Pentest Security Engineer II, Devices & Services Pentesting
Description For Pentest Security Engineer II, Devices & Services Pentesting
Join Amazon's elite penetration testing team within the Devices and Services Trust & Security (DSTS) organization, focusing on detecting and exploiting vulnerabilities across Amazon's vast portfolio. From consumer services to Kuiper satellites, you'll conduct in-depth security reviews of complex service workflows, including authentication mechanisms, AI, mobile applications, and web APIs.
The role combines technical expertise with innovation, as you'll develop new automation techniques using AI/LLMs, fuzzing, and static analysis. DSTS, established in 2014, protects over 100+ device types, 12,000+ applications, and 100+ product lines used by 16,000+ builders. You'll be instrumental in shaping Amazon's service security future, working directly with builder teams to identify high-impact vulnerabilities.
As a Pentest Security Engineer, you'll dive deep into service architectures and source code, bringing a creative approach to finding security flaws. Your work directly impacts millions of customers' safety, requiring excellent prioritization and communication skills at all organizational levels. The position offers a perfect blend of hands-on security testing and tool development, ideal for those passionate about cybersecurity.
The team values work-life balance, offering flexible schedules and a collaborative environment that celebrates knowledge sharing. You'll join a diverse group of security professionals with varying experience levels, working in an inclusive culture that embraces continuous learning and professional growth. The role provides extensive opportunities to work with cutting-edge technologies while protecting Amazon's expanding ecosystem of products and services.
This position is perfect for security enthusiasts who want to make a significant impact on consumer device security while working with some of the most advanced technologies in the industry. The role offers the unique opportunity to protect everything from everyday consumer devices to space satellites, making it an exciting challenge for security professionals looking to push their boundaries and grow their careers.
Responsibilities For Pentest Security Engineer II, Devices & Services Pentesting
- Lead and contribute to penetration tests against services and software
- Analyze and identify security vulnerabilities using automated and manual analysis
- Review and influence technical solutions for security vulnerabilities
- Lead security improvements in large product lines
- Develop detailed technical documentation
- Mentor junior penetration testers
Requirements For Pentest Security Engineer II, Devices & Services Pentesting
- 3+ years of experience identifying, exploiting, and remediating web application and service API vulnerabilities
- Experience in code review and vulnerability identification
- Experience in secure system architecture design and threat modeling
- Knowledge of cloud service providers, preferably AWS
- Bachelor's degree in Computer Science or related field, or equivalent industry experience
Benefits For Pentest Security Engineer II, Devices & Services Pentesting
- Flexible work schedule
- Career growth opportunities
- Mentorship programs
- Training and development resources
- Work-life balance
Jobs Related To Amazon Pentest Security Engineer II, Devices & Services Pentesting
