Sr. Security Engineer, Leo Security

Export Control Requirement

Due to applicable export control laws and regulations, candidates must be a U.S. citizen or national, U.S. permanent resident (i.e., current Green Card holder), or lawfully admitted into the U.S. as a refugee or granted asylum.

• Establish product‑specific security bars, threat models, and security priorities to help builders maintain consistent security execution across the business.
• Identify design and implementation defects and provide consulting services on difficult security decisions to support product development processes.
• Collaborate with business leaders to define security priorities and act as a trusted advisor, providing direction that makes security decisions easier and measuring organizational security execution.
• Work with builder teams to assess technical debt and risk, offer strategic direction to address vulnerabilities, and lead the reduction of long‑term risk.
• Guide teams toward secure‑by‑default solutions, inventing new approaches when none exist, and advocate for the creation and deployment of automation tools, testing tools, and detection mechanisms.
• Enable builder teams to become proactive and self‑sufficient on security by integrating appropriate linting and static analysis tools, reducing security operations costs, and cultivating a security culture.
• Mentor builders aspiring to become security advocates and engineers through one‑on‑one sessions and office hours.
• Assist Red Teams in identifying security testing priorities, scoping penetration tests, and devising mechanisms to prevent emerging security issues.
• Propose a security vision for the business that protects customers.

This highly dynamic role blends proactive and reactive work; you will answer a wide range of security questions from builder teams, evaluate overall organizational performance, identify architectural defects, and propose new security initiatives to maintain Amazon’s high bar for customer security.

• 4+ years of scripting, programming, and security code review in common programming languages.
• Experience as a mentor, tech lead, or leading an engineering team.
• Bachelor’s degree in CS, CE, or related field, or equivalent work experience.
• 8+ years delivering security assessments or reviews.
• 5+ years experience assessing the security of distributed software systems in Python, Java, Rust, GoLang, or C/C++.
• 3+ years experience delivering security for cloud‑native and embedded environments.

• Master’s degree in Cybersecurity, Information Security, or related field.
• Experience performing and/or participating in technical security assessments (code‑level and design‑level).
• Strong analytical and quantitative skills, using data and metrics to back up assumptions and recommendations.
• Familiarity with programming and scripting or experience developing security tools & processes at scale.
• Experience triaging security risks/vulnerabilities, ensuring they are understood by business stakeholders and properly mitigated.
• Hands‑on experience with satellite communications and management software.
• Experience with low‑level programming and embedded systems.

Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.

USA, WA, Redmond –  –  USD annually.

The base salary range for this position is listed below. Your Amazon package will include sign‑on payments and restricted stock units (RSUs). Final compensation will be determined based on factors including experience, qualifications, and location. Amazon also offers comprehensive benefits including health insurance (medical, dental, vision, prescription, Basic Life & AD&D insurance, and optional Supplemental life plans), EAP, Mental Health Support, Medical Advice Line, Flexible Spending Accounts, Adoption and Surrogacy Reimbursement coverage, 401(k) matching, paid time off, and parental leave.