Security Engineer, Vulnerability Management and Remediation Operations

DESCRIPTION

Embark on a Mission to Fortify Amazon's Defenses as a Security Engineer with the Vulnerability Management & Remediation Operations team!
Amazon Security is seeking a Security Engineer to join our Vulnerability Management and Remediation Operations (VMRO) team in London, UK. The VMRO team is responsible for discovering, assessing, triaging, detecting, and driving the remediation of vulnerabilities across the Amazon ecosystem.

Key job responsibilities

1. Analyse public and private vulnerability disclosures and exploit code.
2. Deeply understand and assess the technical details and potential impact of vulnerabilities across Amazon's infrastructure, services, and applications.
3. Investigate and triage vulnerabilities, identifying severity and the scope of potential impact to Amazon.
4. Support response and remediation efforts, assisting builder teams to fix their security issues in a timely manner.
5. Engineer high quality, scalable, and accurate vulnerability detection mechanisms.
6. Design and implement automation, tools and workflows to enhance our operations capabilities.
7. Be part of a global team and participate in periodic on-call responsibilities to ensure the continuous monitoring and remediation of vulnerabilities.

BASIC QUALIFICATIONS

• Bachelor's degree in computer science or equivalent.
• Knowledge of networking protocols such as HTTP, DNS and TCP/IP.
• Experience programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object-oriented language.
• 5 years security engineering experience in system, network, and/or application security.
• 5 years experience developing vulnerability assessment tests with Python or Java.
• 5 years experience improving accuracy of vulnerability detection mechanisms across a diverse technical ecosystem.
• 3 years experience troubleshooting networking, operating systems, applications, or cloud services.
• 3 years experience building cloud-based services.

PREFERRED QUALIFICATIONS

• Experience with AWS products and services.
• Experience with any combination of the following: threat modeling, secure coding, identity management and authentication, software development, cryptography, system administration and network security.

Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice (here) to know more about how we collect, use and transfer the personal data of our candidates.

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.

Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit here for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.