Security Engineer II, Stores Application Security
Amazon · California, United States · 1 wk ago
RemoteRemoteInformation TechnologyFull-time
About the role
In Amazon Stores, we ship some of the widest arrays of technology found at any company. From amazon.com to world-class machine learning pipelines, from innovative digital healthcare to no-checkout retail, we push the boundaries of technology in every direction using the globe's largest AWS deployment.
Responsibilities
- Creating, updating, and maintaining threat models for a wide variety of software projects
- Conducting first-party application security research
- Performing manual and automated secure code review, primarily in Java, Python, and JavaScript
- Identifying and mitigating security issues at scale
- Developing security automation tools
- Performing adversarial security analysis using innovative tools to augment manual effort
- Providing security guidance and working with internal software development teams to secure their applications
- Independently solving security problems that require novel methods or approaches
- Influencing your team's and partners' processes, priorities, and choices to improve outcomes
Qualifications
- Experience performing security activities across one or more phases of the software development lifecycle (SDLC), such as security design review, threat modeling, secure code review, and security testing
- Bachelor's degree in computer science or equivalent, or 3+ years of IT Security experience
- Experience with network architecture, enterprise IT systems and cloud such as AWS
- Proficiency in programming or scripting languages (e.g., Java, Python, Perl, Bash, Ruby, PowerShell, etc.)
- Experience with explaining complex technical risks in simple, clear language so that non-technical stakeholders can easily understand and take appropriate action