Senior Security Engineer, ReSec Red Team
DESCRIPTION
The ReSec Red Team members participate in security research and review, penetration testing, threat modeling and design. We are looking for a Senior Security Engineer with a focus on database security to help ensure our services and applications are designed and implemented to the highest security standards. We need individuals who are passionate about security and vulnerability research as well as database technologies.
BASIC QUALIFICATIONS
- 6+ years' experience in software security (vulnerability research, penetration testing, etc)
- Bachelors' degree in Computer Science or similar field or equivalent work experience.
- Deep knowledge and experience in Linux and Linux internals
- Working knowledge of at least one scripting language (shell, Python, Perl).
- Working knowledge of at least one relation databases with the focus on user and role management, authentication/authorization and network protocol
PREFERRED QUALIFICATIONS
- Passionate about computer security and desire to explore and find security issues (“break things”).
- Experience performing or supporting Red Team engagements / penetration testing
- Participation in computer security competitions (CTFs), Bug Bounty programs, opensource security research, CVE analysis
- Domain expertise in at least 3 of: security architecture and engineering, communication and network security, identity and access management (IAM), security assessment and testing, cryptography, and software development security.
- A data-driven and quantitative mentality—you excel in supporting ideas with available evidence.
- Experience with the design and implementation of technical security controls at the business division level.
- Experience engineering, administering or managing at least one relational database engine, preferably MySQL/MariaDB or PostgreSQL
- Experience with AWS or similar enterprise cloud computing platforms.
- Experience with full-stack (Linux / Unix) software architectures from UI to infrastructure.
- Working knowledge of C/C++
- Experience with managing security incidents and threat response
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.
Los Angeles County applicants: Job duties for this position include: work safely and cooperatively with other employees, supervisors, and staff; adhere to standards of excellence despite stressful conditions; communicate effectively and respectfully with employees, supervisors, and staff to ensure exceptional customer service; and follow all federal, state, and local laws and Company policies. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness and professionalism, and safeguard business operations and the Company’s reputation. Pursuant to the Los Angeles County Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.
Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $143,300/year in our lowest geographic market up to $247,600/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits. This position will remain posted until filled. Applicants should apply via our internal or external career site.