Amazon Sr Security Engineer AI VM AWS Vulnerability Management 

United States, Texas, Arlington 

610318978

Key job responsibilities
Assess and model security risks across AWS services, including AI/ML systems and their dependencies.- Analyze large datasets to identify security trends and emerging risks for AI managed services.
- Evaluate security controls supply chain risks for AWS AI services.- Create and maintain vulnerability severity frameworks that account for both traditional and AI-specific security concerns.- Drive security improvements through clear technical guidance and risk assessment.- Develop and maintain security metrics to track vulnerability management effectiveness.A day in the life
You will begin by reviewing vulnerability assessments across AWS services, including AI-enabled systems. Next, you'll collaborate with product teams to evaluate security posture and define remediation priorities. You'll conduct deep dives with system owners to understand environmental context and validate risk levels. Later, you'll mentor junior engineers on security risk assessment and supply chain vulnerabilities for both traditional and AI systems. You'll analyze security metrics to measure program effectiveness and impact. Finally, you'll work with teams to enhance security standards and risk models while ensuring practical implementation approaches.About the team
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.
Training & Career Growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.Work/Life Balance

- 5+ years of experience in identifying security issues and risks, and developing mitigation plans
- 4+ years of experience in network, system, or software architecture; design, implementation, support, and security evaluation of tools and services
- 2+ years of experience in one or more of the following areas: cryptography, web and network protocols, data structures and algorithms, software development, threat modelling, penetration testing, or vulnerability assessments

- 4+ years of scripting or programming experience in Ruby, Python, Shell/BASH scripting, Java, C/C++, C*, Perl, or other languages
- Deep expertise in vulnerability management, including the evaluation of software vulnerabilities, exploitation probability prediction systems, the calculation of risk posed by vulnerabilities in complex software deployments such as container orchestration
- Experience in assessing security risks for AI/ML systems, including model supply chain security, vulnerability analysis of large language models, and implementing security controls for AI development and deployment pipelines.
- Experience generating automated metrics to measure service and program effectiveness and consistency
- In Depth understanding of cloud computing services and deployment architecture
- Excellent written and verbal communication skills with the ability to present complex technical information in a clear and concise manner to a variety of audiences