• Sr. Security Engineer

    Location US-VA-Herndon
    Posted Date 13 hours ago(7/20/2018 7:40 AM)
    Job ID
    550131
    Company
    Amazon Web Services, Inc.
    Position Category
    Systems, Quality, & Security Engineering
  • Job Description



    At Amazon, we’re working to be the most customer-centric company on earth. To get there, we need exceptionally talented, bright, and driven people. If you’d like to help us build the place to find and buy anything online, this is your chance to make history.

    The Data Center Global Services organization is looking for exceptional individuals to join our Data Center Systems security team as a Sr. Security Engineer. As a security engineer, you will drive, architect, and implement the core functionalities and critical enhancements to our global infrastructure to make it the most secure environment available.





    The successful candidate will be an experienced security practitioner having a technical background in risk management, vulnerability testing and product evaluation. Specifically, we are looking for someone with past experience assessing industrial control and embedded systems for inherent risk. This position will conduct testing and author assessment reports making recommendations for proposed product deployments of new hardware and software in our Data Centers. Location: Herndon, VA or Broomfield CO

    Your responsibilities will include:


    • Focusing on real-time mission critical technologies of security: SCADA, electrical power, building management and other control systems
    • Implementing and maintaining security policy
    • Advising development staff on application security
    • Host and network security tools and implementation
    • Coordinating intrusion and penetration tests
    • Leading design reviews for complex systems
    • Identify security issues and risks, and develop mitigation plans
    • Advise and consult with internal customers on risk assessment, threat modeling and fixing vulnerabilities
    • Develop and interpret security policies and procedures
    • Evaluate and recommend new and emerging security products and technologies
    • Participate in security compliance efforts

    Basic Qualifications

    • B.S. Degree in Computer Science or equivalent. Must have solid working experience and knowledge of Windows and Unix/Linux operating systems
    • Strong experience with detailed technical knowledge in security engineering, system and network security, authentication and security protocols, cryptography, and application security
    • At least 5 years of experience in infrastructure or application-level vulnerability testing and auditing
    • At least 2 years of system, network and / or industrial controls security experience
    • Scripting skills (e.g., Perl, shell scripting)
    • Experience with the application of threat modeling or other risk identification techniques
    • Consistent implementation of security solutions at the enterprise level
    • Excellent written and verbal communication skills

    Preferred Qualifications

    • M.S. Degree in Computer Science or equivalent
    • Certification in SCADA or Industrial Control Systems (GICSP or equivalent)
    • Knowledge of controls protocols such as BACnet, Modbus, Modbus TCP/IP, LonWorks, and XML
    • Experience with cloud computing technologies
    • Strong knowledge of data structures, algorithms, and designing for performance, scalability, and availability
    • Detailed knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits
    • Experience with web-based applications and/or web services-based applications, especially at massive scale, are very applicable and helpful
    • Programming in C, C++, Java, Python, Perl, and/or Ruby
    • Meets/exceeds Amazon’s leadership principles requirements for this role
    • Meets/exceeds Amazon’s functional/technical depth and complexity for this role
    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share this job