Amazon Sr Security Engineer Detection Engineering 

United States, New York, New York 

977517864

Key job responsibilities
- Scaling vulnerability detection by inventing, developing and improving custom high quality automated detection tools (e.g. static analyzers, fuzzers, scanners, etc.) to perform variety of security vulnerability (SAST, DAST etc.) analysis.
- Providing actionable long-term risk mitigation guidance as well as engineering auto-remediation capabilities to drive security improvements at scale.
- Making strategic decisions on new security detection solutions which should be pursued for scaling security in builder organizations.
- Proposing mechanisms for integrating security detection tools into the development life-cycle.
- Inventing advanced security detection tools which developers can use to self-discover and avoid security vulnerabilities and misconfigurations.- Independently tackling large cross-cutting security issues affecting multiple builder orgs. Prioritize and develop security issue detection, collaborating with partner orgs to address unique requirements.A day in the life

- CCSP (Certified Cloud Security Professional) or CEH (Certified Ethical Hacker) or CFR (CyberSec First Responder) or Cloud+ or CySA+ (CompTIA Cybersecurity Analyst) or GCED (GIAC Certified Enterprise Defender) or GICSP (Global Industrial Cyber Security Professional) or PenTest+
- Knowledge and understanding of security engineering, system and network security, authentication and security protocols, cryptography, and devices and application security.
- Experience as a mentor, technical lead, or leading an engineering team.
- Proven experience in threat modeling, code reviews, security testing, vulnerability detection, attacker exploit techniques, and methods for their remediation.

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.