Amazon
AWS Security Engineer - Vulnerability Management
Amazon, Arlington, Virginia, United States, 22201
Amazon is on the lookout for a talented Security Engineer to join our AWS Vulnerability Management (AVM) team. This role is pivotal in managing the software vulnerability lifecycle for all AWS services. As a part of this team, you'll have the opportunity to build and enhance platforms that monitor, detect, and drive remediation for security vulnerabilities.
The AVM organization collaborates with various AWS services such as EC2, S3, RDS, CloudHSM, Containers, and Amazon Linux. Your efforts will contribute to improving our customers' safety by ensuring the security of first- and third-party software running across the AWS ecosystem.
Research and analyze vulnerability disclosures and intelligence. Coordinate vulnerability assessments and manage triage activities with subject-matter experts. Oversee workstreams during large-scale remediation campaigns. Author risk assessment statements and remediation guidance. Collaborate with product teams to develop scalable solutions to security vulnerabilities. Develop automated tools to enhance vulnerability management processes. Participate in periodic on-call responsibilities. A typical day involves tackling complex security challenges across various platforms and technologies at a massive scale. You will engage with both security teams and service owners to identify improvements for our security posture. Why Join Us? At Amazon Security, your work will have a broad impact across multiple areas including cloud services, IoT, identity management, and more. We are committed to fostering a culture of continuous learning and diversity of thought, ensuring that every team member can thrive while addressing the toughest security challenges. Basic Qualifications: BS degree in Computer Science, Computer Engineering, Information Systems, or a related field; or 4+ years equivalent technology experience. 3 years of experience in system, network, and/or application security. 3 years of expertise in threat modeling and interpreting vulnerability disclosures. 2 years of experience in building automated tools using C, C++, Java, Python, Perl, PowerShell, or Ruby. Strong understanding of Windows and Linux internals and system design. Preferred Qualifications: 2+ years of experience with threat modeling, secure coding, identity management, or network security. Experience with AWS products and services. Proficiency in programming languages such as Python, Java, C++. This position can be located in Seattle, WA. Join us and be a part of a team dedicated to creating a secure environment for millions of AWS users!
Research and analyze vulnerability disclosures and intelligence. Coordinate vulnerability assessments and manage triage activities with subject-matter experts. Oversee workstreams during large-scale remediation campaigns. Author risk assessment statements and remediation guidance. Collaborate with product teams to develop scalable solutions to security vulnerabilities. Develop automated tools to enhance vulnerability management processes. Participate in periodic on-call responsibilities. A typical day involves tackling complex security challenges across various platforms and technologies at a massive scale. You will engage with both security teams and service owners to identify improvements for our security posture. Why Join Us? At Amazon Security, your work will have a broad impact across multiple areas including cloud services, IoT, identity management, and more. We are committed to fostering a culture of continuous learning and diversity of thought, ensuring that every team member can thrive while addressing the toughest security challenges. Basic Qualifications: BS degree in Computer Science, Computer Engineering, Information Systems, or a related field; or 4+ years equivalent technology experience. 3 years of experience in system, network, and/or application security. 3 years of expertise in threat modeling and interpreting vulnerability disclosures. 2 years of experience in building automated tools using C, C++, Java, Python, Perl, PowerShell, or Ruby. Strong understanding of Windows and Linux internals and system design. Preferred Qualifications: 2+ years of experience with threat modeling, secure coding, identity management, or network security. Experience with AWS products and services. Proficiency in programming languages such as Python, Java, C++. This position can be located in Seattle, WA. Join us and be a part of a team dedicated to creating a secure environment for millions of AWS users!