Product Security Engineer II, Healthcare Security

Product Security Engineer II, Healthcare Security

07 Nov 2024
Virginia, Arlington, 22201 Arlington USA

Product Security Engineer II, Healthcare Security

DescriptionAt Amazon Healthcare Security, we are on a mission to make healthcare easy. We are developing a patient-centric healthcare experience that is personal, transparent, and convenient. We are looking for a Security Engineer II to join our team.Healthcare Security Engineers act as consultants and partners to Amazon Healthcare developers and product owners. We proactively identify and mitigate risks in designs, infrastructure, and code. We develop secure paved paths, perform application security testing, and support our Healthcare engineering partners in all things security. Together, we build services that earn customer trust and raise the bar for the healthcare industry.Key job responsibilities

Raise the security bar through secure design, architecture, and code reviews with your software development customers.

Act as a consultant and trusted resource on secure development and implementation practices, and secure-by-default opportunities.

Identify opportunities to improve developer velocity and program efficiency while maintaining our high security and privacy standards.

Collaborate on solutions that automate Security processes and improve security-at-scale.

Collaborate with Senior Security Engineers to develop products and processes that support the team in delivering consistently bar-raising and customer-centric Application Security services.

Period on-call responsibilities, and occasional travel as required.

About the teamABOUT AmSec:Diverse Experiences: Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Why Amazon Security: At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.Work/Life Balance: We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.Inclusive Team Culture: In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.Training and Career growth: We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.Basic Qualifications

5+ years of security engineering experience in a software development environment across all phases of the SDLC.

5+ years performing security testing, threat modeling, code reviews, and producing secure designs

2+ years creating secure paved paths and contributing to risk-based design and development decisions

2+ years of hands-on experience with programming languages such as Python, Java, Ruby, and C-family languages.

Preferred Qualifications

BS degree in Computer Science, Computer Engineering, Software Engineering or related technical degree

Experiencing delivering solutions that reduce the cost of security adoption.

Experience contributing to software applications, including open source projects.

Experience with AWS services.

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $136,000/year in our lowest geographic market up to $212,800/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits. This position will remain posted until filled. Applicants should apply via our internal or external career site.

Related jobs

  • Description

  • Description

  • Req ID: RQ186897

  • Description

  • Allied Universal®, North America’s leading security and facility services company, provides rewarding careers that give you a sense of purpose. While working in a dynamic, diverse and inclusive workplace, you will be part of a team that fuels a culture that will reflect in our communities and customers we serve. We offer medical, dental and vision coverage, life insurance, retirement plan, employee assistance programs, company discounts, perks and more for most full-time positions!

  • Allied Universal®, North America’s leading security and facility services company, provides rewarding careers that give you a sense of purpose. While working in a dynamic, diverse and inclusive workplace, you will be part of a team that fuels a culture that will reflect in our communities and customers we serve. We offer medical, dental and vision coverage, life insurance, retirement plan, employee assistance programs, company discounts, perks and more for most full-time positions!

