• Job Description

  Req#: 2953849
  Embark on a Mission to Fortify Amazon's Defenses as a Security Engineer with the Vulnerability Management & Remediation Operations team!
  
  Amazon Security is seeking an experienced and innovative Security Engineer to join our Vulnerability Management and Remediation Operations (VMRO) team in Sydney, Australia. The VMRO team is responsible for discovering, assessing, triaging, detecting, and driving the remediation of vulnerabilities across the Amazon ecosystem.
  
  Key job responsibilities
  - Review and analyse common vulnerability disclosures and assist in evaluating potential impacts.
  - Understand technical details of vulnerabilities affecting Amazon's infrastructure, services, and applications.
  - Help triage vulnerabilities and contribute to impact assessments and detection logic assessments.
  - Collaborate with builder teams to implement security fixes and improvements.
  - Implement and maintain vulnerability detection mechanisms using established frameworks and tooling.
  - Contribute to the development of automation tools and workflows to support team operations.
  - Contribute to detection development for hosts and containers.
  - Participate in an on-call rotation to support continuous monitoring and remediation of vulnerabilities.
  - Bachelor's degree in Computer Science, Computer Engineering, Software Engineering, Cybersecurity or related technical degree or equivalent; or 2+ years equivalent technology experience
  - Experience programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language
  - 3+ years security engineering experience in vulnerability management or vulnerability signature detection development
  - 2+ years security engineering experience in system, network, and/or application security- Experience with AWS products and services (e.g., EC2, S3, IAM)
  - Knowledge of common vulnerability scanning tools (e.g., Nessus, Qualys)
  - Experience with one or more of the following:
  - Basic threat modeling concepts
  - Network security fundamentals
  - Familiarity with common security frameworks (e.g., OWASP Top 10, CIS)
  - Security certifications (e.g., Security+, OSCP, CEH)
  
  Acknowledgement of country:
  In the spirit of reconciliation Amazon acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples today.
  
  IDE statement:
  Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
  
  Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.

• About the company

  Amazon.com, Inc. is an American multinational technology company based in Seattle, Washington, which focuses on e-commerce, cloud computing, digital streaming, and artificial intelligence. It is one of the Big Five companies in the U.S. information technology industry, along with Google, Apple, Microsoft, and Facebook. The company has been referred to as "one of the most influential economic and cultural forces in the world", as well as the world's most valuable brand.

Notice