Sr Security Engineer, AppSec - Amazon Stores SecurityJob ID: 2799450 | Amazon.com Services LLC
In Amazon Stores, we ship some of the widest arrays of technology found at any company. From Amazon.com to world class machine learning pipelines, from cutting-edge digital healthcare to no-checkout retail, we push the boundaries of technology in every direction using the globe's largest AWS deployment.
The ideal candidate will play a key role in evolving the security review process by identifying improvement areas, implementing tools, and enhancing resources like wikis, knowledge bases, and training materials. This person will collaborate with partner teams (e.g., Shepherd, Veritas, ASR) to prioritize new features and ensure smooth, secure processes. They will leverage data and feedback to create scalable solutions, streamline workflows, and drive high-quality security outcomes. Clear communication skills will be essential for articulating risks, fostering collaboration, and aligning teams on best practices and secure solutions.
The ideal candidate combines technical acumen with an ability to lead by influence and communicate clearly. Technically, this person will be a security generalist with one or more areas of deep expertise. In their communication, they will clearly articulate risks to technical and non-technical audiences alike. Interpersonally, successful candidates will effectively harmonize disparate opinions while effectively prioritizing risks to guide their partners towards secure solutions.
Our organization prizes its employees, and we show it through investing in work-life harmony. We have dedicated resources that consistently innovate in reducing on-call time and ensuring the team spends their time on the highest-value tasks. Join the stores AppSec organization to work hard, have fun, and make history!
Key job responsibilitiesOptimize Security Review Process: Streamline and improve workflows to increase efficiency and reduce risk.Cross-Team Collaboration: Work with teams like Shepherd, Veritas, and ASR to drive feature development and align on security improvements.Identify Process Gaps: Analyze and address inefficiencies or low-quality areas in the security review process.Enhance Documentation and Training: Maintain and improve resources (wikis, SKB, training) for consistent security guidance.Data-Driven Improvements: Use data to make informed changes and track progress of security innovations.Develop Tools and Automations: Build and deploy internal tools to enable rapid experimentation and continuous improvement.Establish Feedback Loops: Collect and act on feedback to keep processes aligned with team needs.Experiment and Iterate: Test and refine tools, methods, and processes to stay adaptive to new threats and requirements.BASIC QUALIFICATIONSBS degree in Computer Science, Computer Engineering, Electrical Engineering, similar technology degrees or 8+ years' equivalent technology experienceExperience with various threat modeling methodologies, coding skills and strong communication skills.5+ years Security Engineering, or related security experience.PREFERRED QUALIFICATIONS5+ Experience in the Application Security domainSecure software development lifecycle experience.Knowledge of distributed systems and security protocols.Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.
Posted: November 14, 2024
#J-18808-Ljbffr