Jobs
>
Seattle

    Senior Security Engineer-Application Security - Seattle, WA, United States - Amazon

    Amazon
    Amazon Seattle, WA, United States

    4 weeks ago

    Amazon background
    Description
    This role can be in Seattle, WA, Austin, TX, New Jersey, San Francisco, CA or Sunnyvale, CA.

    Physical Retails Stores (PRS) Security Engineering (PRS-SecEng) team is responsible for ensuring all applications running in PRS meet Amazon security bar.

    Our scope includes all applications (Software, Hardware, 3rd Party) running in Wholes Food Market, Amazon Go, Fresh and Styles stores.

    We engage with developers at concept stage, provide them with security requirements, suggest best security solutions for various use cases, ensure applications will generate correct logs for detection and incident response use cases.

    We, then, review the final solution, understand architecture, create threat models, perform automated and manual code reviews and perform security testing.

    Our solutions can be categorized as web and mobile applications, embedded and IOT solutions and various 3rd party HW and SW solutions.

    Innovation is part of our DNA We need people who want to join an ambitious program that continues to push the state of the art in computer vision, machine learning, distributed systems and hardware design.


    The Role:

    Everyone on the team needs to be entrepreneurial, wear many hats and work in a highly collaborative environment that's more startup than a big company.

    We will need to tackle problems that span a variety of domains:
    real-time, distributed systems, machine learning, image recognition, and computer vision.

    As a Senior Security Engineer, you will help ensure our devices, applications, services, and systems are designed and implemented to the highest standards and resilient to the modern threats.

    If you enjoy analyzing the security of systems that span from hardware to cloud services, discovering and addressing security issues and quickly reacting to new threat scenarios, this position will provide you with a challenging opportunity.

    You will lead in security audits, risk analysis, vulnerability testing and security reviews across all elements of this project's software systems.

    You will tackle challenging, novel situations every day and, given the size of this initiative, you will have the opportunity to work with multiple technical teams at Amazon in different locations.

    You should be comfortable with a high degree of ambiguity and relish the idea of solving problems that haven't been solved at scale before.

    Along the way, we guarantee that you will learn a ton, have fun and make a positive impact on millions of people.

    Key job responsibilities1. Security Consults2. Architecture Review3. Threat Model4. Automated Code Review5. Manual Code Review6. Incident Response Plan Review7. Security Testing8.

    Risk documentation and remediation verificationWe are open to hiring candidates to work out of one of the following locations:
    Arlington, VA, USA | Austin, TX, USA | Charlotte, TX, USA | Jersey City, NJ, USA | Mono Hot Springs, CA, USA | San Francisco, CA, USA | Santa Clara, CA, USA | Seattle, WA, USA | Sunnyvale, CA, USABasic qualifications
    • BS in Computer Science, Information Security, or equivalent professional experience 8+ years of experience in application security, product security, or systems security 5+ years writing production level code in at least one scripting or compiled language such as Java, Python, JavaScript, Go, Ruby, C# or C/C++
    • Proven experience in threat modeling, code reviews, security testing, vulnerability detection, attacker exploit techniques, and methods for their remediation.
    - 5+ years of experience securing cloud services such as AWS, Azure, and Google CloudPreferred qualification
    • Master's degree in Computer Science, Information Security, Computer Engineering, Electrical Engineering or equivalent
    • Relevant industry certifications from SANS, GIAC, CISSP, OSCP, etc.
    - 3+ years of software development experience with at least one programing language such as Java, Python, JavaScript, Go, Ruby, C# or C/C++- 3+ years of experience in penetration testing, offensive security, or red teaming

    • Deep technical understanding of OWASP Top 10, and SANS 25 vulnerability identification and remediation
    • Excellent written and verbal communication skills with the ability to adapt messaging to technical and non technical audiences at all levels including senior leadership
    • History of working autonomously and delivering results in a fast paced, highly ambiguous environment
    • Experience driving multiple technically complex security initiatives while remaining effective at providing security guidance to stakeholdersAmazon is committed to a diverse and inclusive workplace.
    Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.Our compensation reflects the cost of labor across several US geographic markets.

    The base pay for this position ranges from $136,000/year in our lowest geographic market up to $247,600/year in our highest geographic market.

    Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience.

    Amazon is a total compensation company.

    Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits.

    For more information, please visit Applicants should apply via our internal or external career site.
  • Palantir Technologies

    Application Security Engineer

    3 weeks ago

    Palantir Technologies Seattle, United States

    A World-Changing Company · Palantir builds the world's leading software for data-driven decisions and operations. By bringing the right data to the people who need it, our platforms empower our partners to develop lifesaving drugs, forecast supply chain disruptions, locate missi ...

  • Amazon

    Application Security Engineer

    2 days ago

    Amazon Seattle, United States

    Go beyond protecting Amazon Web Services (AWS) and have a direct impact on new cutting-edge initiatives at Amazon. Work across multiple security domains as well as strategic security partnerships. Since 2006, our great team at AWS has been enabling our customers to bring great id ...

  • Square

    Senior Application Security Engineer

    1 week ago

    Square Seattle, United States

    Protect the Future of Finance Block's Offensive Security team is on a mission to safeguard the financial systems of tomorrow. We're seeking a seasoned Senior Application Security Engineer to join our elite squad of security engineers. As a key player Security Engineer, Applicatio ...

  • Block

    Senior Application Security Engineer

    23 hours ago

    Block Seattle, United States

    Job Description · Job DescriptionCompany Description · Block is one company built from many blocks, all united by the same purpose of economic empowerment. The blocks that form our foundational teams — People, Finance, Counsel, Hardware, Information Security, Platform Infrastruct ...

