DESCRIPTIONIn Amazon Stores, we ship some of the widest arrays of technology found at any company. From amazon.com to world class machine learning pipelines, from cutting-edge digital healthcare to no-checkout retail, we push the boundaries of technology in every direction using the globe’s largest AWS deployment.As an AppSec engineer, you will collaborate with software development teams to ensure we keep our customers safe while developing these novel services. In a given day, you might be inspecting an application’s code for security issues, building a new framework to help our software developers build faster and more securely, or fine-tuning the design for a new service alongside its software developers.The ideal candidate combines technical acumen with an ability to lead by influence and communicate clearly. Technically, this person will be a security generalist with one or more areas of deep expertise. In their communication, they will clearly articulate risks to technical and non-technical audiences alike. Interpersonally, successful candidates will effectively harmonize disparate opinions while effectively prioritizing risks to guide their partners towards secure solutions.Our organization prizes its employees, and we show it through investing in work-life harmony. We have dedicated resources that consistently innovate in reducing on-call time and ensuring the team spend their time on the highest-value tasks. Join the stores AppSec organization to work hard, have fun, and make history!Our team puts a high value on work-life balance. Striking a healthy balance between your personal and professional life is crucial to your happiness and success here, which is why we aren’t focused on how many hours you spend at work or online. Instead, we’re happy to offer a flexible schedule so you can have a more productive and well-balanced life—both in and outside of work.Key job responsibilities* Creating, updating, and maintaining threat models for a wide variety of software projects* Manual and Automated Secure Code Review, primarily in Java, Python and Javascript* Development of security automation tools* Adversarial security analysis using cutting-edge tools to augment manual effort* Security training and outreach for internal development teams* Security architecture and design guidance* Independently solve security problems that require novel methods or approaches* Influence your team’s and partners’ process, priorities, and choices to improve outcomesAbout the teamDiverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying. Why Amazon Security At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Work/Life Balance We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve. Inclusive Team Culture In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Mentorship and Career growthWe’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional. We are open to hiring candidates to work out of one of the following locations:Bengaluru, KA, INDBASIC QUALIFICATIONS- BS in Computer Science, Information Security, minimum 8 years of demonstrated experience in areas such as application security, offensive security and/or systems security.- Understanding of threat modeling, manual source code review, security vulnerabilities, attacker exploit techniques, and methods for their remediation.- Ability to drive multiple technically complex security reviews together while remaining effective at providing security guidance to stakeholders.- Scripting skills (E.g: Python, Perl, Bash, Ruby, PowerShell, etc.)PREFERRED QUALIFICATIONS* You demonstrate excellent judgement in assessing and prioritizing technical risk* You have a strong application security background with a focus on scalable solutions* You have experience building and securing complex AWS architecture* You have excellent written and verbal communication skills* You work to identify and remove bottlenecks for your teammates, both in process and technology

Security Engineer, Application Security

Amazon, Bengaluru, KA, IN

DESCRIPTIONIn Amazon Stores, we ship some of the widest arrays of technology found at any company. From amazon.com to world class machine learning pipelines, from cutting-edge digital healthcare to no-checkout retail, we push the boundaries of technology in every direction using the globe’s largest AWS deployment.As an AppSec engineer, you will collaborate with software development teams to ensure we keep our customers safe while developing these novel services. In a given day, you might be inspecting an application’s code for security issues, building a new framework to help our software developers build faster and more securely, or fine-tuning the design for a new service alongside its software developers.The ideal candidate combines technical acumen with an ability to lead by influence and communicate clearly. Technically, this person will be a security generalist with one or more areas of deep expertise. In their communication, they will clearly articulate risks to technical and non-technical audiences alike. Interpersonally, successful candidates will effectively harmonize disparate opinions while effectively prioritizing risks to guide their partners towards secure solutions.Our organization prizes its employees, and we show it through investing in work-life harmony. We have dedicated resources that consistently innovate in reducing on-call time and ensuring the team spend their time on the highest-value tasks. Join the stores AppSec organization to work hard, have fun, and make history!Key job responsibilities* Creating, updating, and maintaining threat models for a wide variety of software projects* Manual and Automated Secure Code Review, primarily in Java, Python and Javascript* Development of security automation tools* Adversarial security analysis using cutting-edge tools to augment manual effort* Security training and outreach for internal development teams* Security architecture and design guidance* Independently solve security problems that require novel methods or approaches* Influence your team’s and partners’ process, priorities, and choices to improve outcomesAbout the teamDiverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying. Why Amazon Security At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Work/Life Balance We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve. Inclusive Team Culture In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Mentorship and Career growthWe’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional. We are open to hiring candidates to work out of one of the following locations:Bengaluru, KA, INDBASIC QUALIFICATIONS- BS in Computer Science, Information Security, 5+ years of demonstrated experience in areas such as application security, offensive security and/or systems security.- Understanding of threat modeling, manual source code review, security vulnerabilities, attacker exploit techniques, and methods for their remediation.- Understanding of best practices in security engineering, including secure development, cryptography, systems security and/or policy.- Scripting skills (E.g: Python, Perl, Bash, Ruby, PowerShell, etc.)PREFERRED QUALIFICATIONS* You demonstrate excellent judgement in assessing and prioritizing technical risk* You have a strong application security background with a focus on scalable solutions* You have experience building and securing complex AWS architecture* You have excellent written and verbal communication skills* You work to identify and remove bottlenecks for your teammates, both in process and technology

