Description
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores. Amazon is continuously innovating new services and features for our customers. Our engineers invent, build, and sometimes break things to make them easier, faster, better, and more cost-effective. However, no matter what we’re building – from websites to web services, AR to AI, drones to devices – security is always our top priority. The Amazon Application Security team focuses on working with our builders to provide experiences that our customers can trust. That means constantly learning new things and solving complex problems to protect the safety, security, and privacy of billions of lives on a global scale.
We are looking for an experienced application security engineer to join the Application Security team. You should know how to prioritize, communicate clearly and compellingly, and understand how to maintain a high level of focus and excellence in a growing application landscape. Passion and discipline around cloud computing is critical, as is a high level of ownership and accountability.
Key Job Responsibilities
- Application security reviews
- Secure architecture design
- Threat modeling
- Projects and research work as needed
- Security training and outreach to internal development teams
- Automating and enhancing security review processes using AI agents, LLMs, and generative AI tooling
- Security guidance documentation
- Security metrics delivery and improvements
- Assistance with recruiting activities
Basic Qualifications
- Bachelor’s degree in computer science or equivalent
- Knowledge of networking protocols such as HTTP, DNS and TCP/IP
- Experience programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object‑oriented language
- Experience applying threat modeling or other risk identification techniques or equivalent
- Experience in any combination of the following: application security frameworks, security code reviews, incident response, secure infrastructure, penetration testing, mobile security, cloud security, AI security, identity and access controls, threat modeling, cryptography, threat intelligence, or secure software development
- AI/LLM‑based automation of security workflows
Preferred Qualifications
- Experience with AWS products and services
- Experience with any combination of the following: threat modeling, secure coding, identity management and authentication, software development, cryptography, system administration and network security
Amazon is an equal opportunity employer. We do not discriminate on the basis of protected veteran status, disability, or other legally protected status. We make recruiting decisions based on experience and skills.
#J-18808-Ljbffr…