Amazon Senior Security Engineer Defensive Solutions DSS 

United States, Texas, Austin 

8932196

The Defensive Security Solutions (DSS) team is seeking a seasoned Senior Security Engineering to work along side other security engineers, and software engineers to create Amazon’s next vulnerability scanning framework. In this role you will be part of net new innovations that will make vulnerability management efficient at Amazon scale. You will report into the head of our vulnerability scanning and visibility charter. In this position you will take the prominent role in shaping the next three years of vulnerability management tool chains.Key job responsibilities
As a Senior Security Engineer on the DSS team, you will:
- Advise senior leaders, head of scanning and visibility, peer senior software engineers, and vulnerability management stakeholders regarding scanning and detection solutions that cover host and container assets.
- You will perform threat modeling for all DSS Tier-1 solutions, while mentoring peer security engineers on the ways of a security Jedi!
- You will assist Principal Engineers on moving large security project forwards, providing hands on coding, detection, and security analysis contributions as needed.
- Contribute early and often to your software teams code packages, feature set, and value propositions. You will work with product managers, technical program managers, and software development managers to bring your solutions to delivery.
- You will support a variety of software and security teams spanning Incident Response, Vulnerability Management, and Remediation.
A day in the life
To achieve your responsibilities you will work hand in hand with a global team of security engineers across the globe, ensuring your team's security solutions meet their needs.
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.
Work/Life BalanceTraining and Career Growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.

- Bachelors degree in Computer Science or related technical degree with 5+ years engineering experience in the development of security products and/or system, network, and/or application security. Will consider additional 4 years of related experience in lieu of degree.
- 5 years experience improving accuracy of vulnerability detection mechanisms across a diverse technical ecosystem.
- 5 years experience and deep knowledge of vulnerabilities, exploits and vulnerability management systems
- 5 years experience developing vulnerability assessment tests, tools and exploits in Python, Java, etc
- 3 years experience building applications or systems on cloud-based services.

- Experience creating, deploying, and maintaining host and/or container scanning systems.
- Experience in authoring and deploying vulnerability detection solutions.
- Familiar with software best practices, engineering excellence, and system design.
- Able to write production grade Python and Java applications.