Sr. Security Engineer, Application Security

Amazon, Bengaluru, KA, IN

DESCRIPTIONIn Amazon Stores, we ship some of the widest arrays of technology found at any company. From amazon.com to world class machine learning pipelines, from cutting-edge digital healthcare to no-checkout retail, we push the boundaries of technology in every direction using the globe’s largest AWS deployment.As an AppSec engineer, you will collaborate with software development teams to ensure we keep our customers safe while developing these novel services. In a given day, you might be inspecting an application’s code for security issues, building a new framework to help our software developers build faster and more securely, or fine-tuning the design for a new service alongside its software developers.The ideal candidate combines technical acumen with an ability to lead by influence and communicate clearly. Technically, this person will be a security generalist with one or more areas of deep expertise. In their communication, they will clearly articulate risks to technical and non-technical audiences alike. Interpersonally, successful candidates will effectively harmonize disparate opinions while effectively prioritizing risks to guide their partners towards secure solutions.Our organization prizes its employees, and we show it through investing in work-life harmony. We have dedicated resources that consistently innovate in reducing on-call time and ensuring the team spend their time on the highest-value tasks. Join the stores AppSec organization to work hard, have fun, and make history!Key job responsibilities* Creating, updating, and maintaining threat models for a wide variety of software projects* Manual and Automated Secure Code Review, primarily in Java, Python and Javascript* Development of security automation tools* Adversarial security analysis using cutting-edge tools to augment manual effort* Security training and outreach for internal development teams* Security architecture and design guidance* Independently solve security problems that require novel methods or approaches* Influence your team’s and partners’ process, priorities, and choices to improve outcomesAbout the teamDiverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying. Why Amazon Security At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Work/Life Balance We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve. Inclusive Team Culture In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Mentorship and Career growthWe’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional. We are open to hiring candidates to work out of one of the following locations:Bengaluru, KA, INDBASIC QUALIFICATIONS- BS in Computer Science, Information Security,13+ years of demonstrated experience in areas such as application security, offensive security and/or systems security.- Understanding of threat modeling, manual source code review, security vulnerabilities, attacker exploit techniques, and methods for their remediation.- Excellent written and verbal communication skills with the ability to adapt messaging to executive, technical, and non-technical audiences.- Ability to drive multiple technically complex security reviews together while remaining effective at providing security guidance to stakeholders.- Ability to work with a high degree of autonomy.PREFERRED QUALIFICATIONS* You demonstrate excellent judgement in assessing and prioritizing technical risk* You have a strong application security background with a focus on scalable solutions* You have experience building and securing complex AWS architecture* You have excellent written and verbal communication skills* You work to identify and remove bottlenecks for your teammates, both in process and technology

Information Security Audit

, Delhi

An information security audit is designed with the aim of meeting extreme conditions and preventing any unauthorized physical and logical access, which may lead to loss of privacy, integrity or availability. Our Security Audit services offer clients comp