  • Summary About the Position: This position is in the Defense Civilian Intelligence Personnel System (DCIPS). Employees occupying DCIPS positions are in the Excepted Service and must adhere to U.S. Code, Title 10, as well as Department of Defense Instruction 1400.25. This position is located at the HT-W39LAA US ARMY NATIONAL GUARD READINESS CTR. Responsibilities Establish, develop, coordinate, and implement security policy and procedures to ensure local and national security policy is promulgated in all the states and territories. Plan, direct, coordinate execute and manage the SCI (Sensitive Compartmented Information) security program for current and long-range operational plans, goals, and objectives. Represent the Security Program Branch at high level government working groups regarding security program policy input and collaboration. Explain the nature and reasons for various security actions to subordinates and higher-level management. Requirements Conditions of Employment Qualifications Who May Apply: Only applicants who meet one of the employment authority categories below are eligible to apply for this job. You will be asked to identify which category or categories you meet, and to provide documents which prove you meet the category or categories you selected. See Proof of Eligibility for an extensive list of document requirements for all employment authorities. 10-Point Other Veterans’ Rating 30 Percent or More Disabled Veterans 5-Point Veterans\' Preference Current Army Defense Civilian Intelligence Personnel System (DCIPS) Employee Current Department of Army Civilian Employees Current Department of Defense (DOD) Civilian Employee (non-Army) Current DoD Defense Civilian Intelligence Personnel System (DCIPS) Employee (non-Army) Disabled Veteran w/ a Service-Connected Disability, More than 10%, Less than 30% Non-Department of Defense (DoD) Transfer Prior Federal Service Employee Priority Placement Program, DoD Military Reserve (MR) and National Guard (NG) Technician Eligible Priority Placement Program, DoD MR and NG Preference Eligible Tech Receiving Disability Retirement Priority Placement Program, DoD Retained Grade Preference Eligible United States Citizen Applying to a DCIPS Position Army DCIPS positions apply Veteran\'s Preference to preference eligible candidates as defined by Section 2108 of Title 5 U.S.C., in accordance with the procedures provided in DoD Instruction 1400.25, Volume 2005, DCIPS Employment and Placement. In order to qualify, you must meet the experience requirements described below. Experience refers to paid and unpaid experience, including volunteer work done through National Service programs (e.g., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community; student; social). You will receive credit for all qualifying experience, including volunteer experience. Your resume must clearly describe your relevant experience; if qualifying based on education, your transcripts will be required as part of your application. Additional information about transcripts is in this document. Experience required: To qualify based on your experience, your resume must describe at least one (1) year of experience which prepared you to do the work in this job. Specialized experience is defined as: Developing policy on SCI (Sensitive Compartmented Information) security while presenting and defending the recommended changes; providing solutions on SCI security issues; executing the SCI security program for current and long-range operational plans; conducting security inspections of multiple subordinate activities; ensuring compliance with regulatory requirements; building requirements and best practices for SCIF (Sensitive Compartmented Information Facility) and TSCIF (Temporary Sensitive Compartmented Information Facility. You will be evaluated on the basis of your level of competency in the following areas: Personnel Security Planning and Evaluating Security Program Management Technical Competence Specialized experience is progressively responsible intelligence-related security work directly related to the position being filled. Creditable experience may include previous military experience, experience gained in the private sector or in another government agency as long as it was at a level at least equivalent to the next lower band in the series. Education Some federal jobs allow you to substitute your education for the required experience in order to qualify. For this job, you must meet the qualification requirement using experience aloneno substitution of education for experience is permitted. Additional Information Male applicants born after December 31, 1959, must complete a Pre-Employment Certification Statement for Selective Service Registration. You will be required to provide proof of U.S. Citizenship. Direct Deposit of Pay is required. All INSCOM employees may be subject to extended TDY or worldwide deployments during crisis situations to perform mission essential functions as determined by management. Must be able to obtain and maintain a Top Secret security clearance. Incumbent (or Selectee) is required to satisfactorily complete the appropriate training and obtain the required certification/recertification for this position as outlined in DoD Publication 8570.01-M Information Assurance Workforce Improvement Program, dated 19 December 2005 (incorporating Change 1, 15 May 2008). Selection is subject to restrictions resulting from Department of Defense referral system for displaced employees. If you have retired from federal service and you are interested in employment as a reemployed annuitant, see the information in the Reemployed Annuitant information sheet. This is a(n) Security & Intelligence Career Field position. Multiple positions may be filled from this announcement. Salary includes applicable locality pay or Local Market Supplement. Payment of Permanent Change of Station (PCS) costs is not authorized, based on a determination that a PCS move is not in the Government interest. This is a Title 10 Excepted Service position covered by the Defense Civilian Intelligence Personnel System (DCIPS). Appointment to this position does not confer competitive status. Prior to appointment applicants are required to sign a statement indicating they understand the conditions of employment or assignment to the position and acknowledge the consequences of failing to meet and maintain those required conditions. You will be required to sign a DCIP MOU (Memorandum of understanding) for the conditions of the appointment. This position has been identified for the Security Professional Education Development (SPeD) Certification Program. This position requires the incumbent obtain the following core SPeD Certification: Security Fundamentals Professional Certification (SFPC) within their first two years of employment. This position is eligible for situational telework, including emergency and OPM prescribed \"unscheduled telework\" and regular/recurring telework, IAW current National Guard Bureau telework policy after date of hire.

Job Details

Jocancy Online Job Portal by jobSearchi.