Finding the best job has never been easier
Share
As a SaaS Security Engineer, you’ll have a unique opportunity to innovate in the security space of large scale systems integrations with first and third party platforms. You will lead technical security reviews and write security recommendations to support a wide spectrum of use cases. You will help to review and approve proactive tooling for threat detection and avoidance systems. This role is instrumental in ensuring the highest standards of AWS security are built into multiple, complex, global SaaS implementations.The right candidate will possess a strong security program background, experience building security standards for cross cloud deployments, and demonstrated experience in the details of cloud security as it relates AWS and other SaaS platforms. As a SaaS Security Engineer, you will perform independent security reviews and guide penetration tests as needed. You will advise issue owners on remediation paths and best practices to build security into their SaaS platforms. You are an independent voice for security, protecting customer data whenever it flows through the AWS SaaS ecosystem.Key job responsibilities
- Work directly with service and platform owners to consult on security best-practices and tools.
- Conduct deep-dive security reviews on SaaS implementations, data handling, reporting systems.
- Scope, provision, and manage penetration tests of platforms and tools.
- Report security risks and make recommendations on complex security findings and issues.A day in the life
You will operate with high autonomy owning security reviews and bar-raising initiatives. This role has a high level of discretion with regards to daily activities. As a team, we manage approvals for new feature release and platforms. While not always daily, your skills will provide a valuable part in assessing the risks associated with those decisions. You will serve as the security expert for our partner platform teams, so other responsibilities will ebb and flow out of daily priority including threat modeling, standards writing, architecture consultations, and designing proactive security systems.
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Training & Career Growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.Work/Life Balance
- BS in Computer Science or related field, or equivalent work experience.
- Minimum of 4 years of experience with any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security.
- Experience implementing security solutions at the business division level
- An understanding of network and web related protocols (such as, TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)
- An understanding of web services
- Experience with multiple programming languages (such as, Java, C++, Ruby, Python, Perl, etc.)
- Excellent written and verbal communication skills
- Demonstrable teamwork skills and resourcefulness,; strong sense of ownership, urgency, and drive; sharp analytical abilities and proven design skills
- Possess self-drive to keep moving things forward even in the face of ambiguity and imperfect knowledge (avoid “analysis paralysis”)
These jobs might be a good fit