Director - APAC Business Information Security Office

Discovery, Inc. (Formerly Scripps Networks Interactive), Hyderabad, Any

Every great story has a new beginning, and yours starts here. Welcome to Warner Bros. Discovery... the stuff dreams are made of. Who We Are... When we say, "the stuff dreams are made of," we're not just referring to the world of wizards, dragons and superheroes, or even to the wonders of Planet Earth. Behind WBD's vast portfolio of iconic content and beloved brands, are the storytellers bringing our characters to life, the creators bringing them to your living rooms and the dreamers creating what's next...From brilliant creatives, to technology trailblazers, across the globe, WBD offers career defining opportunities, thoughtfully curated benefits, and the tools to explore and grow into your best selves. Here you are supported, here you are celebrated, here you can thrive. The Job The Director, Asia-Pacific (APAC) Business Information Security Office is a key leader in shaping WBD's Global Information and Content Security (GICS) strategy, policies, and standards across the globe. This individual will provide cybersecurity support and leadership through APAC as WBD increases its technical and business footprint within the region . This critical role will help to ensure that technical security controls are implemented and working effectively across business and technology operations, acting as a bridge between the business, technology, and GICS teams, to ensure consistency across strategy, risk , technical security direction, prioritization of cybersecurity efforts, incident response and delivering outcomes on our cybersecurity p rogram . This Director role is responsible for maintaining a strategic relationship within the region, provid ing constant feedback to GICS leadership on the coverage and effectiveness of cyber security controls within APAC.This position will report to the Senior Vice President, Cybersecurity Program Execution, Compliance and Risk Oversight . J ob Responsibilities Strategic Business Partnership Act as a link between APAC operations and our centralized cybersecurity functions, ensuring that security initiatives are aligned with business goals and priorities.Promote corporate cyber security awareness activities and implement security awareness concepts locally, customizing communications to be suitable for the business.Lead the adoption and enforcement of GICS policies and standards across APAC. Technical Security Delivery Serve as a technical cybersecurity subject matter expert (SME), providing multi-disciplinary knowledge, skills, and experience in cybersecurity domains for APACWork with technology leadership, GICS, and all IT Service Owners to generate appropriate communication , process, and education plans to ensure both IT and Business leaders are aware of the overall cybersecurity posture within APAC.Maintain a solid understanding of assigned business lines and supporting infrastructure to effectively handle the threat and risk landscape.Support security operations and other teams in the identification, investigation, and mitigation of cyber security incidents.Work with all GICS leadership management team to drive the adoption of core security services (Identity and Access Management, Logging and Monitoring, Detection and Response, Vulnerability Management, Product Security, Cloud Security, and Content Security). Handle security exceptions for Global news operations, ensuring proper documentation, approval, and review processes are followed.Partner with other GICS leadership to drive the adoption of core security services (Identity and Access Management, Logging and Monitoring, Detection and Response, Vulnerability Management, Product Security, Cloud Security, and Content Security) throughout global news operations . Compliance and Reporting Support enterprise and business lines regulatory and compliance requirements and develop implementation strategies that minimize operational impact and disruption to the business unit.Collaborate and support with corporate functions including Internal Audit, Legal, Privacy, Procurement, and others to ensure that WBD maintains a strong cybersecurity posture.Support enterprise and business lines regulatory and compliance requirements and develop implementation strategies that minimize operational impact and disruption. The Essentials Executive presence, technical security expertise , business acumen, communication skills and alignment focus.Being accountable, project driven, results oriented, willingness to be constantly learning new things, open minded, ability to articulate sometimes complex technical security topics and articulate risks in a language that the business finds meaningful and use that information to make more informed decisions.12-15 years of experience in a technical security environment, with 6-8 years in a supervisory or management role.Solid knowledge of various regulatory requirements and information security control frameworks (ISO, NIST, PCI, GDPR, CCPA, SOX).Strong understanding of audit/risk management methodologies and regulatory requirements pertaining to information security, privacy and/or data securityHands-on experience with security practices such as security incident response and risk management.Exceptional verbal and written communication skills, specifically the ability to communicate within the context of the intended audience, whether that be senior executives or highly technical engineering resources.Good understanding of Industry trends and emerging threats.Experience in leading projects leveraging global teams with matrix resources.Extensive experience in the information security field designing and implementing enterprise security solutions in a global context.Should possess proficiency in the technical aspects of cyber security, such as:o Cloud infrastructure and concepts, specifically the security aspects thereofo Application security topics such as the OWASP top 10.o SIEM & logging toolso Vulnerability Management and EDR/XDR toolsets.o Network and Compute architectureso Identity & Access Management and Privileged Access Management The Nice to Haves Bachelor's degree in computer science, Engineering, or other related discipline preferred or 1 2 + years of previous technical security experience, e.g., architecture, engineering, or InfoSec Director level.Security certifications are a plus (CISSP, CISM, CISA, SANS, etc.) How We Get Things Done... This last bit is probably the most important! Here at WBD, our guiding principles are the core values by which we operate and are central to how we get things done. You can find them at www.wbd.com/guiding-principles/ along with some insights from the team on what they mean and how they show up in their day to day. We hope they resonate with you and look forward to discussing them during your interview. The Legal Bits... Warner Bros. Discovery embraces the opportunity to build a workforce that reflects the diversity of our society and the world around us. Being an equal opportunity employer means that we take seriously our responsibility to consider qualified candidates on the basis of merit, regardless of sex, gender identity, ethnicity, age, sexual orientation, religion or belief, marital status, pregnancy, parenthood, disability or any other category protected by law.If you're a qualified candidate and you require adjustments or accommodations to search for a job opening or apply for a position, please contact us at [email protected]: . Date posted: 04/05/2024 09:50 AM

