Amazon Senior Security Engineer 

United States, New Jersey, Newark 

24496915

Good storytelling starts with great listening. At Audible, that means each role and every project has our audience in mind. Because the same people who design, develop, and deploy our products also happen to use them. To us, that speaks volumes.ABOUT THIS ROLE
As a Security Engineering Leader at Audible you will advocate for information security throughout all our software development and business processes. You will work with other Security Engineers, Application Developers, System Engineers and Business Leaders to protect our customers and Audible’s business.
As a Senior Security Engineer, you will...
- Drive the security architecture of the cutting-edge technology underlying the Audible web and mobile applications and services to define and implement secure-by-default and defense-in-depth strategies- Apply your knowledge to conduct or guide deep testing of these systems to uncover security issues both manually and using developing automation tools as needed to support your work
- Research new techniques, vulnerabilities, and attack vectors in these components to proactively drive security improvement across each functional area

- BS in Engineering or Computer Science, or other relevant degree
- 5+ years of experience in security engineering, in areas including application security, secure SDLC, penetration testing, system/network/cloud security, incident response, and risk mitigation
- 1+ years of experience in a technical leadership role
- Hands-on technical expertise in building effective security solutions at large scale
- Experience in mentoring an engineering community on complex technical issues or ambiguous technical challenges

- MS in Engineering or Computer Science, or other relevant degree
- Strong understanding of web application, networking, and cloud technologies
- Excellent writing and verbal communication skills
- Ability to identify security issues and risks, and develop mitigation plans or solutions
- Expert knowledge of web and mobile application vulnerabilities, attacks, and mitigation methods
- Demonstrated experience using communication skills to advocate security for both technical and non-technical audiences
- Experience in driving large scale, cross-organization initiatives
- Sharp analytical abilities and proven innovation skills to unblock adoption of security mechanisms
- Relevant industry certifications (e.g., SANS/GIAC, OSCP/OSWA/OSWE, CompTIA, Microsoft, Linux, AWS)