Amazon Application Security Engineer 

United States, California, San Francisco 

215864484

AWS Security is looking for a Security Engineer to design security controls and help validate that our services, applications, and emerging technologies are designed and implemented to the highest security standards. You will be engaging with teams creating exciting new technologies, requiring highly customized security judgment outside of existing IT and security structures. You will be responsible for analyzing the security of applications and services, discovering and addressing security issues, building security automation, and decisively taking action to remediate emerging threats throughout a full secure development life-cycle (SDLC).Key job responsibilities
Your responsibilities will include:
- Shaping new services through security review of design, architecture, and implementation
- Secure development life-cycle (SDLC) practices including threat modeling and security testing
- Strongly influence decision-makers and stakeholders to achieve a consistently high security bar for new services
- Scope and assist in penetration testing engagements for services that will operate at cloud-scale- Develop security tools and automation
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Training & Career Growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.Work/Life Balance

- Bachelor's degree in computer science or equivalent
- 2+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience
- Knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits or equivalent
- Knowledge of networking protocols such as HTTP, DNS and TCP/IP
- Experience with programming languages such as Python, Java, C++

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.