Sr Pentest Security Engineer, Devices & Services
Description For Sr Pentest Security Engineer, Devices & Services
Amazon's Devices and Services Trust & Security organization is seeking a Senior Penetration Testing Engineer to join their offensive security team. This role focuses on identifying and exploiting vulnerabilities in Amazon's consumer devices, including Kindle, Ring, FireOS, Kuiper, Alexa, and eero products. The position involves conducting low-level reviews of hardware, bootloaders, radios, secure enclaves, and OS security features, as well as service reviews including authentication mechanisms, AI, mobile, and web apps.
The role combines hands-on technical work with strategic security improvements. You'll be performing penetration testing, developing proof-of-concept exploits, and using advanced techniques like symbolic execution, fuzzing, and machine learning. The team values work-life balance and offers flexible scheduling, creating an environment that promotes both professional growth and personal well-being.
As part of the internal penetration testing team, you'll work alongside talented security professionals, contributing to the entire software development lifecycle and vulnerability management process. The position offers opportunities to develop security tooling, conduct independent research, and directly impact the security of Amazon's consumer products.
The ideal candidate brings strong technical expertise in security engineering, excellent communication skills, and a passion for finding and mitigating security vulnerabilities. The role offers competitive compensation, comprehensive benefits, and the chance to work with cutting-edge technologies while protecting millions of Amazon customers worldwide.
Responsibilities For Sr Pentest Security Engineer, Devices & Services
- Perform penetration testing exercises across all products, services, and software
- Perform vulnerability research using variety of custom tooling and technologies
- Create tools for the discovery of vulnerabilities and scale security testing
- Review technical solutions to provide guidance to help mitigate security vulnerabilities
- Develop detailed technical documentation describing identified vulnerabilities
- Conduct independent vulnerability research on launched products or dependencies
Requirements For Sr Pentest Security Engineer, Devices & Services
- 5+ years of experience in penetration testing or similar offensive security role
- 5+ years of professional experience with security engineering practices
- 4+ years of experience with code auditing interpreted or compiled languages
- Experience with threat modeling, design review, or other threat analysis techniques
- Bachelor's degree in Computer Science or related field, or equivalent industry experience
Benefits For Sr Pentest Security Engineer, Devices & Services
- Flexible work schedule
- Work-life balance
- Medical benefits
- Financial benefits
- Mentorship and knowledge sharing opportunities
- Career growth opportunities
Jobs Related To Amazon Sr Pentest Security Engineer, Devices & Services
