Amazon Senior Security Engineer Application Testing Automation New York 

United States, New York, New York 

679714184

As a Senior Security Engineer on our team, you will solve interesting security challenges that arise when Amazon invents new technologies. You will lead the team to prototype and build tools that enable developers to understand their vulnerabilities and how to effectively mitigate them. You will identify and apply opportunities to build new security services, improve existing ones and update our standards and documentation to have the widest possible impact for our customers. You will work proactively and autonomously with partner orgs to develop advanced security detection capabilities to solve complex Application Security challenges at scale.
Key job responsibilities- Develop, curate, and improve application security detections (static and dynamic) to identify vulnerabilities in Web applications and Application Programming Interface (API) at scale
- Drive security tool evaluation, development and deployment
- Perform dynamic and static application security assessments to ensure the highest quality standard for our detection development and release process
- Risk assessment and Threat Modeling
- Develop, enhance, and interpret security standards and guidance
A day in the life
- Educate developers on security issue remediation and best practices
- Review code, running endpoints, APIs, and other platforms to identify security issues
- Presenting findings and discussing security risk with technical and non-technical stakeholders
- Reporting on automation breadth and depth metrics while improving internal processes
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Training & Career Growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.Work/Life Balance

- Bachelor's degree
- Broad and deep knowledge across application security domains
- 8+ years of Application Security or Development experience
- Experience with the application of threat modeling or other risk identification techniques.
- Scripting skills (e.g., python, java)

- MS in Computer Science or Cybersecurity
- Development experience in Python and/or Java.
- Secure software development lifecycle experience.
- Knowledge of distributed systems and security protocols.