DESCRIPTION

Job summary
Amazon is seeking qualified Full Stack Security Engineers to join our innovative, high energy Payments Security Engineering (PSE) team and work within the Payments Engineering organization. Amazon Payments processes millions of transactions every day across numerous countries and payment methods. Paramount to our success is ensuring that our customer data is secure.

As a full stack security engineer within the PSE, you will partner with Payments Engineering teams in a consulting facility, to ensure that you continuously raise the security bar for the existing and new Payments infrastructure (Payments Secure Zones).

Key job responsibilities

Develop a broad and deep technical understanding of our Payments Secure Zones pertaining to the Payments Engineering organization.
Leverage this understanding to create, implement and support security controls, tools, processes and services such as SIEM, HSM, vulnerability management, intrusion detection, etc.
Define, execute test cases that evaluate the effectiveness of security controls and improve the controls, based on the outcome.
Interpret security tools and penetration testing results to stakeholders within Payments Engineering, providing advice on vulnerability remediation and risk mitigation.
Create relevant documentation and metrics to your stakeholders and business leaders and deliver these in a clear, concise manner.
Develop innovative and scalable tools, solutions, and processes to enhance security operations.
Maintain proficiency in Physical and Cloud Infrastructure Security bodies of knowledge.
Propose and develop training materials that help raise the security bar across the Payment Engineering organization.

BASIC QUALIFICATIONS

BS in Computer Science, Information Security, or equivalent professional experience.
5+ years of demonstrated experience in areas such as systems security, network security, application security and cloud security.
Understanding of best practices in security engineering, including network security, systems security, cryptography, and security operations.
Detailed knowledge of system security vulnerabilities and remediation techniques.
Excellent knowledge of Linux/Unix.
Excellent written and verbal communication skills with the ability to adapt messaging to executive, technical, and non-technical audiences.
Ability to work with a high degree of autonomy.
Scripting skills (E.g: Python, Perl, Bash, Ruby, PowerShell, etc.)

PREFERRED QUALIFICATIONS

Experience in full stack security, including reviewing applications, the implementation and operations of firewalls, intrusion detection systems, etc. in a physical and cloud environment.
Experience reviewing and implementing PKI and associated security controls.
Experience with AWS services and security concepts.
IT Certifications (e.g: any AWS Foundational or Associate certification, Linux+, Network+, A+, or similar).