Offers “Amazon”

Expires soon Amazon

Security Engineer - OST/Red Team - Payments Security Engineering

  • Internship
  • Dublin, IRELAND
  • Infra / Networks / Telecom

Job description



DESCRIPTION

Amazon is seeking qualified Offensive Security Engineers to join our innovative, high energy Payments Security Engineering (PSE) team and work within the Payments Engineering organization. Amazon Payments processes millions of transactions every day across numerous countries and payment methods. Paramount to our success is ensuring that our customer data is secure.

As an Offensive Security engineer within PSE, you will perform full stack penetration tests/offensive security tests on Payment Security infrastructure and applications, to ensure that security vulnerabilities are discovered and comprehensive assessment reports along with remediation strategies are delivered.

JOB RESPONSIBILITIES
· Develop a broad and deep technical understanding of products, services and architectures pertaining to the Payment Engineering organization.
· Leverage this understanding to conduct full stack security testings and covert red team campaigns on web applications, mobile applications and other relevant services.
· Interpret security tools and penetration testing results to stakeholders, providing advice on vulnerability remediation and risk mitigation.
· Identify weaknesses in preventive, detective and corrective controls and recommend improvements.
· Create relevant documentation and metrics to your stakeholders and business leaders and deliver these in a clear, concise manner.
· Research and maintain proficiency in attacker Tools, Techniques, Procedures and other security topics.
· Propose and develop training materials to help raise the security bar across the Payment Engineering organization.
· Develop innovative and scalable tools, solutions, and processes to enhance the PSE’s operations.

PREFERRED QUALIFICATIONS

· 5+ years of experience in Red Teaming/Offensive Security Testing.
· Experienced with web application technologies, common web, mobile and server operating systems.
· Experienced with AWS services and security concepts.
· Experienced using common penetration testing tools such as Cobalt Strike, Nmap, Burp Suite, Metasploit, etc.
· Experienced with reverse engineering, social engineering and hardware hacking.
· Programming experience in C, C++ and/or Java.

Desired profile



BASIC QUALIFICATIONS

· BS in Computer Science, Information Security, or equivalent professional experience.
· 3+ years of demonstrated experience in areas such as penetration testing, vulnerability assessments, application security, systems security, and/or network security.
· Understanding of threat modeling, security vulnerabilities, attacker exploit techniques, and methods for their remediation.
· Understanding of best practices in security engineering, including secure development, cryptography, network security, security operations, systems security, policy, and/or incident response.
· Excellent written and verbal communication skills with the ability to adapt messaging to executive, technical, and non-technical audiences.
· Ability to drive multiple technically complex red teaming engagements and penetration tests together, while remaining effective at providing security guidance to stakeholders.
· Ability to work with a high degree of autonomy.
· Scripting skills (E.g: Python, Perl, Bash, Ruby, PowerShell, etc.)

Make every future a success.
  • Job directory
  • Business directory