Security Engineer II, WW Ops Security

Stores Vendor Information Security Assurance (VISA) is seeking a well-rounded Security Engineer with experience across multiple domains to uphold and emulate the Amazon security bar for highest impacting third-party partners. The Stores VISA team is responsible for driving ongoing visibility to the security posture of third-party partners within the Stores Business Security Team (BST) and corresponding business organization.

Key responsibilities include:

• Building, evolving, and improving sustainable processes and measurement systems for security controls
• Establishing triggers and building automated mechanisms for deep dive assessments
• Partnering with threat intelligence teams for incident response
• Providing security input for assessment reporting and responses to findings
• Acting as a subject matter expert on Amazon's security bar
• Reviewing exceptions to policy and determining risk and impact
• Advising on security & compliance issues
• Maintaining metrics on partner security and compliance status
• Identifying internal business intelligence sources and leading integration efforts

The ideal candidate should have:

• Experience in network security, secure by design, and scaling secure expansion
• Strong troubleshooting, technical, and communication skills
• Ability to learn new technology concepts quickly
• Curiosity and willingness to dive deep into subject matter
• Solid business judgment and enthusiasm for risk management

This role offers opportunities to work on diverse security challenges across Amazon's products and services, with a focus on work-life harmony and an inclusive team culture.

Basic Qualifications:

• Bachelor's degree in relevant field or equivalent experience
• 3+ years of programming experience in object-oriented languages
• 5+ years of experience in identifying security issues and developing mitigation plans
• 3+ years of experience in areas such as identity management, cryptography, or vulnerability assessments
• 2+ years experience analyzing large datasets using SQL or other analytical tools

Preferred Qualifications:

• Experience in threat modeling, secure coding, or system administration
• Relevant security certifications (CISSP, CISA, GIAC)
• Experience with automation to solve problems at scale
• Strong leadership and collaboration skills
• Risk management and business risk analysis skills

This position will be based in Dallas, Texas, with potential international travel required.