Amazon
Senior Security Engineer, Identity and Access Management, AWS Identity Security
Amazon, Austin, Texas, United States, 78701
Senior Security Engineer
Come help us secure critical Identity and Governance services in the AWS cloud and deliver world-class defense for AWS customers! Amazon Web Services (AWS) Identity and Governance teams build and operate the identity, authentication, and authorization stack for the AWS cloud, and build services that enable customers to manage access and governance across their AWS environments at scale. AWS Identity and Governance services empower customers to confidently and securely execute their workflows with flexible controls which meet their individual security requirements. As a Senior Security Engineer at Amazon, you will lead the design, development, and implementation of security solutions that protect our global infrastructure, products, and customer data. This role combines deep security expertise with advanced software engineering capabilities to build scalable security systems and frameworks. We are seeking an experienced software engineer who brings both skills and passion for raising the security bar. Key job responsibilities include: Leading complex security initiatives across multiple services teams and driving architectural decisions that impact organization-wide security posture. Building automated security testing frameworks and continuous security monitoring systems. Building prototypes and proofs of concept to demonstrate feasibility for new, innovative security technologies. Designing and implementing scalable security solutions using Java, Python, Go, or other relevant languages. Providing technical mentorship to junior engineers and establishing security engineering best practices. Partnering with software development teams to build security controls directly into the development lifecycle. Leading security incident responses and driving root cause analysis for complex security events. Technical leadership includes: Driving technical direction for security projects impacting multiple teams or organizations. Authoring and maintaining technical design documents for security systems and controls. Reviewing and approving security architecture proposals and technical implementation plans. Leading security reviews for critical systems and applications. Partnering with Product, Operations, and Development teams to drive security improvements. Mentoring junior security engineers and developing team capabilities. Driving security best practices across engineering organizations. About the team: The Identity Security team partners with AWS Identity, Governance, and Infrastructure as Code services to reduce risk in our services as they're built and throughout their lifecycle. The team of security engineers collaborates directly with software engineers to prevent security issues from being introduced at the time of design and development. We proactively look for unknown threats in our services to identify and fix them before they can impact customers. When security issues are detected, we support teams with their response to minimize the impact to customers, while determining what can be done to prevent the issue from happening again. Basic qualifications: Bachelor's degree in Computer Science, Information Technology, or equivalent work experience. Minimum of 5 years' experience in software development, system and network security. Experience with managing large-scale technical projects driving changes across a service, product, or organization. Expert understanding of common Authentication/Authorization practices, internet protocols, and operating system security. Experience architecting, securing, and operating AWS products and services. Relevant knowledge of threat modeling and secure coding practices. Experience with service-oriented architectures and web services security. Knowledge of one mainstream programming language, preferably Java. Preferred qualifications: Masters or PhD in Computer Science or related field. Experience on a Red Team or implementing proactive security practices in a professional setting. Sharp analytical abilities and proven system design skills. Ability to accomplish stretch goals in a highly innovative and fast-paced environment. Excellent leadership, teamwork and collaboration skills. Strong sense of ownership and drive. Excellent written and verbal communication. Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status. Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations. Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $143,300/year in our lowest geographic market up to $247,600/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. This position will remain posted until filled. Applicants should apply via our internal or external career site.
Come help us secure critical Identity and Governance services in the AWS cloud and deliver world-class defense for AWS customers! Amazon Web Services (AWS) Identity and Governance teams build and operate the identity, authentication, and authorization stack for the AWS cloud, and build services that enable customers to manage access and governance across their AWS environments at scale. AWS Identity and Governance services empower customers to confidently and securely execute their workflows with flexible controls which meet their individual security requirements. As a Senior Security Engineer at Amazon, you will lead the design, development, and implementation of security solutions that protect our global infrastructure, products, and customer data. This role combines deep security expertise with advanced software engineering capabilities to build scalable security systems and frameworks. We are seeking an experienced software engineer who brings both skills and passion for raising the security bar. Key job responsibilities include: Leading complex security initiatives across multiple services teams and driving architectural decisions that impact organization-wide security posture. Building automated security testing frameworks and continuous security monitoring systems. Building prototypes and proofs of concept to demonstrate feasibility for new, innovative security technologies. Designing and implementing scalable security solutions using Java, Python, Go, or other relevant languages. Providing technical mentorship to junior engineers and establishing security engineering best practices. Partnering with software development teams to build security controls directly into the development lifecycle. Leading security incident responses and driving root cause analysis for complex security events. Technical leadership includes: Driving technical direction for security projects impacting multiple teams or organizations. Authoring and maintaining technical design documents for security systems and controls. Reviewing and approving security architecture proposals and technical implementation plans. Leading security reviews for critical systems and applications. Partnering with Product, Operations, and Development teams to drive security improvements. Mentoring junior security engineers and developing team capabilities. Driving security best practices across engineering organizations. About the team: The Identity Security team partners with AWS Identity, Governance, and Infrastructure as Code services to reduce risk in our services as they're built and throughout their lifecycle. The team of security engineers collaborates directly with software engineers to prevent security issues from being introduced at the time of design and development. We proactively look for unknown threats in our services to identify and fix them before they can impact customers. When security issues are detected, we support teams with their response to minimize the impact to customers, while determining what can be done to prevent the issue from happening again. Basic qualifications: Bachelor's degree in Computer Science, Information Technology, or equivalent work experience. Minimum of 5 years' experience in software development, system and network security. Experience with managing large-scale technical projects driving changes across a service, product, or organization. Expert understanding of common Authentication/Authorization practices, internet protocols, and operating system security. Experience architecting, securing, and operating AWS products and services. Relevant knowledge of threat modeling and secure coding practices. Experience with service-oriented architectures and web services security. Knowledge of one mainstream programming language, preferably Java. Preferred qualifications: Masters or PhD in Computer Science or related field. Experience on a Red Team or implementing proactive security practices in a professional setting. Sharp analytical abilities and proven system design skills. Ability to accomplish stretch goals in a highly innovative and fast-paced environment. Excellent leadership, teamwork and collaboration skills. Strong sense of ownership and drive. Excellent written and verbal communication. Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status. Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations. Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $143,300/year in our lowest geographic market up to $247,600/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. This position will remain posted until filled. Applicants should apply via our internal or external career site.