Penetration Testing Engineer (Hardware/Firmware/Virtualization), AWS Proactive Security
Description For Penetration Testing Engineer (Hardware/Firmware/Virtualization), AWS Proactive Security
Amazon Web Services (AWS) is seeking a Penetration Testing Engineer with a strong passion for security-at-scale to join their Proactive Security team. This role is part of AWS Security, which is central to maintaining customer trust across Amazon's diverse product portfolio. The position involves conducting security reviews, penetration testing, and threat modeling for AWS's hardware and software infrastructure.
The successful candidate will be responsible for performing deep technical security assessments of complex proprietary systems, including hardware, firmware, and virtualization components. They will work with cutting-edge technologies and be expected to develop automated tools to enhance security testing capabilities. The role requires both technical expertise in security engineering and strong communication skills to effectively collaborate with development teams and stakeholders.
This is an excellent opportunity for security professionals who want to impact cloud security at scale. The team specializes in identifying security issues that automated tools might miss, and uses these findings to improve enterprise-wide security automation. The position offers significant growth potential, with opportunities to work on diverse projects across AWS's global infrastructure.
Key aspects of the role include conducting hands-on security evaluations, analyzing threat models, developing security testing tools, and providing technical guidance to engineering teams. The ideal candidate will have experience with virtualization security, hardware security, and firmware security, particularly in cloud environments. They should be comfortable working with various technologies including Xen, KVM, QEMU, TPM, UEFI, and TrustZone.
Amazon offers a collaborative work environment, emphasizing work-life harmony and professional development. The company's leadership principles, particularly "Dive Deep," "Earn Trust," "Deliver Results," and "Invent and Simplify," guide daily work. This role provides an opportunity to work with leading-edge technology while contributing to the security of one of the world's largest cloud platforms.
Responsibilities For Penetration Testing Engineer (Hardware/Firmware/Virtualization), AWS Proactive Security
- Perform penetration testing of complex proprietary software and hardware for Amazon servers and devices
- Manually audit the source code of services and software authored in house by Amazon
- Write proof of concept code to demonstrate the severity of potential security issues
- Provide clear communication on issues to developers
- Partner with AWS builders to drive improvement as a result of security review engagements
- Provide actionable long term risk mitigation guidance
Requirements For Penetration Testing Engineer (Hardware/Firmware/Virtualization), AWS Proactive Security
- BS in Computer Science or related field, or equivalent work experience
- Minimum of 3 years of professional experience with Security Engineering
- 1 year experience in virtualization security (Xen, KVM, QEMU) and hardware security
- Experience with x86 and/or ARM chipset and firmware security
Benefits For Penetration Testing Engineer (Hardware/Firmware/Virtualization), AWS Proactive Security
- Training & Career Growth opportunities
- Work/Life Balance
- Mentorship
- Inclusive Team Culture
- Career Development Resources
Jobs Related To Amazon Penetration Testing Engineer (Hardware/Firmware/Virtualization), AWS Proactive Security
