Senior Security Engineer

Key job responsibilities
In addition to a strong understanding of security technologies, tool development, offensive and defensive security tactics, and ideally some experience with data warehousing, database services, and distributed systems, you’ll need a number of other qualities to be successful in this role. You’ll need to lead and understand the operational challenges associated with managing a fleet of distributed systems that are heavily automated and interact with operational systems. You’ll be a leader in working with customers and partners on security controls, integration, and operations.

A day in the life
Each day, hundreds of thousands of developers execute billions of transactions worldwide on our cloud. They harness the power of AWS to enable innovative applications, websites, and businesses. The Amazon Redshift Security team works with every engineering team in Redshift to deliver on AWS’s commitment that security is our number one priority. In addition, we work with many partner AWS service teams to solve security challenges at massive scale. We build customer trust by building features and services that meet the security goals of our customers, from compliance to analysis. We dive deep into security technologies such as new authentication systems, hardware security components, cryptography, system hardening, and massive-scale audit analysis.

About the team
Our team is dedicated to supporting new members. We have a broad mix of experience levels and tenures, and we’re building an environment that celebrates knowledge sharing and mentorship. We care about your career growth and strive to assign projects based on what will help each team member develop into a better-rounded engineer and enable them to take on more complex tasks in the future.

Our team also puts a high value on work-life balance. Striking a healthy balance between your personal and professional life is crucial to your happiness and success here, which is why we aren’t focused on how many hours you spend at work or online. Instead, we’re happy to offer a flexible schedule so you can have a more productive and well-balanced life—both in and outside of work.

BASIC QUALIFICATIONS

• BS in Computer Science or related field, or equivalent work experience
• 5+ years of experience in Security Engineering or Development of Security capabilities, supporting engineering projects from concept to delivery
• 5+ years of security architecture, or assessment techniques and technologies
• 5+ years experience building threat models
• 3+ years of hands-on experience performing security assessments
• 2+ years in two or more of the following technical categories:) — Virtualization security (Xen, KVM, QEMU) — Hardware security (PCB, JTAG, UART, SPI, ROM, microcode, custom ASIC/FPGA) — x86 and/or ARM chipset and firmware security (TPM, UEFI, TrustZone, Secure Boot, JTAG, PCIe) — Physical security testing at the machine level — Security testing of compute platforms (Server, PC or Mobile) — Working with diverse physical tamper resistance and/or tamper detection techniques

PREFERRED QUALIFICATIONS

• You have deep knowledge of and proven development on AWS
• You are comfortable generating automated metrics to measure operations and program effectiveness
• You thrive and succeed in a hyper-growth environment where priorities shift fast
• You have a solid work ethic based on a strong desire to exceed expectations; hands-on experience working successfully in a very fast-paced, results-oriented environment
• You have deep experience with security tools such as intrusion detection, log analysis and network scanning
• You have deep knowledge of web, security, and networking protocols
• You have prior P&L level ownership or equivalent work experience
• You intrinsically demonstrate Amazon’s leadership principles
• You possess the functional and technical depth for this role