Security Engineer, Business Information Risk
Technology | Job ID 2804787Job Summary
ABOUT THIS ROLE
As a Security Engineer II at Audible you will advocate for information security throughout all our software development and business processes. You will work with other Security Engineers, Application Developers and System Engineers to protect our customers and Audible’s business.
ABOUT THE TEAM
Audible Information Security team is looking for an experienced Security Engineer to join our world class team. We are obsessed with protecting customer trust. We are a hands-on team working to protect our computer networks, servers, applications and data assets. This role will be focused on managing risk across our business functions.
True to Audible’s People Principles, we are committed to the success of our people and supporting the communities in which we work. Our leadership team is dedicated to mentoring and coaching to help each individual identify their career goals, flourish, and achieve their potential. Our environment encourages everyone to participate. Our diverse team depends on differing backgrounds and perspectives to foster robust conversations that lead us to the right solutions for our customers.
As a Security Engineer, you will...
- Perform third party security risk assessment and due diligence, including managing questionnaire response, evidence verification, and report preparation
- Assess and secure third-party integrations, services, solutions and partnerships, ensuring controls are implemented to the highest security standards
- Assess, identify and develop recommendations regarding data protection, insider threat, data sharing, identity and access management
- Execute internal security and confidential information usage security assessments, audits, and investigations
- Assess and prioritize security assessment findings and recommend appropriate mitigations.
- Respond to security violations, vulnerabilities, and incident detections
- Provide guidance on risk, compliance, and policy to technical and non-technical internal customers, including security training and outreach to internal teams and external supply chain partners
- Apply your security and business knowledge to drive secure and pragmatic improvements to Audible people, process, and assets, while guiding technical trade-offs between short versus long term security and business goals
- Contribute to / provide feedback on the development of security standards and control requirements
- Strong organizational and communication skills, with a demonstrated ability to work in a multi-tasking dynamic environment while maintaining a high level of ownership and accountability
ABOUT AUDIBLE
Audible is the leading producer and provider of audio storytelling. We spark listeners’ imaginations, offering immersive, cinematic experiences full of inspiration and insight to enrich our customers daily lives. We are a global company with an entrepreneurial spirit. We are dreamers and inventors who are passionate about the positive impact Audible can make for our customers and our neighbors. This spirit courses throughout Audible, supporting a culture of creativity and inclusion built on our People Principles and our mission to build more equitable communities in the cities we call home.
Basic Qualifications
- Experience with AWS products and services
- Experience applying threat modeling or other risk identification techniques or equivalent
- 5+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience
- Experience with the information security principles and the Common Body of Knowledge (CBK) domains and core technologies (CIA, encryption, identity, authN/authZ, SSO, web protocols, and privacy)
- Experience in advocating security best practices for third party integrations (e.g. with SAAS solutions, third-party libraries, etc.)
Preferred Qualifications
- MS in Cybersecurity, Computer Science, or other relevant degree
- Current knowledge around web and mobile application vulnerabilities, attacks, and mitigation methods
- Experience with developing and maintaining relevant security assessment risk metrics
- Experience using GRC tools and technologies
- Proficient in at least one programming language – Java preferred
- AWS certifications such as AWS Certified Security – Specialty, AWS Certified Cloud Practitioner, or other security related certifications (e.g., CISSP, SANS/GIAC or GSEC, CISA, OSCP/OSWA/OSWE)
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.
Related Jobs
- Senior Business Information Risk Manager Newark, New Jersey Technology
- Senior Software Engineer Newark, New Jersey Technology
- Director, Software Development, Personalization Newark, New Jersey Technology
Audible Success Profile
Audible is built on a strong foundation as an Amazon subsidiary, so you’ll get to leverage all of Amazon's technologies while still being on a small team with an entrepreneurial spirit. We’re looking for someone who knows how to use data to provide our customers with engaging and inspiring experiences.
-
- Curious You are open to others’ perspectives and ideas. When faced with challenges, you stay inquisitive, collaborating and testing different approaches.
- Imaginative You imagine freely and support your colleagues’ own imagining. You ask “What if…?” and employ original thinking in your work.
- Customer Centric You are passionate about creating delightful experiences. Whether you’re working with creators, customers, or colleagues you aim to exceed their expectations in every way.
-
- Inventive You express ideas and navigate complex and ambiguous situations in novel ways, even creating new paradigms or structures for others to follow.
- Socially Conscious You’re mindful of the impact we have on each other and apply empathy into your work with colleagues, communities, and customers.
- Effective Communicator By adapting complex information for your audience, you’re able to foster collaboration and have a positive impact on outcomes
What we can offer you
We are a community of brilliant minds, brimming with fresh ideas and working shoulder to shoulder to achieve greatness. And because of this, we think it’s only fair that we offer some nice little perks to everyone who goes the extra mile at Audible.
Flexible Work
We promote flexibility in how and where we work with our Hub+Home hybrid workplace model.
Health
Dental and vision plans, life insurance, and the medical plan options that suit individual needs.
Savings
Plan for your future with employer-matched savings accounts.
Stock
We grant our employees restricted stock units, because we want them to think and act like owners.
Time Off
We love what we do but everyone needs the opportunity to hit the refresh button. Take advantage of vacation days, sick days, and personal days to rejuvenate.
Community
We are committed to building and sustaining a diverse and inclusive culture and community. Audible’s Impact Groups encourage an environment where you can be you, and bring your whole self to work.
Amazon Discount
As part of the Amazon family, Audible employees are entitled to a discount on products on Amazon.
Learning & Development
We want to help you grow with learning and development programs, leadership training and tuition reimbursement.
Audible's People Principles celebrate who we are and where we've been, and guide the way we work shoulder to shoulder to enhance the lives of our millions of customers around the world. They reflect and apply to everyone who works at Audible—the entrepreneurs and operators, the dreamers and the doers, those who have worked here for 25 years and those who have arrived in the past few weeks and months.
View all Our People PrinciplesCommunity Impact
At Audible, we seek to exemplify what a company can mean beyond what it does. We recruit and cultivate local talent, and we drive forward a wide range of initiatives focused on returning Newark to its roots as a hub of innovation. Our global offices embrace the same principle, and our employees around the world volunteer and serve in their communities in addition to seeding and growing the local creative economy.
Learn more
Location Benefits
Our Newark office is at the heart of the audio revolution. We stay inspired by visiting creatives, guest speakers, professional development, and community engagement. We fuel our ideas with daily catered lunch and then take in local culture or hang out with colleagues at weekly happy hours. Getting here is easy with free parking or transit perks, and employees who move to the neighborhood enjoy our monthly Live Local housing subsidy.
Learn more
Related Content
-
LinkedIn Top Companies 2022: Media & Entertainment
We're proud to be recognized in LinkedIn's List of #LinkedInTopCompanies in Media & Entertainment for 2022.
-
Audible Named Among 100 Best Workplaces for Innovators by Fast Company
We’re proud to be recognized as a place where inventive minds and diverse experiences are valued, and where employees are actively encouraged to use their ideas and talents to improve our customers’ lives.
-
Audible Wins 2021 Digiday Worklife Award
This year’s Worklife Awards winners capture responses and new directions, and exemplify how companies worked to adapt to these changes and more. The organizations the judges have selected adjusted to a series of new norms across 2021...