  • Star Bucks Coffee

    application security engineer senior

    3 weeks ago

    Star Bucks Coffee Seattle, United States

    Job Description - application security engineer senior · application security engineer senior · ( · Job Number: · ) · Job Posting · Job Posting · May 2, 2024 · Job Posting End Date · Jun 2, 2024 · Location · Location · US-WA-Seattle-Starbucks Support Center · Is this ro ...

  • Palantir Technologies

    Application Security Engineer

    3 weeks ago

    Palantir Technologies Seattle, WA, United States

    Seattle, WAInformation Security /Full-time/ HybridA World-Changing CompanyPalantir builds the world's leading software for data-driven decisions and operations. By bringing the right data to the people who need it, our platforms empower our partners to develop lifesaving drugs, f ...

  • META

    Application Security Engineer

    1 week ago

    META Seattle, United States

    Summary: · Meta's Enterprise Engineering Application Security team is seeking a passionate security engineer with a hacker mindset who derives purpose in life by revealing potential weaknesses and then crafting creative solutions to eliminate those weaknesses. Your skills will b ...

  • Amazon

    Application Security Engineer

    3 weeks ago

    Amazon Seattle, United States

    Help us protect not only the Amazon Web Services (AWS) cloud computing environment but all of our customers as well Since 2006, our great team at AWS has been enabling our customers to bring great ideas to life in ways that arent possible in traditional IT environments. With AWS ...

  • Amazon Inc

    Application Security Engineer

    1 week ago

    Amazon Inc Seattle, United States

    Help us protect not only the Amazon Web Services (AWS) cloud computing environment but all of our customers as well Since 2006, our great team at AWS has been enabling our customers to bring great ideas to life in ways that arent possible in traditi Security Engineer, Application ...

  • Meta Inc

    Application Security Engineer

    3 weeks ago

    Meta Inc Seattle, United States

    Summary: · Meta's Enterprise Engineering Application Security team is seeking a passionate security engineer with a hacker mindset who derives purpose in life by revealing potential weaknesses and then crafting creative solutions to eliminate those weaknesses. Your skills will b ...

  • Meta

    Application Security Engineer

    1 week ago

    Meta Seattle, United States Full time

    Facebook's Application Security team is seeking a passionate hacker who derives purpose in life by revealing potential weaknesses and then crafts creative solutions to eliminate those weaknesses. Your skills will be the foundation of security initiatives that protect the security ...

  • Gemini, Inc.

    Senior Application Security Engineer

    3 days ago

    Gemini, Inc. Seattle, United States

    Empower the Individual Through Crypto · Gemini is a crypto exchange and custodian that allows customers to buy, sell, store, and earn more than 30 cryptocurrencies like bitcoin, bitcoin cash, ether, litecoin, and Zcash. Gemini is a New York trust company that is subject to the ca ...

  • Block USA

    Senior Application Security Engineer

    1 week ago

    Block USA Seattle, United States

    Block is one company built from many blocks, all united by the same purpose of economic empowerment. The blocks that form our foundational teams — People, Finance, Counsel, Hardware, Information Security, Platform Infrastructure Engineering, and more — provide support and guidanc ...

  • Branch Metrics

    Senior Application Security Engineer

    1 week ago

    Branch Metrics Seattle, United States

    At Branch, we're transforming how brands and users interact across digital platforms. Our mobile marketing and deep linking solutions are trusted to deliver seamless experiences that increase ROI, decrease wasted spend, and eliminate siloed attribution. Our Branch team consists o ...

  • Starbucks

    application security engineer senior

    3 weeks ago

    Starbucks Seattle, United States

    This position contributes to Starbucks success through the development and execution of Application Security Engineering Program practices. You will provide security guidance and conduct security assessments to ensure the technology platforms within the organization are implement ...

  • Quizlet

    Staff Application Security Engineer

    3 weeks ago

    Quizlet Seattle, United States

    About Quizlet: · Inspired by our belief that anyone can learn anything and powered by our own curiosity, we build the smartest tools we can imagine to help students learn. · Quizlet is the popular, global learning platform and app that millions of students, teachers and everyday ...

  • The Talent Mine

    Sr. Security Engineer with hardware/application balance

    4 weeks ago

    The Talent Mine Seattle, United States

    The Talent Mine is recruiting for a seasoned Sr. Security Engineer, with expertise on both application and network security for an immediate FTE role in the DT Seattle area. This is with an established mid-sized client in the tech/legal space, that is looking to carve out a new r ...

  • Amphenol Corporation

    Field Applications Engineer

    2 weeks ago

    Amphenol Corporation Seattle, United States

    AMPHENOL GLOBAL INTERCONNECT SYSTEMS · Who We Are & What We Do: AGIS proudly stands as a leader in innovating the design and production of cutting-edge electro-mechanical cable assemblies and Value-Add Interconnect solutions. Our impact spans diverse markets, including Informatio ...

  • Blue Origin

    Senior Application Engineer

    2 weeks ago

    Blue Origin Seattle, United States Full time

    At Blue Origin, we envision millions of people living and working in space for the benefit of Earth. We're working to develop reusable, safe, and low-cost space vehicles and systems within a culture of safety, collaboration, and inclusion. Join our diverse team of problem solvers ...

  • Tik Tok

    Security Engineer

    2 days ago

    Tik Tok Seattle, United States

    Responsibilities · TikTok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy. TikTok has global offices including Los Angeles, New York, London, Paris, Berlin, Dubai, Singapore, Jakarta, Seoul and Tokyo. · Why Join UsAt Ti ...