Taro Logo

Security Engineer II, Offensive Security Penetration Testing

Amazon is a global technology company known for e-commerce, cloud computing, and artificial intelligence.
$136,000 - $212,800
Security
Senior Software Engineer
Hybrid
5,000+ Employees
3+ years of experience
Cybersecurity · Enterprise SaaS
This job posting may no longer be active. You may be interested in these related jobs instead:

Description For Security Engineer II, Offensive Security Penetration Testing

Amazon's Information Security Penetration Testing Team is seeking a Security Engineer to help keep Amazon secure for its customers. In this role, you will attack Amazon's services, applications, and websites to discover security issues and report them to internal technology teams. This position offers challenging opportunities, both technologically and as a leader, and will be exciting for those who enjoy hacking Amazon alongside highly skilled individuals.

Key responsibilities include:

  • Conducting high-quality application penetration tests independently or as part of a team
  • Creating detailed engagement plans and thoroughly documenting findings, gaps, and remediation recommendations
  • Contributing to team tooling, innovation, and improvements
  • Communicating and collaborating with partner teams, service owners, Information Security, and senior leadership

The role requires strong skills in multiple domains, close collaboration with teams throughout Information Security, and providing technical leadership and advice across Amazon. You'll gain deep technical knowledge about Amazon's infrastructure and operations, leveraging this knowledge to find new ways to break services, processes, and technologies.

Engineers in this role must demonstrate excellent judgment in making technical trade-offs, show resilience in ambiguous situations, and provide thought leadership for the organization. A strong sense of customer obsession is crucial to focus on keeping Amazon and its customers secure.

Amazon Security values diverse experiences and offers opportunities for career growth, inclusive team culture, work-life balance, and continuous learning. The organization is responsible for maintaining a high security bar across all of Amazon's products and services, offering talented security professionals the chance to accelerate their careers in various areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.

Last updated 8 months ago

Responsibilities For Security Engineer II, Offensive Security Penetration Testing

  • Conducting high-quality application penetration tests independently or as part of a team
  • Creating detailed engagement plans and thoroughly documenting findings, gaps, and remediation recommendations
  • Contributing to team tooling, innovation, and improvements
  • Communicating and collaborating with partner teams, service owners, Information Security, and senior leadership
  • Providing technical leadership and advice to teams throughout Amazon
  • Discovering new ways to break services, processes, and technologies throughout the company

Requirements For Security Engineer II, Offensive Security Penetration Testing

Python
Ruby
Go
Java
  • 3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object-oriented language experience
  • Bachelor's degree in computer science or equivalent
  • 3+ years of experience in threat modeling, secure coding, identity management and authentication, software development, cryptography, system administration and network security
  • 3+ years of experience in a penetration testing or similar offensive security role

Benefits For Security Engineer II, Offensive Security Penetration Testing

Medical Insurance
401k
Equity
  • Medical Insurance
  • 401k
  • Equity
  • Flexible work hours
  • Career development opportunities
  • Diverse and inclusive work environment

Interested in this job?