Security Engineer I, Stores Security Pen Test
: Job Details :

Security Engineer I, Stores Security Pen Test

Join to apply for the Security Engineer I, Stores Security Pen Test role at Amazon.

Description

Amazon's Stores Pentest Team is seeking a Security Engineer to help keep Amazon secure for its customers. In this role, you will attack Amazon's services, applications, and websites to discover security issues and report them to our internal technology teams. This position offers challenging opportunities both technologically and as a leader, and is an exciting chance to hack Amazon alongside a team of highly skilled individuals.

As a Security Engineer at Amazon, you are expected to be strong in multiple domains. You will work closely with teams across Information Security, providing technical leadership and advice. You will interact with various business verticals, gaining deep technical knowledge of how Amazon operates, and use this knowledge to find vulnerabilities across services, processes, and technologies.

You must demonstrate exemplary judgment in balancing short-term fixes with long-term security and business goals. Resilience, tact, and the ability to navigate ambiguous situations are essential. You will also provide thought leadership by discovering, inventing, and innovating in your duties. A customer-obsessed mindset is crucial to focus on securing Amazon and its customers.

Key job responsibilities

Conduct high-quality application penetration tests independently or as part of a team.

Create detailed engagement plans and document findings, gaps, and remediation strategies.

Contribute to team tooling, innovation, and improvements.

Collaborate and communicate with partner teams, service owners, Security, and leadership to influence and prioritize security resolutions.

About The Team

Amazon Security values diversity and encourages candidates to apply even if they do not meet all qualifications. We foster an inclusive culture, emphasizing continuous learning, career growth, and work-life balance, with flexible hours and arrangements.

Basic Qualifications

• 1+ years programming experience in Python, Ruby, Go, Swift, Java, .Net, C++, or similar.
• Bachelor's degree in computer science or equivalent.
• 1+ years in threat modeling, secure coding, identity management, authentication, software development, cryptography, system administration, or network security.
• 1+ years in penetration testing or offensive security roles.

Preferred Qualifications

• Experience developing security tooling and automation.
• Participation in CTFs, CVE research, or Bug Bounty recognition.
• Knowledge of cloud providers, preferably AWS, and related technologies.

Amazon is an equal opportunity employer and values diversity. For accommodations during the application process, visit

#J-18808-Ljbffr