Security Engineer II, Application Security - Amazon.com

Key Responsibilities

• Design, implement, and maintain security controls for AWS‑hosted applications and services.
• Conduct threat modeling, code reviews, and vulnerability assessments for new and existing workloads.
• Develop automated security testing and remediation scripts using Python and Java within CI/CD pipelines.
• Collaborate with development, operations, and product teams to embed security best practices early in the software development lifecycle.
• Respond to security incidents, perform root‑cause analysis, and drive continuous improvement of security processes.

Requirements

• 2+ years of hands‑on experience in application security, preferably within cloud environments.
• Proficiency in at least one programming language such as Python or Java and familiarity with security testing frameworks.
• Strong understanding of AWS services, IAM, networking, and security best practices.
• Experience with DevSecOps tools (e.g., CI/CD integration, static/dynamic analysis, container security).
• Excellent problem‑solving skills and ability to communicate security concepts to technical and non‑technical audiences.