At Amazon Web Services (AWS), we provide world-class, flexible, scalable, and secure cloud services to the world’s fastest-growing startups, the largest enterprises, and leading government agencies. We do this by building, maintaining, and securing one of the largest, most complex networks in the world. Within AWS, the Network Security Organization – Threat and Vulnerability Management (NSO-TVM) team is responsible for threat intelligence, vulnerability management, security information and event management (SIEM), and overall network security across the entire AWS global network.
The AWS NSO-TVM team is looking for an experienced security engineer with deep expertise in red teaming, penetration testing, and operating system fuzzing to join us as an Offensive Security Engineer. In this role, you will be responsible for driving the growth and adoption of these NSO-TVM services across the AWS network. You will work to research, identify, and assess information security threats and vulnerabilities by developing custom vulnerability checks, running red team campaigns, and performing fuzz testing across a variety of network device operating systems. Following your assessments, you will then drive the response and remediation in partnership with device owners to ultimately improve the overall security posture of the AWS network. You will serve as a subject matter expert for software developers, program managers, and other security engineers throughout AWS networking. As a level of technical escalation, you will apply your security and business knowledge to drive secure and pragmatic improvements broadly to Networking Services, all while making technical trade-offs between short- and long-term security and business goals.
AWS leads and innovates. We don’t just buy off-the-shelf software or follow others. We research and pursue the best approach for the business, whether that’s building new solutions or leveraging existing ones. Amazon Web Services, and the Network Security Organization in particular, operate at massive scale and as a result, demand the highest standards, passion, and discipline for information security and software engineering. A high level of ownership and accountability is a must for this role.