Job Opportunity: Security Engineer, Application Security at Amazon

Join our innovative team at Amazon Stores, where we push the boundaries of technology using the globe’s largest AWS deployment. From Amazon.com to world-class machine learning pipelines, cutting-edge digital healthcare solutions to no-checkout retail, we explore new frontiers in technology.

Role Overview

As a Security Engineer in the Application Security (AppSec) team, you will collaborate with software development teams to ensure the safety of our customers while developing novel services. Your responsibilities will include inspecting application code for security issues, building frameworks to help software developers work faster and more securely, and fine-tuning designs for new services.

Responsibilities

• Creating, updating, and maintaining threat models for various software projects.
• Conducting manual and automated secure code reviews, primarily in Java, Python, and JavaScript.
• Developing security automation tools.
• Perform adversarial security analysis using advanced tools to supplement manual efforts.
• Providing security training and conducting outreach for internal development teams.
• Offering security architecture and design guidance.
• Independently solving security problems that require innovative methods.
• Influencing teams and partners to improve processes, priorities, and choices to enhance outcomes.

About the Team

Diverse Experiences: At Amazon Security, we value diverse backgrounds and experiences. Even if you don't meet all listed qualifications, we encourage you to apply. Whether your career is just beginning or has taken an unconventional path, we welcome your application.

Why Amazon Security: Security is pivotal to maintaining customer trust and delivering delightful experiences. Our team is responsible for setting high security standards across all Amazon products and services, providing countless opportunities for career growth in areas like cloud, devices, retail, entertainment, healthcare, operations, and physical stores.

Work/Life Balance: We understand the importance of work-life harmony, which is why we offer flexible work hours and arrangements. Supported employees can achieve anything, both at work and home.

Inclusive Team Culture: Learning and curiosity are at the core of Amazon Security. Our continuous DEI events and learning experiences encourage us to embrace diversity and uniqueness. We believe that tackling the toughest security challenges requires a variety of ideas, perspectives, and voices.

Mentorship and Career Growth: As we strive to be Earth’s Best Employer, we offer extensive knowledge-sharing, training, and other career-advancing resources to help you grow as a professional.

We are open to hiring candidates to work out of one of the following locations: Bengaluru, KA, IND.

Basic Qualifications

• BS in Computer Science or Information Security.
• 5+ years of demonstrated experience in areas such as application security, offensive security, or systems security.
• Understanding of threat modeling, manual source code review, security vulnerabilities, attacker exploit techniques, and remediation methods.
• Scripting skills (e.g., Python, Perl, Bash, Ruby, PowerShell).

Preferred Qualifications

• Excellent judgment in assessing and prioritizing technical risks.
• Strong application security background with a focus on scalable solutions.
• Experience building and securing complex AWS architecture.
• Proactive in identifying and removing bottlenecks for team members in both process and technology.

Join the Amazon Stores AppSec organization to work hard, have fun, and make history!

Company Name: Amazon.com

Job Title: Security Engineer, Application Security