Security Engineer II, Offensive Security Penetration Testing

Amazon is a global technology company known for e-commerce, cloud computing, and artificial intelligence.
$136,000 - $212,800
Security
Senior Software Engineer
Hybrid
5,000+ Employees
3+ years of experience
Cybersecurity · Enterprise SaaS

Description For Security Engineer II, Offensive Security Penetration Testing

Amazon's Information Security Penetration Testing Team is seeking a Security Engineer to help keep Amazon secure for its customers. In this role, you will attack Amazon's services, applications, and websites to discover security issues and report them to internal technology teams. This position offers challenging opportunities, both technologically and as a leader, and will be exciting for those who enjoy hacking Amazon alongside highly skilled individuals.

Key responsibilities include:

  • Conducting high-quality application penetration tests independently or as part of a team
  • Creating detailed engagement plans and thoroughly documenting findings, gaps, and remediation recommendations
  • Contributing to team tooling, innovation, and improvements
  • Communicating and collaborating with partner teams, service owners, Information Security, and senior leadership

The role requires strong skills in multiple domains, close collaboration with teams throughout Information Security, and providing technical leadership and advice across Amazon. You'll gain deep technical knowledge about Amazon's infrastructure and operations, leveraging this knowledge to find new ways to break services, processes, and technologies.

Engineers in this role must demonstrate excellent judgment in making technical trade-offs, show resilience in ambiguous situations, and provide thought leadership for the organization. A strong sense of customer obsession is crucial to focus on keeping Amazon and its customers secure.

Amazon Security values diverse experiences and offers opportunities for career growth, inclusive team culture, work-life balance, and continuous learning. The organization is responsible for maintaining a high security bar across all of Amazon's products and services, offering talented security professionals the chance to accelerate their careers in various areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.

Last updated 11 days ago

Responsibilities For Security Engineer II, Offensive Security Penetration Testing

  • Conducting high-quality application penetration tests independently or as part of a team
  • Creating detailed engagement plans and thoroughly documenting findings, gaps, and remediation recommendations
  • Contributing to team tooling, innovation, and improvements
  • Communicating and collaborating with partner teams, service owners, Information Security, and senior leadership
  • Providing technical leadership and advice to teams throughout Amazon
  • Discovering new ways to break services, processes, and technologies throughout the company

Requirements For Security Engineer II, Offensive Security Penetration Testing

Python
Ruby
Go
Java
  • 3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object-oriented language experience
  • Bachelor's degree in computer science or equivalent
  • 3+ years of experience in threat modeling, secure coding, identity management and authentication, software development, cryptography, system administration and network security
  • 3+ years of experience in a penetration testing or similar offensive security role

Benefits For Security Engineer II, Offensive Security Penetration Testing

Medical Insurance
401k
Equity
  • Medical Insurance
  • 401k
  • Equity
  • Flexible work hours
  • Career development opportunities
  • Diverse and inclusive work environment

Interested in this job?

Jobs Related To Amazon Security Engineer II, Offensive Security Penetration Testing

SOC Support Engineer III, AWS Security Operations Center (SOC)

Join AWS as a SOC Support Engineer III, providing security response and technical support for cloud infrastructure and customers.

Software Development Engineer, AWS Cryptography

Join AWS Cryptography as a Software Development Engineer to build scalable security services and keep millions of customers' data safe in the cloud.

Sr. Software Development Engineer, Defensive Security - VMR Engineering

Lead cloud defense innovation at Amazon Stores Security, architecting scalable systems to protect global assets using cutting-edge AWS technologies.

Security Engineer II, Stores Penetration Testing

Join Amazon's Information Security Penetration Testing Team as a Security Engineer to discover and report security issues in Amazon's services, applications, and websites.

Senior Software Engineer - CTJ - POLY

Senior Software Engineer role at Microsoft Security, focusing on scaling critical security programs and services for Azure.