AWS Sr Application Security Engineer, AppSec -EC2

Join to apply for the AWS Sr Application Security Engineer, AppSec -EC2 role at Amazon Web Services (AWS)

Help us protect not only the Amazon Web Services (AWS) cloud computing environment but all of our customers as well! Since 2006, our great team at AWS has been enabling our customers to bring great ideas to life in ways that aren’t possible in traditional IT environments. With AWS, you can flexibly harness compute, storage, security, and other services from across the globe as your business demands them.

AWS Security is on the cutting edge of many security issues for a wide variety of platforms and technologies including cloud services, Internet of Things (IoT), identity and access management, mobile devices, virtualization, and custom hardware, all operating at massive scale. Our highly collaborative team is committed to each member’s growth as our business grows.

We are seeking an Application Security Engineer to help validate that our services, applications, and websites are designed and implemented to the highest security standards. Responsibilities include analyzing application security, discovering and addressing security issues, building security automation, and reacting to new threats. You will have the opportunity to learn from and be mentored by experts building and securing cutting-edge services.

As a Security Engineer at Amazon, you are expected to contribute significantly to the AWS IT Security team and other groups. You should develop elegant solutions to complex problems, mentor junior engineers, and be a security thought leader. Participation in planning, process improvement, and deep understanding of security domains are essential.

Your skills should include troubleshooting, technical communication, and handling diverse tasks, including project and software development. This role offers career growth as you acquire new security skills.

• Application security reviews
• Mobile security reviews
• Secure architecture design
• Threat modeling
• Research projects
• Security training and outreach to development teams
• Security guidance documentation
• Security tool development
• Security metrics and improvements
• Recruitment and administrative support

• BSc in Computer Science or related field, or equivalent experience
• Experience with Python, Java, C++
• Expertise in cloud network security
• 5+ years in application security including threat modeling, secure design reviews, code reviews, pen-testing
• Knowledge in identity management, cryptography, networking, web protocols

• Experience with EC2 AWS services like VPC, IAM, Security Groups, EBS, Outposts

Amazon values diversity and encourages candidates with varied experiences to apply. We offer opportunities for training, career development, and a flexible work environment. We are committed to an inclusive culture and provide accommodations for applicants with disabilities.