Security Engineer, Devices and Services Security

Overview

Description

We are open to hiring candidates to work out of one of the following locations:

Seattle, WA, USA | Sunnyvale, CA, USA

Come join the Amazon Devices & Services Security team dedicated to the protection and security of Amazon consumer devices. Our team performs low-level review of OS components and device services, performing design and code reviews, implementing mitigations and designing and creating tools to instrument, analyze and present insights in areas of potential security exposure.

• Identify security flaws in various shared services running on Amazon devices.
• Guide Amazon businesses toward secure development of devices and services. This will range from design and code review, threat modeling to security testing.
• Propose, research and develop tools and techniques to improve the security posture of devices and services at scale.
• Provide technical security expertise and consultation to product teams.
• Identify security risks and work with product engineers to create mitigations.

Diverse Experiences

Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.

At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.

In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.

We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.

We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.

• 2+ years of web protocols, common security attacks, and remediation (non-internship) experience
• Bachelor's degree in Engineering, Computer Science, or a related field
• Knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits or equivalent
• Experience with web protocols, common security attacks, and remediation (non-internship)
• Experience solving basic problems by writing code or scripts with some assistance

• Experience with AWS services or other cloud offerings

Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.

Los Angeles County applicants:
Job duties for this position include: work safely and cooperatively with other employees, supervisors, and staff; adhere to standards of excellence despite stressful conditions; communicate effectively and respectfully with employees, supervisors, and staff to ensure exceptional customer service; and follow all federal, state, and local laws and Company policies. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position.

These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies,…