Job Title: Penetration Testing Engineer, Security Testing
We are seeking a highly skilled Penetration Testing Engineer who has a strong passion for security-at-scale.
You will be part of a team responsible for delivering continuous assessments and solving complex technology problems.
Key Responsibilities:
* Perform penetration testing of complex proprietary software and hardware for AWS services.
* Manually audit the source code of web services and software authored in-house by Amazon.
* Write proof of concept code to demonstrate the severity of a potential security issue.
* Provide clear communication on issues to developers that suggest and help to test the fix.
* Partner with AWS developers to drive improvement in application security as a result of security.
* Provide actionable long-term risk mitigation guidance.
Requirements:
* Bachelor's degree in computer science or equivalent.
* Knowledge of networking protocols such as HTTP, DNS, and TCP/IP.
* Experience programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object-oriented language.
* Knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits or equivalent.
* Experience with AWS products and services.
* Experience with any combination of the following: threat modeling, secure coding, identity management and authentication, software development, cryptography, system administration, and network security.
At Amazon, we value diversity and inclusion. We make recruiting decisions based on your experience and skills. We believe passionately that employing a diverse workforce is central to our success.