Senior Security Engineer, Vulnerability Management Specialist

Join Amazon Web Services (AWS) as a passionate and innovative Senior Security Engineer within the Vulnerability Management team. At AWS, we prioritize security above all else, and our team is dedicated to creating and automating cutting-edge security solutions at an unprecedented scale. In this impactful role, you'll have the opportunity to tackle complex security challenges that directly affect our customers. As a vital member of our team, you will: Design and implement solutions to identify software-related risks in AWS services. Conduct thorough vulnerability and impact assessments, factoring in base, temporal, and environmental risk factors. Analyze and report on large datasets to identify potential security risks. Collaborate with software and security engineers to create software solutions addressing intricate security challenges. Perform severity assessments of software vulnerabilities and work with teams to contextualize findings appropriately, adjusting risk scores accordingly. Implement automation strategies to enhance operational efficiency. Engage with partner teams to propose and develop strategies that mitigate risks on a large scale. A typical day in this role may include: Assessing critical vulnerabilities across various environments, including container workloads and advanced assets like IoT devices and AI systems. Collaborating with product teams to improve scanning methodologies and remediation strategies. Facilitating deep dives with system owners to optimize automation processes and minimize false positives. Mentoring junior engineers on security evaluations for corporate assets and container environments. Creating KPIs to track security improvements and builder impact reduction. Updating documentation and strategizing methods to elevate security standards while reducing operational toil. At Amazon Security, we value diverse experiences and encourage you to apply even if you don’t meet all listed qualifications. We are committed to providing an inclusive culture that inspires continuous learning and respects unique perspectives. By joining us, you will benefit from extensive growth opportunities across various sectors, including cloud, healthcare, retail, and more. We emphasize work-life harmony, offering flexible working arrangements that support both your professional and personal life. BASIC QUALIFICATIONS: 6+ years of experience in identifying security issues and developing mitigation plans. 4+ years of experience in network, system, or software architecture with a focus on security tools and services. 4+ years of programming or scripting experience in languages such as Ruby, Python, Java, C/C++, or similar. 2+ years of experience in areas including cryptography, web protocols, software development, or vulnerability assessments. PREFERRED QUALIFICATIONS: Knowledge of cloud computing services and deployment architecture. Innovative approaches to security in non-traditional IT environments. Experience in generating automated metrics to evaluate service effectiveness. Strong communication skills with the ability to convey complex technical concepts clearly. Experience in developing security products. Amazon is an equal opportunity employer, and we are committed to creating an inclusive work environment. If you require accommodations during the application or interview process due to a disability, please inquire about our support services.