Senior AWS Application Security Engineer, ETSE

Amazon, Vancouver, Any, Canada

BASIC QUALIFICATIONS*MS in Computer Science or related field, or equivalent work experience*Minimum of 5 years of experience with any combination of the following: mobile security, threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security*Minimum of 5 years of experience and understanding of security engineering, system and network security, authentication and security protocols, cryptography, or application securityDESCRIPTIONHelp us protect not only the Amazon Web Services (AWS) cloud computing environment but all of our customers as well! Since 2006, our great team at AWS has been enabling our customers to bring great ideas to life in ways that aren't possible in traditional IT environments. With AWS you can flexibly harness compute, storage, security, and other services from across the globe as your business demands them.AWS Security is on the cutting edge of many security issues for a wide variety of platforms and technologies including cloud services, Internet of things (IoT), identity and access management, mobile devices, virtualization and custom hardware, all operating at massive scale. Similarly, our highly collaborative team is committed to each team member's growth as our business grows.AWS Security is looking for an Application Security Engineer to help validate that our services, applications, and websites are designed and implemented to the highest security standards. You will be responsible for analyzing the security of applications and services, discovering and addressing security issues, building security automation, and quickly reacting to new threat scenarios. You will have the opportunity to learn from, and be mentored by, those who are building and securing our cutting-edge services.You are expected to be strong in multiple domains and provide significant contributions to the AWS IT Security team and to multiple groups throughout Amazon. You are expected to develop elegant solutions to complex business problems and apply appropriate technologies while following security engineering best practices. You are also expected to mentor more junior engineers and be a security thought leader for the organization.You will foster constructive dialogue and seek resolution when confronted with discordant views. Engineers in this role are expected to participate fully in the planning of the AWS IT Security team's work and constantly seek opportunities for process improvement. You should also have a deep understanding of at least one specialty for which they are a sought out resource (both within AWS Security and by groups throughout Amazon), while having an understanding of the application of information security in a broad range of technical areas.You will need a combination of troubleshooting, technical, and communication skills, as well as the ability to handle a mix of disparate tasks which may include project and software development work. This role will provide career growth opportunities as you gain new security skills in the course of your duties.Key job responsibilities Application security reviews Mobile security reviews Secure architecture design Threat modeling Projects and research work as needed Security training and outreach to internal development teams Security guidance documentation Security tool development Security metrics delivery and improvements Assistance with recruiting activities and administrative workAbout the teamAbout AmSec:Diverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.Why Amazon SecurityAt Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Work/Life BalanceWe value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there's nothing we can't achieve.Inclusive Team CultureIn Amazon Security, it's in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Training and Career growthWe're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.We are open to hiring candidates to work out of one of the following locations:Toronto, ON, CAN | Vancouver, BC, CANPREFERRED QUALIFICATIONS*Experience implementing security solutions at the business division level*An understanding of network and web related protocols (such as, TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)*An understanding of web servicesExperience with multiple programming languages (such as, Java, C++, Ruby, Python, Perl, etc.)*Excellent written and verbal communication skillsAmazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, disability, age, or other legally protected status. If you would like to request an accommodation, please notify your Recruiter.The base salary for this position ranges from $180,900/year up to $302,000/year. Salary is based on a number of factors and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. Applicants should apply via our internal or external career site.Salary: . Date posted: 04/08/2024 10:34 AM

