AWS Product Security Engineer

Amazon.Com, Inc. Austin , TX 78719

Posted 3 months ago

Available in multiple locations. Preferred locations: Arlington, VA; Herndon, VA; Boston, MA; Seattle, WA; Austin, TX

Help us protect not only the Amazon Web Services (AWS) cloud computing environment but all of our customers as well! Since 2006, our great team at AWS has been enabling our customers to bring great ideas to life in ways that aren't possible in traditional IT environments. With AWS you can flexibly harness compute, storage, security, and other services from across the globe as your business demands them.

AWS Security is on the cutting edge of security for a wide variety of platforms and technologies including cloud services, Internet of things (IoT), identity and access management, mobile devices, virtualization, and custom hardware, all operating at massive scale. Similarly, our highly collaborative team is committed to each team member's growth as our business grows.

AWS Security is looking for a Product Security Engineer to design security controls and help validate that our services, applications, and emerging technologies are designed and implemented to the highest security standards. You will be responsible for analyzing the security of applications and services, discovering and addressing security issues, building security automation, and decisively taking action to mitigate emerging threats throughout a full secure development life-cycle (SDLC).

This role will provide career growth opportunities as you gain new security skills in the course of your work. Security engineers at AWS have an opportunity to experiment, learn, build tools, and work with teams building new technology and services at massive scale. Security engineers at all levels have the opportunity to learn from and be mentored by those who are building and securing our cutting-edge services. A security engineer is also expected to be a mentor for others and be a trusted security advisor within the organization.

A security engineer at Amazon is expected to have technical expertise in multiple domains and provide significant contributions to the AWS Security team and to multiple groups throughout Amazon. Security engineers are expected to develop elegant solutions to complex security risk problems and apply appropriate technologies while following security engineering best practices. This role requires a security engineer that can be recognized as an expert within AWS Security and by teams throughout Amazon on at least one knowledge domain, while being able to apply security engineering best practices in a broad range of technical areas.

A security engineer must demonstrate strong Amazon leadership principles. This role requires the ability to foster constructive dialogue and seek resolution when confronted with differing opinions on security risks. Engineers in this role are expected to participate fully in the planning of the AWS Security team's work and constantly seek opportunities for process improvement.

A successful candidate will need a combination of troubleshooting, technical, and communication skills. An AWS Product Security engineer must have the ability to take ownership and deliver on multiple complex objectives which may include project and software development work.

Your responsibilities will include:

  • Security reviews for new products, technologies, and services

  • Secure design, architecture, and implementation

  • Secure development life-cycle (SDLC) practices including threat modeling and security testing

  • Influence decision-makers and stakeholders throughout the organization in multiple teams to achieve a consistently high security bar

  • Lead penetration testing engagements and create new testing methods and exploits

  • Create security guidance and documentation

  • Develop security tools and automation

  • Develop and deliver security training and outreach to internal development teams

  • Develop and improve metrics that drive desired behavior and security outcomes

  • Lead security projects (including security reviews, tool development, and creation of new security practices) with end-to-end ownership

  • Support for mentoring, team building and recruiting activities

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Senior Security Operations Engineer

Ehealth, Inc.

Posted 2 days ago

VIEW JOBS 1/18/2020 12:00:00 AM 2020-04-17T00:00 Get your career started at eHealth eHealthInsurance has many exciting career opportunities in a number of locations, across various functions. Come join us today! eHealth is America's first and largest private online marketplace for health insurance, which allows individuals, families and small businesses to compare insurance options side by side and enroll in coverage. Our mission is to help everyone find affordable Healthcare coverage through our website technology, consumer advocacy, and personalized customer assistance. The company has continued to evolve into an effective Expedia equivalent in the health care space. The increasing confidence that analysts and shareholders are demonstrating by our record share price is a testimony to our position in the health care market. Building a high performance culture is critical for eHealth to continue on our path of intelligent and rapid growth and to win with our customers. We are looking for a great Security Engineer in Gold River, CA to join our global security Operations team. The team is responsible for infrastructure security operations, which includes managing SIEM, Vulnerability scanning, Endpoint protection (Antivirus/antimalware), penetration testing, web filtering & DLP. The ideal candidate will be someone who is very passionate about security and innovative in using the right security tools to protect the company infrastructure and valuable data. Demonstrated experience with implementing security controls to meet PCI-DSS, HIPAA and HiTrust compliance frameworks is a requirement. Job Responsibilities: * Evaluating new security tools and making recommendations * Implement new security tools and write architectural documentation * Work with various infrastructure, cloud and applications teams to configure security log collection into SIEM * Creating compliance reports and alerts for various security controls * Investigate security alerts and fine tune false positives * Configure security scans for vulnerabilities across infrastructure, cloud and applications * Work with various tech teams to ensure that the vulnerabilities are being patched * Work with external auditors to provide evidence for security controls * Write Standards and procedural documentation for the ongoing maintenance of the security program * Help troubleshoot security incidents * Participate in on-call rotation for security escalations * Work with external vendor to perform penetration testing Requirements: * Bachelor's degree in computer science, or equivalent * One or more security certifications like CISSP, CISM, CCSP * At least 5 years of experience in information technology. Most recent 2 years should be in information security * Experience in cloud security and/or certification in cloud infrastructure will be a plus * Experience with a common security framework like HiTrust or ISO-27001 will be a plus * Deep understanding of security concepts around encryption, secure communications, browser security, security logging/monitoring, single signOn, IAM, Vulnerability management, web filtering proxies, data loss prevention, incident management * Solid understanding of how TCP/IP, SSL, PKI/certificate management, Firewalls, Secure communications & Web proxies work * Experience managing a SIEM solution will be a big plus * Prior hands on experience in network management, Windows or Linux systems administration or application management is highly desirable. * Familiarity with the following security tools will be a plus: Qualys, SourceFire/Firepower, RSA Netwitness, splunk, PKI, Forcepoint, Symantec EndPoint protection, Symantec PGP encryption, bitlocker, Skybox, Kali Linux * Ability and technical depth to recommend new or enhanced security tools for respective technology components * Excellent communication skills, including the ability to interact effectively with executives, engineers, and internal customers * Excellent documentation skills and experience writing policies, standards and procedures * Strong ability to troubleshoot complex security conditions, with multiple 3rd party integrations * Great project management skill and ability to organize and prioritize work efficiently Technologies/Tools: Splunk, Kali Linux, RSA Netwitness, QualysGuard, Forcepoint web filtering, Sourcefire IDS/IPS, SSL, Safenet Encryption Key Management, AWS Security, Palo Alto Networks, Windows server, Linux, Symantec Endpoint Protection, 2FA, PKI eHealth is an Equal Employment Opportunity employer. It is our policy to provide equal opportunity to all employees and applicants and to prohibit any discrimination because of race, color, religion, sex, national origin, age, marital status, sexual orientation, genetic information, disability, protected veteran status, or any other consideration made unlawful by applicable federal, state or local laws. The foundation of these policies is our commitment to treat everyone fairly and equally and to have a bias-free work environment. If you are interested in applying for employment with eHealth and need special assistance or an accommodation to apply for a posted position contact us at: Ehealth, Inc. Austin TX

AWS Product Security Engineer

Amazon.Com, Inc.