Application Security Engineer
Job Description
Amazon AWS Security is seeking an onsite Application Security Engineer in New York to validate the security of applications and services, conduct security reviews and penetration tests, build security automation, and mentor teams.
Responsibilities
- Perform application security reviews to identify and mitigate risks
- Conduct penetration testing to uncover vulnerabilities and verify remediation
- Engage in projects and research work as needed to advance security posture
- Deliver security training and outreach to internal development teams
- Create and maintain security guidance documentation
- Develop security tooling to automate controls and tests
- Deliver security metrics and drive continuous improvement
- Assist with recruiting activities and handle administrative tasks as required
Requirements
- 3+ years programming experience in Python, Ruby, Go, Swift, Java, .NET, C++, or other object oriented languages
- 2+ years scripting, programming, and security code review experience in a non-internship role
- 2+ years troubleshooting systems issues, analyzing logs, or automating basic tasks via command line tools in a non-internship role
- Bachelor's degree in a STEM field or 2+ years of IT security experience
- Knowledge of networking protocols such as HTTP, DNS, and TCP/IP
- Understanding of common security vulnerabilities and remediation techniques
Technologies
- Python
- Ruby
- Go
- Swift
- Java
- .NET
- C++
- HTTP
- DNS
- TCP/IP
- HTTP(S)
- AWS products and services
Benefits
- Health insurance (medical, dental, vision, prescription)
- Basic Life & AD&D insurance with option for Supplemental life plans
- Flexible Spending Accounts
- Employee Assistance Program (EAP)
- Mental Health Support
- Medical Advice Line
- Adoption and Surrogacy Reimbursement coverage
- 401(k) matching
- Paid time off
- Parental leave
About the Team
- Diverse experiences are valued; candidates are encouraged to apply even if they do not meet every listed qualification
- Non traditional career paths or alternative experiences should not deter applicants
Why Amazon Security?
- Security is central to customer trust and experiences across Amazon's products and services
- Opportunities to build experience across cloud, devices, retail, entertainment, healthcare, operations, and physical stores
Inclusive Team Culture
- A culture rooted in curiosity and ongoing DEI events and learning experiences
- We celebrate diverse ideas, perspectives, and voices
Training & Career Growth
- Continuous knowledge sharing and training to support career advancement
- Resources to help you develop into a well-rounded security professional
Work/Life Balance
- Flexible work hours and arrangements to support home and work harmony