
Security Engineer II, Vulnerability Management and Response - Strategic Enablement
Job Description
This team is transforming vulnerability management through advanced remediation automation, innovative vulnerability detection solutions, data-driven insights, and more. Be part of a dynamic group that bridges security operations and development, creating measurable impact across Amazon's vast ecosystem.
Key job responsibilities
- Analyze public and private vulnerability disclosures and exploit code
- Deeply understand and assess the technical details and potential impact of vulnerabilities across Amazon's infrastructure, services, and applications
- Investigate and triage vulnerabilities, identifying severity and the scope of potential impact to Amazon
- Support response and remediation efforts, assisting builder teams to fix their security issues in a timely manner
- Engineer high quality, scalable, and accurate vulnerability detection mechanisms.
- Design and implement automation, tools and workflows to enhance our operations capabilities.
- Be part of a global team and participate in periodic on-call responsibilities to ensure the continuous monitoring and remediation of vulnerabilities.
About the team
The VMRO team bridges security operations and development, transforming vulnerability data into measurable security outcomes. We embrace a "Think Fast, Learn Faster" culture where rapid prototyping validates new solutions and data drives every decision. Our diverse team of security engineers and TPMs collaborates across the full vulnerability lifecycle, building custom detection capabilities, operationalizing security programs, and creating metrics that demonstrate real impact across Amazon's infrastructure.
Amazon develops products and services that transform the way customers live. Across teams and geographies, we strive to delight customers and earn their trust. Members of the Stores Security team are guardians
- 3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language experience
- Bachelor's degree in computer science or equivalent
- Knowledge of networking protocols such as HTTP, DNS and TCP/IP
- 2+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience
- Experience with AWS products and services
- Experience with programming languages such as Python, Java, C++
- Knowledge of data engineering pipelines, cloud solutions, ETL management, databases, visualizations and analytical platforms
- Experience with data engineering concepts including data pipelines, ETL processes, and working with large-scale security datasets
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.
The base salary range for this position is listed below. Your Amazon package will include sign-on payments and restricted stock units (RSUs). Final compensation will be determined based on factors including experience, qualifications, and location. Amazon also offers comprehensive benefits including health insurance (medical, dental, vision, prescription, Basic Life & AD&D insurance and option for Supplemental life plans, EAP, Mental Health Support, Medical Advice Line, Flexible Spending Accounts, Adoption and Surrogacy Reimbursement coverage), 401(k) matching, paid time off, and parental leave. Learn more about our benefits at https://amazon.jobs/en/benefits.
USA, TX, Austin - 159,300.00 - 202,400.00 USD annually