tasks using command line tools (non-internship) experience
Bachelor's degree in computer science or equivalent
Bachelor's degree in a STEM field (Science, Technology, Engineering, Mathematics), or experience in IT Security
Bachelor's degree in a STEM field (Science, Technology, Engineering, Mathematics), or 2+ years of IT Security experience
Knowledge of networking protocols such as HTTP, DNS and TCP/IP
Knowledge of industry-based security vulnerabilities and remediation techniques
Experience in scripting, programming, and security code reviewing in a common programming language (non-internship)
Experience in troubleshooting systems issues, analyzing logs, or automating basic tasks using command line tools (non-internship experience)
Preferred Qualifications
2+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience
2+ years of scripting, programming, or security code review in a common language, such as Python, Java or C++ experience
Knowledge of command line tools to troubleshoot protocols, analyze log outputs, or automate basic tasks
Knowledge of networking protocols such as HTTP(S), DNS, and TCP/IP
Knowledge of networking protocols, to include HTTP(S), DNS, and TCP/IP
Experience with AWS products and services
Experience with programming languages such as Python, Java, C+- Experience in scripting, programming, or security code reviewing in a common language, such as Python, Java, or C+- Experience performing security activities across one or more phases of the software development lifecycle (SDLC), such as security design review, threat modeling, secure code review, and security testing
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.
The base salary range for this position is listed below. Your Amazon package will include sign-on payments and restricted stock units (RSUs). Final compensation will be determined based on factors including experience, qualifications, and location. Amazon also offers comprehensive benefits including health insurance (medical, dental, vision, prescription, Basic Life & AD&D insurance and option for Supplemental life plans, EAP, Mental Health Support, Medical Advice Line, Flexible Spending Accounts, Adoption and Surrogacy Reimbursement coverage), 401(k) matching, paid time off, and parental leave. Learn more about our benefits at https://amazon.jobs/en/benefits .
USA, WA, Seattle - 159,300.00 - 202,400.00 USD annually