Penetration Testing Engineer, Security Testing
Description For Penetration Testing Engineer, Security Testing
Amazon Web Services (AWS) is seeking a Penetration Testing Engineer with a strong passion for security-at-scale to join their Security team. This role is part of AWS Security, responsible for ensuring the security of AWS's global cloud infrastructure that serves businesses from startups to enterprises and government customers.
The position involves conducting penetration testing of complex proprietary software and hardware, performing manual source code audits, and developing automation tools to enhance security testing efficiency. You'll work directly with internal teams to identify and resolve security vulnerabilities, write proof-of-concept code to demonstrate security issues, and provide actionable guidance for long-term risk mitigation.
As a technical leader on the team, you'll be expected to work independently and deliver results with limited guidance. The role requires expertise in multiple programming languages, strong knowledge of AWS services, and the ability to handle complex security challenges. You'll be applying Amazon's Leadership Principles of "Dive Deep," "Earn Trust," "Deliver Results," and "Invent and Simplify" in your daily work.
The ideal candidate brings 3+ years of penetration testing experience, strong programming skills particularly in Python, and deep knowledge of security engineering practices. You'll be joining a team that values diverse experiences and continuous learning, with opportunities for career growth and mentorship. The position offers work-life harmony and the chance to work on security challenges at a massive scale.
This role is perfect for security professionals who are passionate about cloud security, enjoy both manual and automated testing approaches, and want to make a significant impact on the security of one of the world's largest cloud platforms. You'll be part of a team that's central to maintaining customer trust and delivering secure customer experiences across all of Amazon's products and services.
Responsibilities For Penetration Testing Engineer, Security Testing
- Perform penetration testing of complex proprietary software and hardware for AWS services
- Manually audit the source code of web services and software authored in-house by Amazon
- Write proof of concept code to demonstrate the severity of potential security issues
- Provide clear communication on issues to developers and suggest fixes
- Partner with AWS developers to drive improvement in application security
- Provide actionable long term risk mitigation guidance
Requirements For Penetration Testing Engineer, Security Testing
- 3+ years of experience in professional penetration testing, source code auditing, bug hunting, or CTF experience
- Experience with AWS technologies and services (S3, Lambda, EC2, KMS, IAM, etc.)
- Domain expertise in security architecture, network security, IAM, security testing, cryptography, or software development security
- Experience finding security issues in multiple languages (Java, Ruby, Python, JavaScript, Rust, C)
- 2+ years of experience scripting in Python or equivalent interpreted languages
- 2+ years of professional experience with security engineering practices
Benefits For Penetration Testing Engineer, Security Testing
- Training & Career Growth opportunities
- Work/Life Balance
- Mentorship & Career Development
- Inclusive Team Culture
- Diverse work experiences
Jobs Related To Amazon Penetration Testing Engineer, Security Testing
