Software Development Engineer, AWS Vulnerability Management at Amazon

In this role you will design and build innovative tooling and GenAI-powered solutions that enable attestation of fleet and security control information to internal and external audit and regulatory bodies. You will create systems that help security engineers investigate understand and articulate the true nature of risks associated with software vulnerabilities across AWS. Your work will include building automation to prioritize risks developing programs that report accurately on contextualized risk and collaborating closely with stakeholders in Security Assurance and Proactive Security to simplify how we measure risk across our lines of business and services. This role combines long-term strategic technical projects that raise the bar on security tooling across the enterprise with the excitement and challenge of rapidly adapting to changing attestation needs for a globally distributed fleet.In this role you will be expected to deliver:* Design and build scalable tools and platforms that automate the collection validation and attestation of security control and fleet data*Develop systems that enable security teams to investigate and contextualize vulnerability risks across all AWS products and services*Create APIs and integrations that connect compliance risk and attestation systems with audit workflows*Build self-service capabilities that empower teams to efficiently respond to audit and regulatory requestsGenAI & Intelligence Features* Implement GenAI-powered features to accelerate evidence gathering risk analysis and compliance documentation* Develop intelligent systems that help articulate and communicate risk context to diverse audiences* Create automated report generation capabilities that translate technical security data into audit-ready attestations* Leverage LLMs and machine learning to improve risk prioritization and decision-makingCollaboration & ImpactTo be successful you will partner closely with Security Assurance and Proactive Security teams to understand requirements and deliver solutions that simplify risk measurement. You will work with security engineers to understand their workflows and build tools that enhance their effectiveness and collaborate with audit and compliance stakeholders to ensure tooling meets regulatory and attestation standards.TKey job responsibilities*Tooling & Automation DevelopmentDesign and build scalable tools and platforms that automate the collection validation and attestation of security control and fleet dataDevelop systems that enable security teams to investigate and contextualize vulnerability risks across all AWS products and servicesCreate APIs and integrations that connect compliance risk and attestation systems with audit workflowsBuild self-service capabilities that empower teams to efficiently respond to audit and regulatory requestsGenAI & Intelligence FeaturesImplement GenAI-powered features to accelerate evidence gathering risk analysis and compliance documentationDevelop intelligent systems that help articulate and communicate risk context to diverse audiencesCreate automated report generation capabilities that translate technical security data into audit-ready attestationsLeverage LLMs and machine learning to improve risk prioritization and decision-makingCollaboration & ImpactPartner closely with Security Assurance and Proactive Security teams to understand requirements and deliver solutions that simplify risk measurementWork with security engineers to understand their workflows and build tools that enhance their effectivenessCollaborate with audit and compliance stakeholders to ensure tooling meets regulatory and attestation standardsContribute to the technical direction of compliance and attestation systems across AWSTechnical ExcellenceDemonstrate both depth and breadth in your technical knowledge from low-level systems to high-level architectureBuild robust maintainable code that meets the highest standards for security and reliabilityDefine and track metrics and KPIs to measure the effectiveness and adoption of your toolsParticipate in technical design reviews and contribute thought leadership on compliance automationAbout the teamAbout Amazon SecurityDiverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description we encourage candidates to apply. If your career is just starting hasnt followed a traditional path or includes alternative experiences dont let it stop you from applying.Why Amazon SecurityAt Amazon security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazons products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud devices retail entertainment healthcare operations and physical stores.Inclusive Team CultureIn Amazon Security its in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas perspectives and voices.Training & Career GrowthWere continuously raising our performance bar as we strive to become Earths Best Employer. Thats why youll find endless knowledge-sharing training and other career-advancing resources here to help you develop into a better-rounded professional.Work/Life BalanceWe value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home theres nothing we cant achieve.- 5 years of non-internship professional software development experience- 5 years of programming with at least one software programming language experience- 5 years of leading design or architecture (design patterns reliability and scaling) of new and existing systems experience- Experience as a mentor tech lead or leading an engineering team- 5 years of full software development life cycle including coding standards code reviews source control management build processes testing and operations experience- Bachelors degree in computer science or equivalentAmazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status disability or other legally protected status.Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process including support for the interview or onboarding process please visit for more information. If the country/region youre applying in isnt listed please contact your Recruiting Partner.Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $151300/year in our lowest geographic market up to $261500/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge skills and experience. Amazon is a total compensation company. Dependent on the position offered equity sign-on payments and other forms of compensation may be provided as part of a total compensation package in addition to a full range of medical financial and/or other benefits. For more information please visit This position will remain posted until filled. Applicants should apply via our internal or external career site. Key Skills Account Payable,Apache Commons,Community Support,Corporate Risk Management,Garment,Java Employment Type : Full-Time Department / Functional Area: Software Development Experience: years Vacancy: 1 Yearly Salary Salary: 151300 - 261500