DESCRIPTION

Come join Earth’s most customer-centric company! Amazon is looking for a Mobile Security Engineer with strong insight and passion for security to ensure our mobile applications are designed and built to the highest standards. Your mission is to ensure the security of hundreds of millions of our Customers utilizing Amazon mobile applications. You bring mobile security talent and expertise to a fast-paced environment where you will be relied upon to help and partner with our talented software development teams in building secure mobile applications.

As a Security Engineer, you will be a technical resource on a highly skilled team responsible for advancing Amazon’s mobile application security program. You will partake in implementing processes for the secure design of mobile applications which will include conducting vulnerability analysis, risk assessments, and the development of tools and solutions to assist in the identification and remediation of vulnerabilities.

You will bring to the team:
· Strong sense of ownership, urgency, and drive
· Deep experience in reviewing the security posture of mobile applications
· Proven ability to work and partner with mobile developers to resolve security issues
· Solid experience in threat modeling and identification techniques
· Experience in mobile code reviews, vulnerability detection, and root cause analysis

BASIC QUALIFICATIONS

· BS in Computer Science or related field, or equivalent work experience.
· 2+ years of experience in mobile application security, secure mobile application design and architecture, threat modeling, code reviews, and cryptography
· Deep technical understanding of the OWASP Mobile and Web Top 10
· Minimum of 2 years of experience with one or more mobile application focused programming languages (such as, Java, JavaScript, Objective C, etc.)
· Meets/exceeds Amazon’s leadership principles requirements for this role

PREFERRED QUALIFICATIONS

· Deep and provable experience in building mobile application vulnerability detection tools
· Experience collaborating with framework development teams to build security capabilities
· Strong knowledge and understanding of security engineering, system and network security, authentication and security protocols
· 4+ years of experience with multiple programming languages (such as, Java, JavaScript, C++, Objective C, Swift, Ruby, Python, etc.)