The Senior Security Engineer is a key individual contributor responsible for driving security initiatives across various services and teams. This role demands extensive technical expertise in application security, threat modeling, and secure system design. The engineer will influence engineering teams to achieve high-impact security outcomes with minimal guidance. The team values diverse experiences and promotes an inclusive culture that encourages continuous learning and career growth.

• 4+ years of non-internship experience in troubleshooting systems issues, analyzing logs, or automating complex tasks using command line tools.
• 5+ years of experience in identifying security issues and risks, and developing mitigation plans.
• 4+ years of non-internship experience in scripting, programming, and security code review in common programming languages.
• Knowledge of at least two of the following programming languages: Scala, Java, Python, C/C++, or Go.
• Experience applying threat modeling or other risk identification techniques.
• Experience with security in service-oriented architectures/microservices and web services.
• Experience as a mentor, tech lead, or leading an engineering team.

• Lead end-to-end security reviews for complex, high-priority services including design reviews, threat modeling, and penetration testing.
• Serve as a subject matter expert for assigned affinity teams, providing architectural guidance and security consultation.
• Independently perform and guide threat modeling exercises for complex distributed systems.
• Conduct targeted manual code reviews of security-critical components.
• Scope, coordinate, and oversee penetration testing engagements.
• Identify, document, and track security findings to resolution.
• Mentor junior engineers and contribute to team processes and tooling improvements.
• Design and build security automation, tooling, and processes.
• Leverage generative AI and machine learning to build intelligent security automations.
• Partner with service teams to improve security posture proactively.
• Define and track security metrics that measure risk reduction and operational efficiency.

• Employees at Amazon are often offered comprehensive health benefits—including multiple medical plan options (no pre-existing condition exclusions, 100% covered in-network preventive care), dental and vision plans, a 24/7 medical advice line from day one, expert second-opinion services, and broad mental-health support with several free counseling sessions (including pediatric). Financial wellness typically includes a 401(k) with company match (up to 2%), Restricted Stock Units (equity), FSAs, an emergency savings program, product and partner discounts, and even college-savings and home-purchase programs. Overall, the package is designed to support employees and their families’ health, finances, and day-to-day life.