Amazon Security Engineer Artificial General Intelligence 

United States, Texas, Austin 

591082682

As a Security Engineer within the AGI Security team, you will play a crucial role in ensuring that AGI large language models and applications are designed and executed with the highest security standards to maintain customer trust. You will tackle a diverse array of security challenges, ranging from novel threats in Generative AI to selecting and implementing scalable and secure features such as key management solutions and encrypted storage. You will collaborate with applied scientists, software engineers, security engineers, as well as internal partners and external researchers to develop innovative technologies to solve some of our hardest security problems, and build paved path solutions that builder teams can adopt while building Generative AI models and applications.
Key job responsibilities
1. Design, develop, and implement automated security guardrails and paved roads that enable secure-by-default practices across AGI models and applications; transform manual processes into scalable controls
2. Conduct application security reviews, threat modeling sessions, and penetration testing to identify and remediate security risks early in the development lifecycle
3. Partner with development teams to embed security controls into their applications, providing technical guidance on complex architectural decisions
4. Create and maintain security documentation, including designs patterns, implementation guides, and secure software development kits (SDKs)
5. Identify security risks and drive continuous improvement in security controls and practices

- A bachelor's degree in computer science, cybersecurity, information security, a similar technical field, or equivalent professional experience can substitute for a degree.
- Minimum of 3 years of experience in defensive security, threat modeling, and security review processes.
- Minimum of 3 years of experience with any combination of the following: IAM, Security Engineering, Cryptography, Vulnerability Management, Supply Chain Security, Network security, Threat modelling or Penetration testing.
- Expertise in distributed systems security, fundamental cloud security concepts around IAM, cryptography, and other security features.

- Hands-on experience with AWS basic security building blocks (IAM, KMS, CloudTrail, etc.) and their effective utilization for security controls.
- Hands-on experience with AWS Services and threat modeling systems using them.
- Experience in developing automation solutions to raise the security bar.
- Experience identifying common Generative AI vulnerabilities such as prompt injection, training data poisoning, and model inversion