Senior Security Engineer, Stores AppSec
$143,300 - $247,600/Yr
Amazon - Seattle, WA
posted 19 days ago
Full-time - Senior
Seattle, WA
10,001+ employees
Sporting Goods, Hobby, Musical Instrument, Book, and Miscellaneous Retailers
About the position
The Senior Security Engineer for the Stores AppSec team at Amazon is responsible for ensuring the security of various software projects by collaborating with development teams. This role involves creating and maintaining threat models, conducting secure code reviews, developing security automation tools, and providing security architecture guidance. The ideal candidate will possess a blend of technical expertise and strong communication skills to articulate risks and mentor team members effectively.
Responsibilities
- Creating, updating, and maintaining threat models for a wide variety of software projects
- Manual and automated secure code review, primarily in Java, Python, and Javascript
- Development of security automation tools
- Adversarial security analysis using tools to augment manual effort
- Security training and outreach for internal development teams
- Security architecture and design guidance
- Lead execution and definition of security strategy for your team
- Mentor and develop teammates both technically and professionally
- Seek out, develop, and advocate for new technology to identify and mitigate complex risks
- Effectively navigate novel situations and problems that do not have a defined solution
Requirements
- BS in Computer Science or related field, or equivalent work experience
- Minimum of 5 years of experience with at least three of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, penetration testing, cloud security, mobile security, and network security
- Advanced knowledge and understanding of security engineering, system and network security, authentication and security protocols, cryptography, or application security
- Experience reading and writing in at least one programming language
Nice-to-haves
- Excellent judgement in assessing and prioritizing technical risk
- Strong application security background with a focus on scalable solutions
- Experience building and securing complex AWS architecture
- Excellent written and verbal communication skills
Benefits
- Comprehensive medical, dental, and vision insurance
- 401(k) retirement savings plan
- Paid time off and holidays
- Employee discounts
- Career development and training opportunities
