Amazon Security Engineer II Vulnerability Management Remediation 

United States, Texas, Austin 

627386397

As a Security Engineer you will work with our customers to understand their roles, as well as their daily pain points and challenges. You'll then design and implement cutting edge solutions to stream-line and automate Vulnerability Management operations. From building vulnerability assessment tooling, to automating detections and remediation efforts, your work will be essential to the continuing safety and security of Amazon and our Customers.You will work with other members of our growing team to deep dive problems, investigate approaches, prototype new technology, and evaluate technical feasibility of competing solutions. You will design, implement, and operate high quality distributed vulnerability management systems operating at a globally unrivaled scale.Key job responsibilities
In this role:- You will collaborate with development and engineering teams to ensure any high severity vulnerabilities in custom code, applications, or proprietary software are identified and addressed.
- You will coordinate detailed remediation plans, including timelines, responsible stakeholders, and required resources.
- You will work with security teams to ensure identification, accuracy, and response of high severity vulnerabilities.
- You use query languages like SQL or scripting languages like Python to manage data from different data sources to develop automation, create dashboards and evaluate metrics.
- You participate in on-call rotations and you are proficient in a range of security design approaches and know when it is appropriate to use them (or not).A day in the life
- Translate Security tasks to technical deliverables
- Keep up to date on current security tooling and the evolving threat landscape
- Deep dive systemic security problems, and design approaches to address them
- Work hand in hand with our customers to understand their requirementsDiverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.
Work/Life BalanceTraining and Career growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.

- 3+ years of related industry experience
- Expertise in two or more security domain knowledge areas
- 3+ years experience with Scripting skills (E.g: Python, Perl, Bash, PowerShell, etc.)
- Understands technologies security design approaches to remediate risk
- Understanding of security vulnerabilities, attacker exploit techniques, and methods for their remediation.

- BS in Computer Science, Information Security, or equivalent professional experience
- Development and system design knowledge
- Ability to bridge the gap between SysDevs and Security Engineers
- Commiserate development experience with an SDE while also exceling in security competencies