Description
- Bachelor's degree in computer science or equivalent
- Experience with AWS products and services
- Experience applying threat modeling or other risk identification techniques or equivalent
- 5+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience
- Experience with the information security principles and the Common Body of Knowledge (CBK) domains and core technologies (CIA, encryption, identity, authN/authZ, SSO, web protocols, and privacy)
- Experience in advocating security best practices for third party integrations (e.g. with SAAS solutions, third-party libraries, etc.)
- Ability to communicate effectively with both technical and non-technical stakeholders across multiple business units
- MS in Cybersecurity, Computer Science, or other relevant degree
- Current knowledge around web and mobile application vulnerabilities, attacks, and mitigation methods
- Experience with developing and maintaining relevant security assessment risk metrics
- Experience using GRC tools and technologies
- Proficient in at least one programming language – Java preferred
- AWS certifications such as AWS Certified Security – Specialty, AWS Certified Cloud Practitioner, or other security related certifications (e.g., CISSP, SANS/GIAC or GSEC, CISA, OSCP/OSWA/OSWE)
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.
At Audible, we believe stories have the power to transform lives. It’s why we work with some of the world’s leading creators to produce and share audio storytelling with our millions of global listeners. We are dreamers and inventors who come from a wide range of backgrounds and experiences to empower and inspire each other. Imagine your future with us.
ABOUT THIS ROLE
As a Security Engineer II at Audible you will advocate for information security throughout all our software development and business processes. You will work with other Security Engineers, Application Developers and System Engineers to protect our customers and Audible’s business.
ABOUT THE TEAM
Audible Information Security team is looking for an experienced Security Engineer to join our world class team. We are obsessed with protecting customer trust. We are a hands-on team working to protect our computer networks, servers, applications and data assets. This role will be focused on managing risk across our business functions.
True to Audible’s People Principles, we are committed to the success of our people and supporting the communities in which we work. Our leadership team is dedicated to mentoring and coaching to help each individual identify their career goals, flourish, and achieve their potential. Our environment encourages everyone to participate. Our diverse team depends on differing backgrounds and perspectives to foster robust conversations that lead us to the right solutions for our customers.
As a Security Engineer, you will...
- Perform third party security risk assessment and due diligence, including managing questionnaire response, evidence verification, and report preparation
- Assess and secure third-party integrations, services, solutions and partnerships, ensuring controls are implemented to the highest security standards
- Assess, identify and develop recommendations regarding data protection, insider threat, data sharing, identity and access management
- Execute internal security and confidential information usage security assessments, audits, and investigations
- Assess and prioritize security assessment findings and recommend appropriate mitigations.
- Respond to security violations, vulnerabilities, and incident detections
- Provide guidance on risk, compliance, and policy to technical and non-technical internal customers, including security training and outreach to internal teams and external supply chain partners
- Apply your security and business knowledge to drive secure and pragmatic improvements to Audible people, process, and assets, while guiding technical trade-offs between short versus long term security and business goals
- Contribute to / provide feedback on the development of security standards and control requirements
- Strong organizational and communication skills, with a demonstrated ability to work in a multi-tasking dynamic environment while maintaining a high level of ownership and accountability
ABOUT AUDIBLE
Audible is the leading producer and provider of audio storytelling. We spark listeners’ imaginations, offering immersive, cinematic experiences full of inspiration and insight to enrich our customers daily lives. We are a global company with an entrepreneurial spirit. We are dreamers and inventors who are passionate about the positive impact Audible can make for our customers and our neighbors. This spirit courses throughout Audible, supporting a culture of creativity and inclusion built on our People Principles and our mission to build more equitable communities in the cities we call home.
- Experience with AWS products and services
- Experience applying threat modeling or other risk identification techniques or equivalent
- 5+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience
- Experience with the information security principles and the Common Body of Knowledge (CBK) domains and core technologies (CIA, encryption, identity, authN/authZ, SSO, web protocols, and privacy)
- Experience in advocating security best practices for third party integrations (e.g. with SAAS solutions, third-party libraries, etc.)
- Ability to communicate effectively with both technical and non-technical stakeholders across multiple business units
- MS in Cybersecurity, Computer Science, or other relevant degree
- Current knowledge around web and mobile application vulnerabilities, attacks, and mitigation methods
- Experience with developing and maintaining relevant security assessment risk metrics
- Experience using GRC tools and technologies
- Proficient in at least one programming language – Java preferred
- AWS certifications such as AWS Certified Security – Specialty, AWS Certified Cloud Practitioner, or other security related certifications (e.g., CISSP, SANS/GIAC or GSEC, CISA, OSCP/OSWA/OSWE)
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.
