Amazon
At Audible, we believe that stories have the power to transform lives. This conviction drives us to collaborate with some of the world’s leading creators to produce and share captivating audio storytelling with millions of global listeners. We are a diverse team of dreamers and inventors, committed to empowering and inspiring each other. Envision your future with us!
ABOUT THIS ROLE
As a Security Engineer at Audible, you will be a vital advocate for information security across all software development and business processes. Your role involves working closely with fellow Security Engineers, Application Developers, System Engineers, and Business Stakeholders to ensure robust protection for our customers and the Audible business.
ABOUT THE TEAM
The Audible Information Security team is in search of a seasoned Security Engineering Leader to join our world-class group. Our top priority is to safeguard customer trust. As a hands-on team, we are dedicated to protecting our computer networks, servers, applications, and data assets.
As a Security Engineer, you will:
Architect, implement, and execute effective security review and testing methodologies for ongoing evaluations of critical production services.
Collaborate with service teams to ensure timely remediation of identified risks.
Conduct design reviews, threat modeling, security assessments, and penetration testing on production systems.
Scope and execute penetration testing and vulnerability research on complex proprietary software and hardware.
Work with internal development teams at Audible and Amazon to enhance security tools and functionalities at scale.
Prepare and present detailed technical documentation for both internal and external audiences.
Engage in third-party security risk assessments and due diligence to secure integrations and partnerships.
Provide guidance on risk, compliance, and policy to stakeholders at all levels, delivering security training and outreach to internal teams and supply chain partners.
ABOUT AUDIBLE
As the leading producer of audio storytelling, Audible ignites listeners' imaginations, offering immersive experiences that enrich their daily lives. We are a global company with a vibrant entrepreneurial spirit. Passionate about the positive impact we can have, our culture fosters creativity and inclusion, rooted in our People Principles and our mission to build equitable communities in the cities we serve.
BASIC QUALIFICATIONS
Bachelor's degree in Computer Science or a related field, or equivalent work experience.
5+ years of relevant experience in areas such as application security reviews, security engineering, incident response, and data loss prevention.
Proficiency in using standard Security Assessment and Penetration Testing tools like BurpSuite.
Comprehensive understanding of security principles, including CIA, encryption, identity management, SSO, and web protocols.
Experience in promoting security best practices for third-party integrations (e.g., SaaS solutions, libraries).
PREFERRED QUALIFICATIONS
Experience collaborating with development teams and effectively communicating findings to product owners.
Comfort working with business teams and senior stakeholders to articulate risks in accessible language.
Demonstrated judgment, integrity, and communication skills.
Familiarity with threat modeling and risk identification techniques.
Knowledge of web application and system security vulnerabilities.
Proficiency in auditing Java code to discover bugs.
Strong scripting abilities in languages such as Perl, Python, or Java.
Familiarity with common attack patterns and exploitation techniques.
Experience with Security Engineering methodologies, including fuzzing and code analysis.
Capability to develop exploits for common vulnerabilities (e.g., stack overflows, XSS, SQL injection).
Familiarity with cloud computing platforms like Amazon Web Services.
Experience designing and implementing technical security controls at the division level.
Understanding of technical security challenges faced by multinational corporations.
Participation in Bug Bounty programs.
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status. Our inclusive culture empowers employees to achieve the best outcomes for our customers.
If you require accommodations during the application and hiring process, please reach out to your Recruiting Partner.