Amazon Sr Security Engineer AWS Vulnerability Management 

United States, Texas, Arlington 

662041375

Key job responsibilities
Build and implement solutions to identify software based risks in AWS services.Query, analyze, and report on large datasets.Diving into large datasets to identify potential risks.
Perform severity assessments of software vulnerabilities.
Work with software builders to apply environmental context against findings to adjust risk scores.
Implement automation to improve operational throughput and efficiency.
A day in the life
You will begin by assessing vulnerabilities and security architecture across the Corporate fleet of devices and servers. Next, you'll collaborate with various product teams to enhance scanning methodologies and remediation strategies. You'll conduct deep dives with system owners to improve automation processes and reduce false positives. Later, you'll mentor junior engineers on security evaluations for corporate assets and containerized environments. You'll develop KPIs to measure security improvements and reduced builder impact. Finally, you'll update runbooks and strategize ways to elevate security standards while minimizing toil for builder teams across diverse and asset types.About the team
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Training & Career Growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.Work/Life Balance

- 6+ years of experience in identifying security issues and risks, and developing mitigation plans
- 4+ years of experience in network, system, or software architecture; design, implementation, support, and evaluation of security-focused tools and services
- 4+ years of scripting or programming experience in Ruby, Python, Shell/BASH scripting, Java, C/C++, C*, Perl, or other languages
- 2+ years of experience in one or more of the following areas: cryptography, web and network protocols, data structures and algorithms, software development, threat modelling, pen tests, or vulnerability assessments

- Understanding of cloud computing services/deployment architecture
- Experience in innovative security approaches in non-traditional IT environments
- Experience generating automated metrics to measure service and program effectiveness and consistency
- Excellent written and verbal communication skills with the ability to present complex technical information in a clear and concise manner to a variety of audiences
- Experience in the development of security products