Returning Candidate?

Security Engineer

Security Engineer

Job ID 
Posted Date 
Amazon Data Services Ireland Limited
Recruiting Team 

Job Description

You have hundreds of thousands of hosts, hundreds of millions of lines of code, billions of online transactions, and one of the most visited sites on the Internet. Now go secure it. At Amazon, we obsess over our customers, and ensuring our customers’ trust is our first priority. To earn that trust in an environment as vast and varied as Amazon’s and an online world where threats grow ever more sophisticated requires building a world-class information security team to tackle never-before-seen challenges at dizzying scales. You will not just be using cutting-edge technologies here in Amazon; you will be inventing them. is looking for expert Security Engineers to ensure that our infrastructure is designed and implemented to the high standards required to maintain and enhance customer trust. If you enjoy analyzing networks, system services, operating systems and applications from a security perspective, and you are skilled at discovering security issues that appear under new threat scenarios, this position will provide you with a challenging opportunity. You will participate in the design, build and deployment of security-focused infrastructure as well as provide consultation, architectural review, risk analysis, vulnerability testing and security reviews of many elements of Amazon’s systems.

Responsibilities of this role include:
  • Identify security issues and risks, and develop mitigation plans
  • Architect, design, implement, support, and evaluate security-focused tools and services including project leadership roles
  • Advise and consult with internal customers on risk assessment, threat modeling and fixing vulnerabilities
  • Develop and interpret security policies and procedures
  • Evaluate and recommend new and emerging security products and technologies
  • Mentor junior members of the team
  • Develop and deliver training materials and perform general security awareness and specific security technology training
  • Consult with our Acquisitions and Vendor Risk assessments team on due diligence assessments
  • Participate in security compliance efforts
  • Participate in on-call incident response
  • Participate in projects that develop new intellectual property
  • Participate in tier 2 and tier 3 security escalations support
  • Evangelize security within and be an advocate for customer trust

Basic Qualifications

  • Bachelor’s Degree in Computer Science, or equivalent
  • At least 3 years of experience in infrastructure or application-level vulnerability testing and auditing
  • At least 2 years of experience in system, network and/or application security engineering
  • At least 1 years of experience involved (in a development, QA testing, or security role) with development team(s) that delivered commercial software or software-based services
  • Consistent track record implementing security solutions at the business unit level
  • Knowledge of network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, BGP and other routing protocols)
  • Strong scripting skills in multiple common languages (e.g., Perl, Python, Ruby, shell scripting)
  • Detailed knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits

Preferred Qualifications

  • Professional experience and detailed technical knowledge in multiple areas of: security engineering, system and network security, authentication and security protocols, cryptography, and application security
  • Experience with service-oriented architecture and web services security
  • Experience with the application of threat modeling or other risk identification techniques
  • Sharp analytical abilities and proven design skills
  • Excellent written and verbal communication skills
  • Excellent leadership skills and teamwork skills
  • Results oriented, high energy, self-motivated