Senior Security Engineer, Vulnerability Management Operations at Amazon

Amazon develops products and services that transform the way customers live. Across teams and geographies we strive to delight customers and earn their trust. Members of the Stores Security team are guardians of that trust. From drones to grocery stores and everything in between our mission is to assess risk classify data and systems detect potential intrusion and respond quickly to security events across Amazons critical business functions including Retail Customer Service Worldwide Operations Consumer Payments Physical Stores and Healthcare. Within Stores Security the Vulnerability Management and Remediation Operations (VMR Operations) organization is responsible for all aspects of the Vulnerability Management lifecycle across Amazon including intake assessment discovery and response. The VMR Operations organization is looking for a Senior Security Engineer with deep technical expertise in vulnerability management threat intelligence and security operations to join us in building and maturing our VMR Operations this role you will be responsible for driving the strategic technical and engineering direction of the Vulnerability Management Program. You will leverage relationships with engineers across Stores Security business teams and leaders throughout Amazon prioritize deliverables escalate roadblocks and improve organizational processes. You will build trust with Senior Engineers and leaders by leveraging your technical expertise to understand technical challenges design improved solutions and hold a high operational security bar. Finally you will use your information security expertise to champion and drive risk-based decisions across complex multi-disciplinary programs to ensure Amazon properly manages security risk. About the teamWhy Amazon SecurityAt Amazon security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazons products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud devices retail entertainment healthcare operations and physical stores.Work/Life BalanceWe value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home theres nothing we cant achieve.Inclusive Team CultureIn Amazon Security its in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas perspectives and voices.Training and Career GrowthWere continuously raising our performance bar as we strive to become Earths Best Employer. Thats why youll find endless knowledge-sharing training and other career-advancing resources here to help you develop into a better-rounded professional.- 4 years of non-internship background in troubleshooting systems issues analyzing logs or automating complex tasks using command line tools experience- 5 years of work in identifying security issues and risks and developing mitigation plans experience- 4 years of (non-internship) scripting programming and security code review in common programming languages experience- Experience working in identifying security issues and risks and developing mitigation plans- Experience (non-internship) in industry-based security vulnerabilities identification attack patterns and remediation techniques- Experience applying threat modeling or other risk identification techniques or equivalent- Experience with security in service-oriented architectures/microservices and web servicesAmazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status disability or other legally protected status.Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process including support for the interview or onboarding process please visit for more information. If the country/region youre applying in isnt listed please contact your Recruiting Partner.Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $143300/year in our lowest geographic market up to $247600/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge skills and experience. Amazon is a total compensation company. Dependent on the position offered equity sign-on payments and other forms of compensation may be provided as part of a total compensation package in addition to a full range of medical financial and/or other benefits. For more information please visit This position will remain posted until filled. Applicants should apply via our internal or external career site.Required Experience:Senior IC Key Skills Splunk,Compliance Management,IDS,SOC,Cybersecurity,Identity & Access Management,Security,Information Security,Process Engineering,Metadata,Encryption,Siem Employment Type : Full-Time Experience: years Vacancy: 1 Yearly Salary Salary: 143300 - 247600