Amazon

Senior Security Engineer-Lambda 1502959

6 days agoRemote

DESCRIPTION

AWS Lambda Security team is responsible for setting the security bar for Lambda. Our Mission is to lead security in serverless industry, prevent and detect Lambda end to end security risks to ensure customers confidently run their most security sensitive workloads on Lambda platform.

AWS Lambda Security is looking for a senior security engineer who will focus on Serverless threat modeling, Lambda Red team, Lambda Abuse/fraud issues mitigation, resolve security threats and vulnerabilities within our technology, provide security design consultant and pre AppSec review for Lambda service team.

Role and Responsibilities
• Set up Serverless threat modeling to evaluate Lambda service technology and business logic risks.
• Act as Lambda internal red team to test and verify any technology and business vulnerabilities.
• Build tool to detect fraud and abuse, remove a fraudulent customer from the platform or eliminate the customer's ability to exploit the platform.
• Lead security design or provide security design consultant for Lambda service during their SDLC.
• Provide pre AppSec review for Lambda service before released.

About Us:

Inclusive Team Culture

Our team is diverse! We drive towards an inclusive culture and work environment. We are intentional about attracting, developing, and retaining amazing talent from diverse backgrounds. Team members are active in Amazon's 10+ affinity groups, sometimes known as employee resource groups, which bring employees together across businesses and locations around the world. These range from groups such as the Black Employee Network, Latinos at Amazon, Indigenous at Amazon, Families at Amazon, Amazon Women and Engineering, LGBTQ+, Warriors at Amazon (Military), Amazon People With Disabilities, and more.

Work/Life Balance

Our team puts a high value on work-life balance. It isn't about how many hours you spend at home or at work; it's about the flow you establish that brings energy to both parts of your life. We believe striking the right balance between your personal and professional life is critical to life-long happiness and fulfillment. We offer flexibility in working hours and encourage you to find your own balance between your work and personal lives. This position involves on-call responsibilities, typically for one week every two months. We don't like getting paged in the middle of the night or on the weekend, so we work to ensure that our systems are fault tolerant. When we do get paged, we work together to resolve the root cause so that we don't get paged for the same issue twice.

Mentorship & Career Growth

Our team is dedicated to supporting new members. We have a broad mix of experience levels and tenures, and we're building an environment that celebrates knowledge sharing and mentorship. Our senior members enjoy one-on-one mentoring and thorough, but kind, code reviews. We care about your career growth and strive to assign projects based on what will help each team member develop into a better-rounded engineer and enable them to take on more complex tasks in the future.

BASIC QUALIFICATIONS

• Bachelor's degree in Computer Science, related field or relevant work experience in threat modeling, Red team, fraud, abuse or vulnerabilities
• 5+ years of industry experience with coding or hands-on security engineering experience in software or hardware security
• 5+ years of risk assessment and enabling organizations making security decisions
• 5+ years of experience communicating technical concepts to a non-technical audience
• Strong verbal and written communications skills are a must, as well as the ability to work effectively across internal and external organizations

PREFERRED QUALIFICATIONS

• Experience in technical security design or advisory work in support of a highly technical environment
• Solid technical background with cloud services/deployment architecture
• Strong analytical and quantitative skills with the ability to use data and metrics to back up assumptions and recommendations and drive actions
• Experience triaging security risks/vulnerabilities and ensuring that they are properly understood by the business and fixed and/or mitigated
• Excellent oral and written communication skills

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, visit US Disability Accommodations.

Job ID: Amazon-1502959

Company Videos

Hear directly from employees about what it's like to work at Amazon.