Security Engineer, CS Security

Are you passionate about delivering innovative security solutions and protecting millions of customers through a blend of deep security expertise, hands-on coding, and building scalable security guardrails and paved paths? The Customer Service Application Security team is looking for a talented and results-driven Security Engineer to help shape how Amazon protects customer data through secure-by-design principles.

In this role, you'll be a trusted security partner to development teams - reviewing application designs for security gaps, providing guidance on secure coding practices, and rolling up your sleeves to contribute code for security fixes directly alongside developers. You'll conduct threat modeling, evaluate system architecture to ensure sound security design, and leverage AWS services and modern development practices to transform manual security processes into scalable solutions. You'll embed secure-by-default practices into applications early and throughout the software development lifecycle through guardrails and paved path solutions.

If you're a security engineer who loves writing code, thrives on partnering with developers, and is excited about solving complex security challenges, join our team and help define the future of application security at Amazon., * Design, build, and maintain automated security guardrails and paved paths that enable secure-by-default practices across Amazon's technology landscape

• Engage early with development teams at the ideation and design stage to embed security into applications from the start, providing guidance on secure architecture and coding practices
• Build automated, continuous security assessment capabilities that replace manual security reviews and scale across our business unit
• Contribute code for security fixes and paved path solutions directly alongside developers, making the secure path the easy path
• Partner with developers to build scalable, self-service security tools that enable teams to identify and remediate security risks without bottlenecking on security teams
• Design and implement preventive and detective security controls that provide continuous assurance rather than point-in-time assessments
• Collaborate with security stakeholders to define and drive the long-term security strategy and participate in periodic on-call rotations to support security incidents

A day in the life The Security Engineer role within our team is focused on protecting customers' information. As a Security Engineer, you'll bring deep security expertise to development teams, partnering with them from the ideation stage to embed security into applications from the start. Your day will involve evaluating system designs for security gaps, building automated, continuous security assessments and paved path solutions, contributing code for security fixes alongside developers, and collaborating with teams to build scalable security tools. You own your work end to end while serving as an embedded security partner for a key Amazon business unit. Through close collaboration with development teams, you'll help shape the future of application security at Amazon, replacing manual security processes with automated solutions that enable rapid, secure development.

The Customer Service Application Security team is pioneering security solutions for one of Amazon's largest internal business units. We're reimagining how security integrates with development by building intelligent automation that protects customer data while accelerating delivery.

We are a collaborative team of security engineers, Technical Program Managers, and SDEs who move fast, value ownership, and invest heavily in each other's growth. We bridge the traditional gap between security and engineering by advocating for secure coding standards, building tools that reduce friction for developers, and embedding security early in the software development lifecycle through guardrails and paved path solutions. We stay ahead through continuous research into emerging threats and the adoption of new techniques and best practices.

About the team Why Amazon Security? At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.

Inclusive Team Culture In Amazon Security, it's in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.

Training & Career Growth We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.

Work/Life Balance We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there's nothing we can't achieve.

Bachelor's degree in computer science or equivalent

• 3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language experience
• Knowledge of networking protocols such as HTTP, DNS and TCP/IP
• 3+ years of any combination of the following: application security frameworks, identity and access controls, incident response, mobile security, cloud computing and security, AI security, threat intelligence, and penetration testing experience, 2+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience
• Experience with AWS products and services
• Experience implementing security solutions at the business division level or equivalent
• Experience effectively communicating complex concepts through written and verbal communication
• Experience leveraging Large Language Models (LLMs) to automate and scale security, with a strong understanding of associated security risks and mitigation strategies

The base salary range for this position is listed below. Your Amazon package will include sign-on payments and restricted stock units (RSUs). Final compensation will be determined based on factors including experience, qualifications, and location. Amazon also offers comprehensive benefits including health insurance (medical, dental, vision, prescription, Basic Life & AD&D insurance and option for Supplemental life plans, EAP, Mental Health Support, Medical Advice Line, Flexible Spending Accounts, Adoption and Surrogacy Reimbursement coverage), 401(k) matching, paid time off, and parental leave. Learn more about our benefits at https://amazon.jobs/en/benefits.

USA, TX, Austin - 159,300.00 - 202,400.00 USD annually USA, WA, Seattle - 159,300.00 - 202,400.00 USD annually