Job Information
Amazon Sr Offensive Security Engineer (Remote), Devices and Services Red Team in Virtual Location - UK, United Kingdom
Description
Devices and Services Trust and Security (DSTS) is seeking a talented Senior Offensive Security Engineer to help fortify our systems and processes against the latest threats. In this critical role, you will be part of a specialized team responsible for conducting offensive security operations, proactively testing for emergent threats, and providing strategic security insights to our development, deployment, monitoring, and incident response teams.
As a Senior Offensive Security Engineer, you will leverage your extensive expertise in security testing, vulnerability research, and red teaming to uncover security weaknesses. You will employ advanced offensive security tools and techniques to assess the resilience of our infrastructure, applications, and cloud environments.
Collaborating closely with our security and engineering groups, you will integrate offensive security perspectives into their workflows. Your insights will directly shape the secure development, deployment, and monitoring practices across our organization.
This is a challenging and rewarding opportunity for a seasoned offensive security professional who thrives on the constant evolution of the threat landscape.
Key job responsibilities
A Senior Offensive Security Engineer in DSTS will be strong in multiple security domains and sought out for advice on technical issues. Efficient time management skills are required along with the ability to deliver results in the face of uncertainty.
Engineers in this role must show exemplary judgment in making technical trade-offs between short versus long term security and business goals. They must also demonstrate resilience and navigate difficult situations with composure and tact. The successful candidate must be one that can handle several difficult challenges and problems, can make risk-based assessments founded on data and facts.
A day in the life
As a senior offensive security engineer in DSTS, you will:
Lead offensive security “Red Team” operations of our products, systems and processes to improve our ability to protect, detect and respond to adversaries and protect our customers
Develop innovative and scalable tools, solutions, and processes to enhance the team's velocity and scale to Amazon needs
Communicate with senior leadership and technology leaders to prioritize and execute remediation plans
Effectively collaborate in a fast-paced environment with multiple teams in a large organization (threat intelligence, incident response, software development, QA, Project/Release Management, Build and Release, etc.).
About the team
Why Amazon Security?
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
Inclusive Team Culture
In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.
Training & Career Growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.
Basic Qualifications
Bachelors Degree in Computer Science or related field, or equivalent work experience
7+ years of experience in multiple security engineering disciplines (red teaming, penetration testing, security operations, application security, fuzz testing, etc.)
Experience with Windows, Linux, and MacOS operating systems
Deep knowledge of Cloud security principles (preferably AWS)
Experience running Red Team or penetration testing campaigns in large, complex organizations
Preferred Qualifications
Master's degree or advanced technical degree
Excellent communication and data presentation skills that allow you to clearly, compellingly, and effectively influence audiences internally and externally, across organizational boundaries
Deep knowledge of at least one scripting language (Python, Perl, Ruby, etc.)
Experience in automation via scripting and configuration management tools (Chef, Puppet, Ansible, Salt, CloudFormation, Terraform)
Security testing tools including Cobalt Strike, C2 infrastructure, Burp Suite, etc
Ability to take a project from scoping requirements through actual launch of the project
Experience in communicating with users, other technical teams, and management to collect requirements, describe software product features, and technical designs.
Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice (https://www.amazon.jobs/en/privacy_page) to know more about how we collect, use and transfer the personal data of our candidates.
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/content/en/how-we-hire/accommodations.