Senior Penetration Tester

We are seeking a highly skilled Senior Penetration Testing Engineer to join our Security team at Amazon. As a key member of our team, you will be responsible for manual assessment of all products, services, and software released by Amazon, identifying security issues that static analysis tools cannot, and developing tooling to help with these goals.

• Execute manual penetration testing and source code review engagements against a variety of web services and software
• Develop other engineers and provide guidance on security engineering practices
• Advise management on security risks and provide actionable long-term risk mitigation guidance
• Write automation to help scale security testing at Amazon
• Partner with Amazon developers to drive improvement in application security as a result of security review engagements

Our Security team is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We value diverse experiences and encourage candidates from all backgrounds to apply.

• A competitive salary range of $143,300/year to $247,600/year, depending on location
• Equity, sign-on payments, and other forms of compensation as part of a total compensation package
• A full range of medical, financial, and other benefits
• Endless knowledge-sharing, training, and other career-advancing resources
• Flexible work hours and arrangements

• A Bachelor's degree in Computer Science, Cybersecurity, or other related fields, or equivalent professional experience
• Minimum of 5 years of experience in professional penetration testing, source code auditing, bug hunting, or CTF experience
• Minimum of 5 years of experience in scripting in Python or other equivalent interpreted programming languages
• Minimum of 5 years of professional experience with security engineering practices such as web application security, network security, authN/authZ protocols, cryptography, automation, and other software security