Returning Candidate?

Security Architect, AmazonBooks Systems

Security Architect, AmazonBooks Systems

Job ID 
Posted Date 
Company Services, Inc.
Position Category 
Systems, Quality, & Security Engineering
Recruiting Team 

Job Description

Would you like to be one of the leaders of a team that is solving new business challenges through innovative technology?

Team: Amazon Books is a brick and mortar store that offers a curated selection of books and an array of Amazon devices. It is a magical experience that combines the best parts of a neighborhood bookstore with’s low prices and the expertise of passionate, knowledgeable staff who tailor their approach to the unique needs of each customer.

Our team is building brand new Product Search and Discovery solutions for the Amazon Books customer. We will help customers discover the products they would like faster and enable them to make a purchase they will be delighted with. Customers are asking questions like “Do you have it in the store?”, “Which store is it available in?”, “What would you recommend for me?” To give them the answer, we need to use innovative technology to identify where the customer is physically located and search through millions of records while maintaining low latency. We use Amazon’s massive amount of data to personalize the customer experience and connect their online and offline presence.

Role: You will influence architecture and technical design of our websites, cloud services, client applications, hardware, and network to ensure they are meeting the highest security standards and in compliance with industry requirements such as PCI-DSS. You will engage throughout entire engineering lifecycle. You will lead threat modeling and architecture analysis, penetration testing, and development of operating procedures to ensure highest standards in security are adopted for the POS and other in-store systems. You will guide the software engineers to design solutions that provide balanced mitigations for identified vulnerabilities and exposures. If you enjoy designing secure systems but also thinking like a hacker, breaking designs discovering security vulnerabilities, moving quickly reacting to new threat scenarios, this position will provide you with a challenging and high visibility opportunity.
  • You should be comfortable with a degree of ambiguity and able to work independently. You should have a broad view into the industry – both threat landscape and modern countermeasures. You should also be excited by technology, passionate about learning and should view every customer interaction as an opportunity to create an incredible customer experience. This is an opportunity to work on our team with industrial–scale distributed systems on a massive scale across multiple devices, multiple stores and thousands of customers. Come join our team that enables builders build software and delight customers! As a security practitioner, you will have a great opportunity to expand your technical horizon, have fun, and make a positive impact on millions of people.

Basic Qualifications

  • Bachelor’s degree in Computer Science or related field.
  • 5+ years of Architecture design experience in the Information Security discipline
  • We are looking to team members who have an analytical approach to complex problem solving
  • Ability to lead a small virtual team of highly technical professionals in a cooperative, complex, large-scale online services environment.
  • Knowledge of threat modeling or other risk identification techniques
  • Knowledge of techniques for authentication, authorization and usage of cryptographic systems such as PKI
  • Good understanding of C, C++, and Java development on Unix and Windows platforms
  • Scripting skills (e.g., Perl, Python shell scripting)
  • Knowledge of network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)

Preferred Qualifications

  • Master’s/PhD in Computer Science or related field.
  • 8+ years of security engineering experience
  • 3+ years of experience in vulnerability testing and auditing
  • Experience with payment card security and industry standards such as PCI-DSS is a plus
  • Experience with cloud platforms (AWS, Azure) solutions security
  • Experience with IoT systems and solution