Security Engineer, Application Security

Amazon, Bengaluru, Any

BASIC QUALIFICATIONS- BS in Computer Science, Information Security, 5+ years of demonstrated experience in areas such as application security, offensive security and/or systems security.- Understanding of threat modeling, manual source code review, security vulnerabilities, attacker exploit techniques, and methods for their remediation.- Scripting skills (E.g: Python, Perl, Bash, Ruby, PowerShell, etc.)DESCRIPTIONIn Amazon Stores, we ship some of the widest arrays of technology found at any company. From amazon.com to world class machine learning pipelines, from cutting-edge digital healthcare to no-checkout retail, we push the boundaries of technology in every direction using the globe's largest AWS deployment.As an AppSec engineer, you will collaborate with software development teams to ensure we keep our customers safe while developing these novel services. In a given day, you might be inspecting an application's code for security issues, building a new framework to help our software developers build faster and more securely, or fine-tuning the design for a new service alongside its software developers.The ideal candidate combines technical acumen with an ability to lead by influence and communicate clearly. Technically, this person will be a security generalist with one or more areas of deep expertise. In their communication, they will clearly articulate risks to technical and non-technical audiences alike. Interpersonally, successful candidates will effectively harmonize disparate opinions while effectively prioritizing risks to guide their partners towards secure solutions.Our organization prizes its employees, and we show it through investing in work-life harmony. We have dedicated resources that consistently innovate in reducing on-call time and ensuring the team spend their time on the highest-value tasks. Join the stores AppSec organization to work hard, have fun, and make history!Key job responsibilities* Creating, updating, and maintaining threat models for a wide variety of software projects* Manual and Automated Secure Code Review, primarily in Java, Python and Javascript* Development of security automation tools* Adversarial security analysis using cutting-edge tools to augment manual effort* Security training and outreach for internal development teams* Security architecture and design guidance* Independently solve security problems that require novel methods or approaches* Influence your team's and partners' process, priorities, and choices to improve outcomesAbout the teamDiverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying. Why Amazon Security At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Work/Life Balance We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there's nothing we can't achieve. Inclusive Team Culture In Amazon Security, it's in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Mentorship and Career growthWe're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional. We are open to hiring candidates to work out of one of the following locations:Bengaluru, KA, INDPREFERRED QUALIFICATIONS- You demonstrate excellent judgement in assessing and prioritizing technical risk- You have a strong application security background with a focus on scalable solutions- You have experience building and securing complex AWS architecture- You work to identify and remove bottlenecks for your teammates, both in process and technologySalary: . Date posted: 04/16/2024 10:17 PM

