Sr. Security Engineer, Ring Application Security

Job ID: 2923721 | Amazon Development Centre (London) Limited

At Ring, we endeavor to Make Neighborhoods Safer, and a large part of this goal is achieved through the work of our dedicated security teams. Our attack surface spans over consumer devices, mobile applications, and cloud services, forcing us to be dynamic in the midst of an ever-changing security landscape. We operate as the vanguard of security within a security-focused company - what is cooler than that?

You will be responsible for analysing the security of applications and services, discovering and addressing security issues, building security automation, and quickly reacting to new threat scenarios. You will have the opportunity to learn from, and be mentored by, those who are building and securing our leading-edge services.

You will be expected to develop elegant solutions to complex business problems and apply appropriate technologies while following security engineering best practices. You are also expected to mentor more junior engineers and be a security thought leader for the organization.

A successful candidate will need a combination of troubleshooting, technical, and communication skills, as well as the ability to handle a mix of disparate tasks which may include project and software development work. This role will provide career growth opportunities as you gain new security skills in the course of your duties, including:

1. Application security reviews
2. Penetration testing
3. Projects and research work as needed
4. Security training and outreach to internal development teams
5. Security guidance documentation
6. Security tool development
7. Security metrics delivery and improvements
8. Assistance with recruiting activities and administrative work

• MS in Computer Science, Cybersecurity, or related field, or equivalent work experience.
• Minimum of six (6) years experience with any combination of the following: threat modelling experience, secure coding, identity management and authentication, software development, cryptography, system administration, and network security.
• Six or more (6+) years of professional experience with security engineering, system and network security, authentication and security protocols, cryptography, or application security.

• Experience implementing security solutions at the business division level
• A comprehensive understanding of network and web related protocols (such as TCP/IP, UDP, DNS, HTTPS, routing protocols)
• A comprehensive understanding of web services
• A comprehensive understanding of mobile application security
• A comprehensive understanding of IoT device security
• Experience with multiple programming languages, preferably C++, Go, Ruby, Swift, and Java
• Excellent written and verbal communication skills
• Demonstrable teamwork skills and resourcefulness
• Possess self-drive to keep moving things forward even in the face of ambiguity and imperfect knowledge (avoid “analysis paralysis”)
• Strong sense of ownership, urgency, and drive
• Sharp analytical abilities and proven design skills
• Meets/exceeds Amazon’s leadership principles requirements for this role
• Meets/exceeds Amazon’s functional/technical depth and complexity for this role