Pentester

1 week ago

Austin, Texas, United States Amazon Full time
About the Role

We are seeking an experienced web service API and device penetration tester to join our team at Amazon. As a key member of our Devices and Services Trust & Security organization, you will play a critical role in shaping the future of Amazon's service security.

Key Responsibilities
  • Lead penetration tests against devices, services, and software released by Amazon's Devices & Services organization and develop proof of concept exploits.
  • Lead vulnerability research using a variety of custom tooling and technologies while scaling security testing.
  • Analyze and identify security vulnerabilities in source code using both automated and manual static analysis tools and techniques.
  • Review and influence technical solutions to mitigate security vulnerabilities by providing actionable long-term risk mitigation guidance to drive security improvements.
  • Develop detailed technical documentation describing identified vulnerabilities, associated impact, and remediation to guide communication with internal engineering stakeholders and leadership.
  • Mentor junior penetration testers and cultivate a culture of collaboration and research sharing.
About the Team

The internal penetration testing team is part of the Devices and Services Trust & Security organization, which is responsible for the entire SDLC, vulnerability management, incident response, and overall security across Amazon Consumer Devices & Services.

What We Offer

At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas, including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.

Basic Qualifications
  • 5+ years of experience identifying, exploiting, and recommending solutions to remediate web application and service API vulnerabilities.
  • Foundational knowledge of hardware security fundamentals.
  • Experience designing and reviewing secure system architectures through the use of Threat Modeling incorporating sophisticated and modern attacks.
  • Knowledge of cloud service providers and their offerings, preferably AWS, and its various technologies and services.
  • Bachelor's degree in Computer Science or related field, or equivalent industry experience.
Preferred Qualifications
  • Experience in CTF competitions, CVE research, and/or Bug Bounty recognition.
  • Experience with applying and assessing Machine Learning technologies.
  • Published security research (e.g. conference presentations, whitepapers, blog posts).
Why Amazon Security?

At Amazon, we value diverse experiences and are committed to creating an inclusive workplace. We offer a total compensation package, including equity, sign-on payments, and other forms of compensation, in addition to a full range of medical, financial, and/or other benefits.

  • Pentest Security Engineer

    2 weeks ago

    Austin, Texas, United States Amazon Full time

    About the RoleWe are seeking an experienced web service API and device penetration tester to join our team at Amazon. As a member of our penetration testing organization, you will work with builder teams and product owners to identify high-impact security vulnerabilities across Amazon's devices and services ecosystem.Key ResponsibilitiesLead penetration...

  • Pentest Security Engineer

    2 weeks ago

    Austin, Texas, United States Amazon Full time

    About the RoleWe are seeking an experienced web service API and device penetration tester to join our team at Amazon. As a member of our penetration testing organization, you will work with builder teams and product owners to identify high-impact security vulnerabilities across Amazon's devices and services ecosystem.Key ResponsibilitiesLead penetration...

  • Pentest Security Engineer

    6 days ago

    Austin, Texas, United States Amazon Full time

    About the RoleWe are seeking an experienced web service API and device penetration tester to join our team at Amazon. As a member of our Devices and Services Trust & Security organization, you will work with builder teams and product owners to triage penetration testing requests and identify high-impact security vulnerabilities across Amazon's devices and...

  • Application Security Specialist

    3 weeks ago

    Austin, Texas, United States Wipro Full time

    About WiproWipro Limited is a leading technology services and consulting company that helps clients navigate their digital transformation journey. With a comprehensive portfolio of services, we leverage our expertise in consulting, design, engineering, operations, and emerging technologies to drive business growth and innovation.Our commitment to...

  • Cybersecurity Specialist

    1 month ago

    Austin, Texas, United States Wipro Full time

    About WiproWipro Limited is a leading technology services and consulting company focused on building innovative solutions that address clients' most complex digital transformation needs.We leverage our holistic portfolio of capabilities in consulting, design, engineering, operations, and emerging technologies to help clients realize their boldest ambitions...

  • Senior Cyber Security Analyst

    1 month ago

    Austin, Texas, United States Mercury Financial LLC Full time

    About the RoleMercy Financial LLC is seeking a highly skilled Senior Cyber Security Analyst to join our team. As a key member of our security team, you will be responsible for monitoring and responding to security incidents, identifying vulnerabilities, and developing procedures to mitigate risks.Key ResponsibilitiesIncident Response: Identify, contain, and...

  • Security Engineering Manager

    1 week ago

    Austin, Texas, United States Amazon Full time

    About the RoleWe are seeking an experienced security leader to join our Application Security team at Amazon. As a security leader, you will own building and managing a team of security engineers, fostering a strong team culture. You should know how to prioritize, communicate clearly and compellingly, and understand how to drive a high level of focus and...

  • IT Security Specialist

    1 week ago

    Austin, United States ASCEND MINDS Full time

    IT Security Specialist (Firewall & Policies) Austin TX (Hybrid role) Open Visa (W2 Candidates) Must have skill: Network Security Firewall & Policies Microsoft Office McAfee End Point Security Worked with scanning and reporting products (McAfee ESM Qualys Tanium etc.). Strong understanding of information security and best practices. Strong...

  • Application Security Engineer

    1 month ago

    Austin, United States Wipro Full time

    About WiproWipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO) is a leading technology services and consulting company focused on building innovative solutions that address clients’ most complex digital transformation needs.We leverage our holistic portfolio of capabilities in consulting, design, engineering, operations, and emerging technologies to help...

  • Application Security Engineer

    1 month ago

    Austin, United States Wipro Full time

    About WiproWipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO) is a leading technology services and consulting company focused on building innovative solutions that address clients’ most complex digital transformation needs.We leverage our holistic portfolio of capabilities in consulting, design, engineering, operations, and emerging technologies to help...