Experience Inc. Jobs

Description

Devices and Services Trust and Security (DSTS) is seeking a talented Senior Offensive Security Engineer to help fortify our systems and processes against the latest threats. In this critical role, you will be part of a specialized team responsible for conducting offensive security operations, proactively testing for emergent threats, and providing strategic security insights to our development, deployment, monitoring, and incident response teams.

As a Senior Offensive Security Engineer, you will leverage your extensive expertise in security testing, vulnerability research, and red teaming to uncover security weaknesses. You will employ advanced offensive security tools and techniques to assess the resilience of our infrastructure, applications, and cloud environments.

Collaborating closely with our security and engineering groups, you will integrate offensive security perspectives into their workflows. Your insights will directly shape the secure development, deployment, and monitoring practices across our organization.

This is a challenging and rewarding opportunity for a seasoned offensive security professional who thrives on the constant evolution of the threat landscape.

Key job responsibilities

A Senior Offensive Security Engineer in DSTS will be strong in multiple security domains and sought out for advice on technical issues. Efficient time management skills are required along with the ability to deliver results in the face of uncertainty.

Engineers in this role must show exemplary judgment in making technical trade-offs between short versus long term security and business goals. They must also demonstrate resilience and navigate difficult situations with composure and tact. The successful candidate must be one that can handle several difficult challenges and problems, can make risk-based assessments founded on data and facts.

A day in the life

As a senior offensive security engineer in DSTS, you will:

• Lead offensive security “Red Team” operations of our products, systems and processes to improve our ability to protect, detect and respond to adversaries and protect our customers

• Develop innovative and scalable tools, solutions, and processes to enhance the team's velocity and scale to Amazon needs

• Communicate with senior leadership and technology leaders to prioritize and execute remediation plans

• Effectively collaborate in a fast-paced environment with multiple teams in a large organization (threat intelligence, incident response, software development, QA, Project/Release Management, Build and Release, etc.).

About the team

Why Amazon Security?

At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.

Inclusive Team Culture

In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.

Training & Career Growth

We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.

Work/Life Balance

We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.

Basic Qualifications

• Bachelors Degree in Computer Science or related field, or equivalent work experience

• 7+ years of experience in multiple security engineering disciplines (red teaming, penetration testing, security operations, application security, fuzz testing, etc.)

• Experience with Windows, Linux, and MacOS operating systems

• Deep knowledge of Cloud security principles (preferably AWS)

• Experience running Red Team or penetration testing campaigns in large, complex organizations

Preferred Qualifications

• Master's degree or advanced technical degree

• Excellent communication and data presentation skills that allow you to clearly, compellingly, and effectively influence audiences internally and externally, across organizational boundaries

• Deep knowledge of at least one scripting language (Python, Perl, Ruby, etc.)

• Experience in automation via scripting and configuration management tools (Chef, Puppet, Ansible, Salt, CloudFormation, Terraform)

• Security testing tools including Cobalt Strike, C2 infrastructure, Burp Suite, etc

• Ability to take a project from scoping requirements through actual launch of the project

• Experience in communicating with users, other technical teams, and management to collect requirements, describe software product features, and technical designs.

Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice (https://www.amazon.jobs/en/privacy_page) to know more about how we collect, use and transfer the personal data of our candidates.

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/content/en/how-we-hire/accommodations.