Security Engineer III, Vulnerability Management and Response - Strategic Enablement

Amazon Security’s Vulnerability Management and Response – Strategic Enablement team is looking for a Security Engineer III to lead the design and development of advanced security automation, workflows, and tooling for vulnerability detection, assessment, and remediation across Amazon’s ecosystem.

• Define the technical security strategy for vulnerability management automation and a homegrown vulnerability detection platform, ensuring scalable integration of new security capabilities into Amazon’s infrastructure.
• Lead the design and development of advanced security automation, workflows, and tooling; delegate implementation details to other engineers while ensuring technical excellence and alignment with team objectives.
• Drive the creation of proof‑of‑concepts and production‑ready solutions for vulnerability detection, assessment, and remediation across diverse environments.
• Partner with TPMs, SDEs, and cross‑organizational stakeholders to translate ambiguous program requirements into robust technical designs that scale across Amazon.
• Perform deep research and analysis on emerging vulnerabilities, novel exploitation techniques, and industry trends.
• Mentor, coach, and develop other security engineers, fostering independent problem‑solving and strong mental models.
• Serve as the escalation point for complex issues, providing clarity, context, and principled technical direction.

Start your morning reviewing vulnerability scan data and building SQL queries. Collaborate with VMR Operations on new container vulnerability detection patterns, code Lambda scripts, review designs with SDE teams, mentor a junior engineer, and end your day testing automation workflows and preparing insights for leadership reviews.

• 4+ years of experience troubleshooting systems issues, analyzing logs, or automating complex tasks.
• 5+ years of experience identifying security issues and risks and developing mitigation plans.
• Experience in industry‑based security vulnerability identification, attack patterns, and remediation techniques.
• Experience as a mentor, tech lead, or in leading an engineering team.

• Experience applying threat modeling or other risk identification techniques.
• Experience with security in service‑oriented architectures/microservices and web services.

Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.

Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information.

Compensation ranges from $143,300 to $247,600 per year, based on market location. Additional equity, sign‑on payments, and benefits may apply.

Position will remain posted until filled. Applicants should apply via our internal or external career site.

Job ID: A3104531

Senior Level: Mid‑Senior

Employment Type: Full‑time

Job Function: Quality Assurance, Information Technology, and Engineering

Industry: Software Development