Principal Security Engineer

GoDaddy.com, All Cities, Any

Location Details:Remote, India At GoDaddy the future of work looks different for each team. Some teams work in the office full-time; others have a hybrid arrangement (they work remotely some days and in the office some days)and some work entirely remotely. This is a remote position, so you'll be working remotely from your home. You may occasionally visit a GoDaddy office to meet with your team for events or meetings. Join Our Team GoDaddy's Product Security is looking for a Principal Security Engineer to join our organisation. Do you want to be an Information Security Lead at GoDaddy? We work out large-scale and cross-company security challenges while ensuring that partnership with the development and operational communities remains front of mind. At GoDaddy, Security Engineers apply their strong hands-on technical to craft scalable solutions for multiplex problems. You must communicate with GoDaddy Engineering teams, be performing security assessments, prioritise security risks, and design. We as a team implement high-quality security engineering solutions. Expertise in the secure design and verification of architecture for cloud-based web services is a must-have for this role! What you'll get to do... Work directly with product development teams on architecting secure cloud-based web services Promote secure by design and secure by default development strategies Perform activities like providing design requirements, architecture reviews, threat modeling, source code reviews, manual security testing, and cloud security audit Identify security vulnerabilities and assess risk in applications and infrastructure Own and drive the resolution of different security events, policy questions, and technical security risks Problem-solver with excellent interpersonal skills, and a deep technical understanding of security engineering Contribute to building repeatable/reusable security processes and frameworks Your experience should include... 10+ years of current security engineering experience with expertise in multiple security domains including Cloud-based Web Application Security, Mobile Application Security, and Network Security Experience working with Engineering teams during the software development lifecycle (SDLC) using a security-by-design methodology Extensive knowledge in the use of Applied Cryptography to resolve security problems Demonstrated use of scripting/development skills (e.g., Python) to automate processes Experience leading Security risk assessments including identification of potential issues, and coordination with various teams across different regions and time zones You might also have... Master's degree, Ph.D. or equivalent experience in Computer Science or a related field Experience with product security for hardware devices Experience with host-based security Experience with security operations to support security threats to deployed systems Working knowledge of ML/AI systems Software development skills in language of choice We've got your back... We offer a range of benefits that may include paid time off, retirement savings (e.g., 401k, pension schemes), incentive eligibility, equity grants, participation in an employee stock purchase plan, and other family-friendly benefits including parental leave. GoDaddy's benefits vary based on individual role and location and can be reviewed in more detail during the interview process. We also embrace our diverse culture and offer a range of Employee Resource Groups ( Culture ). Have a side hustle? No problem. We love entrepreneurs! Most importantly, come as you are and make your own way. About us... GoDaddy is empowering everyday entrepreneurs around the world by providing the help and tools to succeed online, making opportunity more inclusive for all. GoDaddy is the place people come to name their idea, build a professional website, attract customers, sell their products and services, and manage their work. Our mission is to give our customers the tools, insights, and people to transform their ideas and personal initiative into success. To learn more about the company, visit About Us . At GoDaddy, we know diverse teams build better products-period. Our people and culture reflect and celebrate that sense of diversity and inclusion in ideas, experiences and perspectives. But we also know that's not enough to build true equity and belonging in our communities. That's why we prioritize integrating diversity, equity, inclusion and belonging principles into the core of how we work every day-focusing not only on our employee experience, but also our customer experience and operations. It's the best way to serve our mission of empowering entrepreneurs everywhere, and making opportunity more inclusive for all. To read more about these commitments, as well as our representation and pay equity data, check out our Diversity and Pay Parity annual report which can be found on our Diversity Careers page . GoDaddy is proud to be an equal opportunity employer . GoDaddy will consider for employment qualified applicants with criminal histories in a manner consistent with local and federal requirements. Refer to our full EEO policy. Our recruiting team is available to assist you in completing your application. If they could be helpful, please reach out to [email protected]. GoDaddy doesn't accept unsolicited resumes from recruiters or employment agencies.Salary: . Date posted: 04/16/2024 10:05 PM

Security Engineer, Cloud Security Response

Amazon, Sydney, Any, Australia

BASIC QUALIFICATIONS- BS degree in Computer Science, Computer Engineering, Electrical Engineering, or 3+ years' equivalent technology and cyber security experience.- Understanding of best practices across multiple security disciplines/domains.- 5+ years or more of proven experience with a focus in areas such as systems, incident response, network, and/or application security.DESCRIPTIONAWS is looking for a Security Engineer to join the Cloud Response team in Australia. The team manages the security and availability of AWS Cloud services. We operate on the 'AWS' side of the Shared Responsibility Model to ensure "Security of the Cloud" and to protect our customers. This role requires engineers to work tactically with both internal and external stakeholders to solve security challenges at massive scale, and to think strategically to develop and implement changes to drive automation, scalability and continuous progress for the organization.Key job responsibilities- Supply oversight of in-flight security issues.- Triage new incoming issues to determine the level of risk they present to AWS, and then accordingly prioritise its remediation in conjunction with the impacted service team.- Communicate the state of these issues to various audiences, both technical and non-technical, at various levels of seniority (up to and including AWS' Chief Information Security Officer).- Escalate issues to senior AWS leadership if you feel your issues are not being treated at the correct pace due to their impact to ensure that we are putting customers first.- Explore building and improving our tooling to make your own life easier, and at the same time, sharing that benefit with all our engineers globally.About the teamCloud Response is a team inside AWS Security Operations. This team is broadly responsible for the 'AWS' side of the Shared Responsibility Model, and provides oversight of security issues from their identification through to resolution.Cloud Response operates follow-the-sun with teams based around four different geographical locations. We work with other AWS teams, to ensure security issues are resolved with the right level of urgency, whilst ensuring that our stakeholders are kept into the loop.Why Amazon SecurityAt Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Diverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.Work/Life BalanceWe value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there's nothing we can't achieve.Inclusive Team CultureIn Amazon Security, it's in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Training and Career growthWe're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.We are open to hiring candidates to work out of one of the following locations:Melbourne, VIC, AUS | Sydney, NSW, AUSPREFERRED QUALIFICATIONS- 6+ years or more of proven experience with a focus in areas such as systems, network, and/or application security.- 2+ years of scripting/coding experience in any language (including Bash/PowerShell scripting). Previous experience in Python scripting would be ideal.- Extensive knowledge of Internet security issues, cloud architectures, threat landscape, Linux/Unix tools and AWS services.Acknowledgement of country:In the spirit of reconciliation Amazon acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples today.IDE statement:Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer, and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, disability, age, or other legally protected attributes.Salary: . Date posted: 04/18/2024 09:13 AM

