Description AWS Utility Computing (UC) provides product innovations — from foundational services such as Amazon’s Simple Storage Service (S3) and Amazon Elastic Compute Cloud (EC2), to consistently released new product innovations that continue to set AWS’s services and features apart in the industry. As a member of the UC organization, you’ll support the development and management of Compute, Database, Storage, Internet of Things (Iot), Platform, and Productivity Apps services in AWS. Within AWS UC, Amazon Dedicated Cloud (ADC) roles engage with AWS customers who require specialized security solutions for their cloud services. Annapurna Labs is looking for a Senior Security Engineer to help ensure that our hardware platforms, software deliverables, and devices are secured against the latest threats. You will be responsible for the security assurance of our products. Influencing and scrutinizing design and implementation. Develop elaborate threat models, suggest and review solutions and mitigations. You will lead vulnerability research, penetration testing, automated penetration testing solutions and methodologies such as fuzzing, static analysis and other security checkers. You will mentor service teams in adding security testing tools and practices to their development processes. Key job responsibilities A Senior Security Engineer at AWS is expected to be proficient in multiple domains. This is a leadership role within the Annapurna security team and you will be sought out for advice on technical and business issues. Efficient time management skills are required along with the ability to deliver results in the face of uncertainty. A Senior Security Engineer will proactively share knowledge across the Amazon community and will be a key company resource in one or more of the core areas of security. He will lead security reviews of large Amazon projects while setting standards and defining best practices for AWS Security teams. Engineers in this role must show exemplary judgment in making technical trade-offs between short versus long term security and business goals. They must also demonstrate resilience and navigate difficult situations with composure and tact. A broad understanding of the AWS business and its interconnections is required. This position will also provide training, advice, and mentorship to other engineers throughout AWS. A day in the life Diverse Experiences Amazon values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying. Why AWS Amazon Web Services (AWS) is the world’s most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating — that’s why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses. Work/Life Balance We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve in the cloud. Inclusive Team Culture AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do. Mentorship and Career Growth We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional. Basic Qualifications * Minimum of 8 years of experience with vulnerability testing and auditing techniques * Experience with red teams or CTF (Capture The Flag) * Deep knowledge of Embedded systems, Operating Systems, ARM technology, SOC, Embedded SW, HW and Silicon security is a must. * Familiarity with hypervisor technologies such as KVM, Xen * Ability to create threat-models for complex systems and recommendation of mitigations * Experience with multiple programming languages (such as, C, C++, Assembly) and scripting languages (such as, Python, Ruby, Perl, etc.) * Demonstrable experience with security tool development such as fuzzers, security checkers. * Advanced knowledge and understanding of security engineering, system and network security, authentication and security protocols, cryptography, and application security * Familiarity with AWS services * Security training and outreach to internal development teams * Security guidance documentation * Assistance with recruiting activities * MSC/MEE in Computer Science/Electrical Engineering, or equivalent work experience Preferred Qualifications * Experience with reverse engineering * Experience with driving large, company-wide initiatives * Demonstrable teamwork skills and resourcefulness * Sharp analytical abilities and proven design skills * Meets/exceeds Amazon’s leadership principles requirements for this role * Meets/exceeds Amazon’s functional/technical depth and complexity for this role Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.