Security Engineer, AWS Security Vulnerability Management
Description For Security Engineer, AWS Security Vulnerability Management
Amazon's AWS Vulnerability Management (AVM) organization is seeking a Security Engineer to join their team responsible for managing the end-to-end software vulnerability lifecycle across AWS. This role combines technical expertise in security with strategic thinking to protect AWS infrastructure and customers.
The position offers an opportunity to work with cutting-edge technology and some of AWS's most critical services including EC2, S3, RDS, CloudHSM, and Amazon Linux. You'll be diving deep into various aspects of first- and third-party software, including operating systems, firmware, databases, service hardening, cryptography, and audit analysis.
As a Security Engineer, you'll play a crucial role in defining and executing vulnerability remediation strategies. The role requires excellent prioritization skills and the ability to communicate effectively with both technical and non-technical stakeholders. You'll work autonomously in ambiguous situations, solving security problems at massive scale.
The position involves direct collaboration with software developers to understand their needs and design security systems that enable more effective and secure development practices. You'll be working with AWS service teams, partner security teams, and administrative teams to enhance security posture through tooling development, process improvements, and innovative solutions to complex technical challenges.
Amazon Security values diverse experiences and perspectives, offering opportunities for professionals from various backgrounds. The role provides extensive career growth opportunities through knowledge-sharing, training, and exposure to multiple security domains including cloud, devices, retail, entertainment, and healthcare.
The team culture emphasizes continuous learning, diversity, equity, and inclusion. Work-life harmony is prioritized through flexible work arrangements. You'll be part of an organization that's central to maintaining customer trust across all of Amazon's products and services, with the chance to tackle some of the most challenging security problems at global scale.
Benefits include competitive salary, medical insurance, 401k, flexible work hours, and career development resources. The role is based in Seattle, WA, and includes periodic on-call responsibilities.
Responsibilities For Security Engineer, AWS Security Vulnerability Management
- Research and interpret vulnerability disclosures and intelligence
- Own and coordinate vulnerability assessment and triage activities
- Own workstreams during large-scale remediation or triage campaigns
- Author risk assessment statements, remediation guidance, and status reports
- Partner with product teams to develop scalable solutions to security vulnerabilities
- Develop tooling to automate and refine vulnerability management processes
- Periodic on-call responsibilities
Requirements For Security Engineer, AWS Security Vulnerability Management
- BS degree in Computer Science, Computer Engineering, Information Systems or related degree; or 4+ years equivalent technology experience
- 3 years experience in system, network, and/or application security
- 3 years experience in threat modeling and interpreting vulnerability disclosures
- 2 years experience building automated tools in C, C++, Java, Python, Perl, PowerShell, or Ruby
- Strong understanding of Windows and Linux internals and system design
Benefits For Security Engineer, AWS Security Vulnerability Management
- Flexible work hours
- Career development resources
- Work-life balance
Jobs Related To Amazon Security Engineer, AWS Security Vulnerability Management
