Security Engineer - Hardware, Firmware,Virtualization, Secure Hardware And Foundational Technologies TeamJob ID: 2874718 | Amazon Development Centre (London) Limited AtAmazon, security is central to maintaining customer trust anddelivering delightful customer experiences. Our organization isresponsible for creating and maintaining a high bar for securityacross all of Amazon’s products and services. Help us protect notonly the Amazon Security (AmSec) cloud computing environment butall of our customers as well! Since 2006, our great team at AmSechas been enabling our customers to bring great ideas to life inways that aren’t possible in traditional IT environments. WithAmSec you can flexibly harness compute, storage, security, andother services from across the globe as your business demands them.Amazon Security is working on security issues for a wide variety ofplatforms and technologies including cloud services, Internet ofThings (IoT), identity and access management, mobile devices,virtualization, and custom hardware, all operating at massivescale. Similarly, our highly collaborative team is committed toeach team member’s growth as our business grows. As a part of theSecure Hardware and Foundational Technologies group, we help Amazonlaunch brand new products and invest in emerging technologiessecurely. We are looking for a technically deep Senior SecurityEngineer to help secure our foundational platforms such as OSkernels, virtualization, device emulation, firmware, and hardware.You will be responsible for conducting security reviews, threatmodeling, developing tooling that will help detect security issuesat scale, and hands-on security evaluations (pen-testing). Thesuccessful candidate must be comfortable diving into complexengineering discussions and leveraging deep security expertise toensure proper risk assessment and threat analysis is performed. Youwill provide crystal-clear technical direction and risk mitigationguidance for diverse engineering and business leaders at alllevels. By applying your hard-earned years of practical securityengineering expertise in projects related to enterprise networking,hardware-rooted security, operating system hardening, andcloud-scale administrative infrastructure, you will literally shapethe future of cloud computing. You are expected to be strong inmultiple domains and provide significant contributions to the ITSecurity team and to multiple groups throughout AmSec. Securityengineers are expected to develop elegant solutions to complexbusiness problems and apply appropriate technologies whilefollowing security engineering best practices. You are alsoexpected to mentor more junior engineers and be a security thoughtleader for the organization. You should foster constructivedialogue and seek resolution when confronted with discordant views.Engineers in this role are expected to participate fully in theplanning of the IT Security team's work and constantly seekopportunities for process improvement. They should also have a deepunderstanding of at least one specialty for which they are asought-out resource (both within AmSec and by groups throughoutAmazon), while having an understanding of the application ofinformation security in a broad range of technical areas. You willneed a combination of troubleshooting, technical, and communicationskills, as well as the ability to handle a mix of disparate taskswhich may include project and software development work. This rolewill provide career growth opportunities as you gain new securityskills in the course of your duties. Key job responsibilities 1.Security reviews for hardware including servers and devices. 2.Penetration testing & vulnerability research. 3. Threatmodeling. 4. Security training and outreach to internal developmentteams. 5. Security guidance documentation. 6. Assistance withrecruiting activities. BASIC QUALIFICATIONS 1. BS in ComputerScience or related field, or equivalent work experience. 2.Extensive experience in Security Engineering or Development ofSecurity capabilities, supporting engineering projects from conceptto delivery, and 2 years in two or more of the following technicalcategories: Virtualization security (Xen, KVM, QEMU) - Hardwaresecurity (PCB, JTAG, UART, SPI, ROM, microcode, custom ASIC/FPGA) -x86 and/or ARM chipset and firmware security (TPM, UEFI, TrustZone,Secure Boot, JTAG, PCIe) - Physical security testing at the machinelevel. 3. Security testing of compute platforms (Server, PC orMobile). 4. Working with diverse physical tamper resistance and/ortamper detection techniques. PREFERRED QUALIFICATIONS 1. MS inComputer Science, Information Security, or related field, orequivalent work experience. 2. Demonstrated ability to preparetechnical specifications and executive-ready communications. 3.Experience using AWS core services (EC2, S3, IAM, Kinesis, Lambda,KMS, VPC, etc). 4. Experience designing for relevant securitystandards (TCG, IEEE, NIST, FIPS, PCI, ISO 28000 series). 5.Experience designing for crypto security (e.g. certificate handlingand PKI, attestation, TPM/HSM). 6. Expert knowledge of Windows,Linux, and hypervisor security (especially in cloud environments).7. Expert knowledge of common security-relevant protocols (e.g.SSH, TLS, DNS, DHCP, NTP, ICMP). Amazon is an equal opportunitiesemployer. We believe passionately that employing a diverseworkforce is central to our success. We make recruiting decisionsbased on your experience and skills. We value your passion todiscover, invent, simplify, and build. Protecting your privacy andthe security of your data is a longstanding top priority forAmazon. Please consult our Privacy Notice(https://www.amazon.jobs/en/privacy_page) to know more about how wecollect, use and transfer the personal data of our candidates.Amazon is committed to a diverse and inclusive workplace. Amazon isan equal opportunity employer and does not discriminate on thebasis of race, national origin, gender, gender identity, sexualorientation, protected veteran status, disability, age, or otherlegally protected status. Posted: February 4, 2025 (Updated 3 daysago) #J-18808-Ljbffr