At Audible, we believe stories have the power to transform lives. It’s why we work with some of the world’s leading creators to produce and share audio storytelling with our millions of global listeners. We are dreamers and inventors who come from a wide range of backgrounds and experiences to empower and inspire each other. Imagine your future with us.
ABOUT THIS ROLE
As a Security Engineer II at Audible you will advocate for information security throughout all our software development and business processes. You will work with other Security Engineers, Application Developers and System Engineers to protect our customers and Audible’s business.
ABOUT THE TEAM
Audible Information Security team is looking for an experienced Security Engineer to join our world class team. We are obsessed with protecting customer trust. We are a hands-on team working to protect our computer networks, servers, applications and data assets. This role will be focused on managing risk across our business functions.
True to Audible’s People Principles, we are committed to the success of our people and supporting the communities in which we work. Our leadership team is dedicated to mentoring and coaching to help each individual identify their career goals, flourish, and achieve their potential. Our environment encourages everyone to participate. Our diverse team depends on differing backgrounds and perspectives to foster robust conversations that lead us to the right solutions for our customers.
As a Security Engineer, you will...
- Perform third party security risk assessment and due diligence, including managing questionnaire response, evidence verification, and report preparation
- Assess and secure third-party integrations, services, solutions and partnerships, ensuring controls are implemented to the highest security standards
- Assess, identify and develop recommendations regarding data protection, insider threat, data sharing, identity and access management
- Execute internal security and confidential information usage security assessments, audits, and investigations
- Assess and prioritize security assessment findings and recommend appropriate mitigations.
- Respond to security violations, vulnerabilities, and incident detections
- Provide guidance on risk, compliance, and policy to technical and non-technical internal customers, including security training and outreach to internal teams and external supply chain partners
- Apply your security and business knowledge to drive secure and pragmatic improvements to Audible people, process, and assets, while guiding technical trade-offs between short versus long term security and business goals
- Contribute to / provide feedback on the development of security standards and control requirements
- Strong organizational and communication skills, with a demonstrated ability to work in a multi-tasking dynamic environment while maintaining a high level of ownership and accountability
ABOUT AUDIBLE
Audible is the leading producer and provider of audio storytelling. We spark listeners’ imaginations, offering immersive, cinematic experiences full of inspiration and insight to enrich our customers daily lives. We are a global company with an entrepreneurial spirit. We are dreamers and inventors who are passionate about the positive impact Audible can make for our customers and our neighbors. This spirit courses throughout Audible, supporting a culture of creativity and inclusion built on our People Principles and our mission to build more equitable communities in the cities we call home.
Other Jobs from Amazon
Finance Manager, FBA Product and Technology
Seattle, WA
US
Senior LATAM Process Engineer
Mexico City, Mexico
Sr. Cloud Application Architect
Pune, India
Mumbai, India
Software Development Engineer
Remote
Seattle, WA
Similar Jobs
Staff Software Engineer
Remote
Burbank, CA
Software Engineering-Lead Engineer
Bengaluru, India
Software Engineering-Lead Engineer
Bengaluru, India
Software Engineering-Lead Engineer
Bengaluru, India
There are more than 50,000 engineering jobs:
Subscribe to membership and unlock all jobs
Engineering Jobs
60,000+ jobs from 4,500+ well-funded companies
Updated Daily
New jobs are added every day as companies post them
Refined Search
Use filters like skill, location, etc to narrow results
Become a member
🥳🥳🥳 401 happy customers and counting...
Overall, over 80% of customers chose to renew their subscriptions after the initial sign-up.
To try it out
For active job seekers
For those who are passive looking
Cancel anytime
Frequently Asked Questions
- We prioritize job seekers as our customers, unlike bigger job sites, by charging a small fee to provide them with curated access to the best companies and up-to-date jobs. This focus allows us to deliver a more personalized and effective job search experience.
- We've got about 70,000 jobs from 5,000 vetted companies. No fake or sleazy jobs here!
- We aggregate jobs from 5,000+ companies' career pages, so you can be sure that you're getting the most up-to-date and relevant jobs.
- We're the only job board *for* software engineers, *by* software engineers… in case you needed a reminder! We add thousands of new jobs daily and offer powerful search filters just for you. 🛠️
- Every single hour! We add 2,000-3,000 new jobs daily, so you'll always have fresh opportunities. 🚀
- Typically, job searches take 3-6 months. EchoJobs helps you spend more time applying and less time hunting. 🎯
- Check daily! We're always updating with new jobs. Set up job alerts for even quicker access. 📅
What Fellow Engineers Say