Security Engineer II

Job Summary

To enhance security across multiple Amazon businesses, the full-time salaried Security Engineer II will lead independent audits, identify vulnerabilities through various assessments, and communicate risks to senior leadership while working remotely.

Key responsibilities

• Lead independent security audits of Amazon systems, services, and infrastructure to assess the effectiveness of security controls
• Identify security risks through penetration testing, design reviews, threat modeling, and code analysis
• Build reusable security frameworks and communicate security risk findings and recommendations to technical teams and senior leadership

Required qualifications

• 3+ years of programming experience in Python, Ruby, Go, Swift, Java, .Net, C++, or similar object-oriented languages
• 2+ years of scripting, programming, and security code review experience in a common programming language
• 2+ years of troubleshooting systems issues, analyzing logs, or automating tasks using command line tools
• Bachelor's degree in a STEM field or 2+ years of IT Security experience
• Knowledge of networking protocols such as HTTP, DNS, and TCP/IP