Amazon.com Services LLC is seeking an Application Security Engineer to assess the security of applications and services, conduct architecture reviews, perform threat modeling, and carry out security testing. The role focuses on building security automation within AWS Security and mentoring colleagues, with onsite work based in Seattle, WA, and a salary range of USD 136,000 - 184,000 per year.
Responsibilities
- Conduct application security reviews, including architecture assessments, threat modeling, code reviews, and security testing.
- Undertake project and research work as needed.
- Provide security training and outreach to internal development teams.
- Create and maintain security guidance documentation.
- Automate security workflows and pipelines.
- Deliver security metrics and drive process improvements.
- Assist with recruiting activities.
Requirements
- Bachelor’s degree in computer science or equivalent
- Experience in application security frameworks
- Experience in security code reviews
- Experience in incident response
- Experience in secure infrastructure
- Experience in penetration testing
- Experience in mobile security
- Experience in cloud security
- Experience in AI security
- Experience in identity and access controls
- Experience in threat modeling
- Experience in cryptography
- Experience in threat intelligence
- Experience in secure software development
- Experience in networking fundamentals
- Experience in security
- Experience in databases (Relational and/or NoSQL)
- Experience in operating systems (Unix, Linux, and/or Windows)
- Strong analytical skills
- Attention to detail
- Effective communication abilities
- 2+ years experience in web application development
- 2+ years experience in penetration testing
- 2+ years experience in mobile security
- 2+ years experience in cryptography
- 2+ years experience in public key infrastructure
- 2+ years experience in forensic security
- 2+ years experience in IP security
- 2+ years experience in SSL/TLS
- 2+ years experience in computer viruses and malware
- 2+ years experience in network security
- 2+ years experience in trusted security
- 2+ years experience in trusted execution
- 2+ years experience in threat intelligence
- 2+ years experience in IoT security implications
- 2+ years experience in authentication
Benefits
- Comprehensive health benefits including medical, dental, vision, prescriptions, basic life and AD&D, optional supplemental life, EAP, mental health support, medical advice line, flexible spending accounts, and adoption/surrogacy reimbursement
- 401(k) matching
- Paid time off
- Parental leave
- Sign-on payments and restricted stock units (RSUs)
About the Team
The team brings diverse experiences and perspectives to security challenges. Amazon Security encourages applicants with varied backgrounds, even if not all qualifications are met. If your career path has been nontraditional or exploratory, your application is welcome.
Why Amazon Security?
Security sits at the core of customer trust and the overall customer experience at Amazon. The Security organization works across Amazon’s products and services, offering opportunities to expand expertise across cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
Inclusive Team Culture
Learning and curiosity define our culture in Amazon Security. Ongoing DEI events and learning opportunities help us grow while embracing diverse ideas, perspectives, and voices.
Training & Career Growth
Continuous advancement is part of our performance approach. A wealth of knowledge-sharing, training resources, and career-development opportunities are available to help you become a more well-rounded security professional.
Work/Life Balance
Work-life harmony is valued, with flexible hours and arrangements designed to support you at work and at home, enabling sustained success.