NHS Human Services, Inc.

Description

We are seeking a Security Engineer to drive architectural reviews, threat models, develop requirements for corporate IAM adoption efforts, and support Amazon’s Corporate Identity and Access Management initiatives. You will drive programs that improve access management infrastructure across a complex global corporate environment, develop policies and procedures for the identity lifecycle, and provide identity and authN/authZ design review and threat modeling services across the enterprise.

This is a Security Engineer (SE) position supporting Identity and Access Management (IAM) team —the candidate will be responsible for implementing and supporting IAM initiatives, collaborating with Amazon business teams on secure design of their systems to protect Amazon and its customers data. Candidate will work with team members to execute security initiatives and contribute to improving overall IAM posture. Responsibilities include implementing SAST/DAST detections and applying security best practices to business units and applications.

Data-driven decisions are important to Amazon. You will draw heavily on your experience collecting, analyzing, and summarizing data to create compelling written and verbal communications to peer teams at all levels.

If you are excited about the challenges and opportunities described here and you have the background, education, and experience to excel in these areas, we’d love to talk with you further about our company, the team, and how you are uniquely qualified to join us!

Key job responsibilities

• Protecting and securing Amazon authentication and authorization workflows.

• Participate in the analysis, troubleshooting, investigation and remediation of identity security related activities and events.

• Implement and maintain automated security audits to ensure identity workflows adhere to industry standard security requirements.

• Create and maintain scripts to automate the generation of reports across various technologies.

• Collaborate with other Amazon Security Engineers to support cross-team programs and solutions.

• Work with teams on technologies such as Windows Single-Sign-On, Kerberos, FIDO/FIDO2, Passwordless Authentication, AuthZ, AuthN and Auditing.

A day in the life

• Protecting and securing Amazon authentication and authorization workflows.

• Participate in the analysis, troubleshooting, investigation and remediation of identity security related activities and events.

• Implement and maintain automated security audits to ensure identity workflows adhere to industry standard security requirements.

• Create and maintain scripts to automate the generation of reports across various technologies.

• Collaborate with other Amazon Security Engineers to support cross-team programs and solutions.

• Work with teams on technologies such as Windows Single-Sign-On, Kerberos, FIDO/FIDO2, Passwordless Authentication, AuthZ, AuthN and Auditing.

About the team

About Amazon Security

Diverse Experiences

Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.

Why Amazon Security?

At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.

Inclusive Team Culture

In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.

Training & Career Growth

We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.

Work/Life Balance

We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.

Basic Qualifications

• Minimum 3 years of experience in identity and access management (IAM) programs

• Demonstrable knowledge of current technologies in authentication, federation, and identity management space, such as OAuth 2.0, OpenID Connect, SAML, SCIM, U2F/UAF/FIDO2, HOTP, TOTP

• Familiarity with using biometrics for authentication and managing related privacy considerations

• Familiarity with relevant identity-oriented standards, such as NIST800-63 and GDPR

• 3+ years of security experience with one or more domains in the common body of knowledge (CBK)

Preferred Qualifications

• Bachelor's degree

• Knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits or equivalent

• Knowledge of networking protocols such as HTTP, DNS and TCP/IP

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.

Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.