Senior Security Engineer, AWS Offensive Security

Do you enjoy finding unique security issues? Do you enjoy protecting customers at scale? Do you like challenging assumptions? On the AWS Offensive Security team, you will help ensure our devices, applications, services, and systems are designed and implemented to the highest standards and resilient to modern threats.

As a Senior Security Engineer on the AWS Offensive Security team, you will:

• Conduct security reviews, including hands-on security evaluations (penetration testing)
• Analyze threat models and develop tooling to detect security issues at scale
• Dive into complex engineering discussions and leverage deep security expertise
• Provide clear technical direction and risk mitigation guidance for diverse engineering and business leaders
• Shape the future of cloud computing by securing foundational platforms with an emphasis on hardware

Key responsibilities:

• Lead and conduct security reviews (including hardware, servers, and devices)
• Perform penetration testing & vulnerability research
• Conduct threat modeling
• Provide security training and outreach to internal development teams
• Create security guidance documentation
• Assist with recruiting activities

You'll work on cutting-edge security issues for a wide variety of platforms and technologies, including:

• Cloud services
• Internet of Things (IoT)
• ML/GenAI
• Identity and access management
• Mobile devices
• Virtualization and custom hardware

The role offers opportunities for learning, growth, and making a positive impact on millions of people. Amazon Security values diverse experiences and is committed to creating an inclusive team culture.

Required Qualifications:

• BS in Computer Science or related field, or equivalent work experience
• Minimum of 5 years of experience in Security Engineering or Development of Security capabilities
• 2+ years of experience in at least two of the following:
  • Virtualization security (Xen, KVM, QEMU)
  • Hardware security (PCB, JTAG, UART, SPI, ROM, microcode, custom ASIC/FPGA)
  • x86 and/or ARM chipset and firmware security (TPM, UEFI, TrustZone, Secure Boot, PCIe)
  • Security testing including code review of compute platforms (Server, PC or Mobile)

Preferred Qualifications:

• MS in Computer Science, Information Security, or related field
• Experience with AWS services (EC2, GuardDuty, S3, IAM, Kinesis, Lambda, KMS, VPC, etc.)
• Knowledge of crypto basics and relevant security standards
• Experience in enterprise security risk management and operational business continuity programs
• Expert knowledge of Windows, Linux, and hypervisor security, especially in cloud environments

Amazon offers a competitive compensation package, including equity, sign-on payments, and a full range of benefits. The base pay for this position ranges from $143,300/year to $247,600/year, depending on the geographic market and other factors.