Security Engineer II, Offensive Security Penetration Testing
Description For Security Engineer II, Offensive Security Penetration Testing
Amazon's Information Security Penetration Testing Team is seeking a Security Engineer to help keep Amazon secure for its customers. In this role, you will attack Amazon's services, applications, and websites to discover security issues and report them to internal technology teams. This position offers challenging opportunities, both technologically and as a leader, and will be exciting for those who enjoy hacking Amazon alongside a highly skilled team.
Key responsibilities include:
- Conducting high-quality application penetration tests independently or as part of a team
- Creating detailed engagement plans and thoroughly documenting findings, gaps, and remediation recommendations
- Contributing to team tooling, innovation, and process improvements
- Communicating and collaborating with partner security teams, service owners, and senior leadership
The role requires strong skills in multiple domains and close collaboration with teams throughout the Amazon Security organization. You'll provide technical leadership and advice to teams across Amazon, gaining deep technical knowledge about Amazon's infrastructure and operations.
Engineers in this role must demonstrate excellent judgment in making technical trade-offs between short-term fixes and long-term security and business goals. Resilience and the ability to navigate ambiguous situations with composure and tact are essential. You'll be expected to provide thought leadership and contribute to innovation within the organization.
Amazon Security values diverse experiences and encourages applications from candidates with non-traditional backgrounds or alternative experiences. The team offers opportunities for career growth, knowledge-sharing, and ongoing learning experiences. Work-life harmony is emphasized, with flexible work hours and arrangements available.
Join Amazon Security to tackle the toughest security challenges, accelerate your career, and contribute to maintaining customer trust across Amazon's wide range of products and services.
Responsibilities For Security Engineer II, Offensive Security Penetration Testing
- Conduct high-quality application penetration tests independently or as part of a team
- Create detailed engagement plans and thoroughly document findings, gaps, and remediation recommendations
- Contribute to team tooling, innovation, and process improvements
- Communicate and collaborate with partner security teams, service owners, and senior leadership
- Provide technical leadership and advice to teams throughout Amazon
- Discover and report security issues in Amazon's services, applications, and websites
Requirements For Security Engineer II, Offensive Security Penetration Testing
- 3+ years of programming experience in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object-oriented languages
- Bachelor's degree in computer science or equivalent
- 3+ years of experience in threat modeling, secure coding, identity management and authentication, software development, cryptography, system administration, or network security
- 3+ years of experience in a penetration testing or similar offensive security role
Benefits For Security Engineer II, Offensive Security Penetration Testing
- Medical Insurance
- Financial Benefits
- Career Growth Opportunities
- Flexible Work Arrangements