Security Engineer, Application Security

Amazon, Bengaluru, Any

BASIC QUALIFICATIONS- BS in Computer Science, Information Security, minimum 8 years of demonstrated experience in areas such as application security, offensive security and/or systems security.- Understanding of threat modeling, manual source code review, security vulnerabilities, attacker exploit techniques, and methods for their remediation.- Ability to drive multiple technically complex security reviews together while remaining effective at providing security guidance to stakeholders.- Scripting skills (E.g: Python, Perl, Bash, Ruby, PowerShell, etc.)DESCRIPTIONIn Amazon Stores, we ship some of the widest arrays of technology found at any company. From amazon.com to world class machine learning pipelines, from cutting-edge digital healthcare to no-checkout retail, we push the boundaries of technology in every direction using the globe's largest AWS deployment.As an AppSec engineer, you will collaborate with software development teams to ensure we keep our customers safe while developing these novel services. In a given day, you might be inspecting an application's code for security issues, building a new framework to help our software developers build faster and more securely, or fine-tuning the design for a new service alongside its software developers.The ideal candidate combines technical acumen with an ability to lead by influence and communicate clearly. Technically, this person will be a security generalist with one or more areas of deep expertise. In their communication, they will clearly articulate risks to technical and non-technical audiences alike. Interpersonally, successful candidates will effectively harmonize disparate opinions while effectively prioritizing risks to guide their partners towards secure solutions.Our organization prizes its employees, and we show it through investing in work-life harmony. We have dedicated resources that consistently innovate in reducing on-call time and ensuring the team spend their time on the highest-value tasks. Join the stores AppSec organization to work hard, have fun, and make history!Our team puts a high value on work-life balance. Striking a healthy balance between your personal and professional life is crucial to your happiness and success here, which is why we aren't focused on how many hours you spend at work or online. Instead, we're happy to offer a flexible schedule so you can have a more productive and well-balanced life-both in and outside of work.Key job responsibilities* Creating, updating, and maintaining threat models for a wide variety of software projects* Manual and Automated Secure Code Review, primarily in Java, Python and Javascript* Development of security automation tools* Adversarial security analysis using cutting-edge tools to augment manual effort* Security training and outreach for internal development teams* Security architecture and design guidance* Independently solve security problems that require novel methods or approaches* Influence your team's and partners' process, priorities, and choices to improve outcomesAbout the teamDiverse ExperiencesAmazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying. Why Amazon Security At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Work/Life Balance We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there's nothing we can't achieve. Inclusive Team Culture In Amazon Security, it's in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Mentorship and Career growthWe're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional. We are open to hiring candidates to work out of one of the following locations:Bengaluru, KA, INDPREFERRED QUALIFICATIONS- You demonstrate excellent judgement in assessing and prioritizing technical risk- You have a strong application security background with a focus on scalable solutions- You have experience building and securing complex AWS architecture- You have excellent written and verbal communication skills- You work to identify and remove bottlenecks for your teammates, both in process and technologySalary: . Date posted: 04/20/2024 08:57 AM