Senior Security Engineer, AGI Security Engineering

Senior Security Engineer, AGI Security Engineering

Job ID : 2802100 Amazon.com Services LLC - A57

Do you enjoy finding unique security flaws in artificial intelligence and LLMs? Do you enjoy protecting customers by securing AI and Amazon services at scale?

Do you enjoy mentoring and leading engineers to solve complex security problems in cutting-edge technologies? On the AGI security team, as a Senior Security Engineer, you will be responsible for the delivery of continuous assessments.

You will be asked to solve complex technology problems, build tools to automate your way out of manual efforts, and influence the way Amazon services, primarily Gen AI services respond to and mitigate threats.

Our team is responsible for manually evaluating the security of all GenAI models released by AGI. We specialize in uncovering subtle vulnerabilities that automated tools miss and develop custom tooling to scale our security efforts across Amazon's expanding GenAI landscape.

The AGI surface area is large and diverse, and we use insights from manual testing to continually improve our focused automation to proactively identify and fix potential issues before customers are impacted.

The ideal candidate combines technical acumen with an ability to lead by influence and communicate clearly. In their communication, they will clearly articulate risks to technical and non-technical audiences alike.

Successful candidates will effectively harmonize disparate opinions while effectively prioritizing risks to guide their partners towards secure solutions.

We are passionate problem solvers with deep security expertise. We’re working hard, having fun, and making history. Come join our team! You will partner with world-class technical leaders, security experts, developers, business teams, scientists, and data analysts across the organization, spanning a wide range of disciplines.

Key job responsibilities

• Perform expert cybersecurity red-teaming on complex proprietary foundation models testing, threat model, and pentest the services built by AGI.
• Manually generate the novel prompts, jailbreaks to bypass the existing model guardrails authored in house by AGI and AWS Bedrock.
• Write proof of concept code to demonstrate the severity of a potential security issue.
• Provide clear communication on risks to ML builders / scientists that suggest and mitigate the risk.
• Partner with ML builders / scientists to drive improvement in FM models security as a result of security review engagements.
• Provide actionable long-term risk mitigation guidance to internal and external stakeholders.
• Conduct independent vulnerability research pertaining to GenAI technologies.

A Security Engineer should foster constructive dialogue and seek resolution when confronted with discordant views. Engineers in this role are expected to participate fully in the planning of the security team's work and constantly seek opportunities for process improvement.

They should also have a deep understanding of at least one specialty for which they are a sought-out resource (both within AGI and by groups throughout Amazon), while having an understanding of the application of information security in a broad range of technical areas.

About the team

Work / Life Balance : Our team puts a high value on work-life balance. It isn’t about how many hours you spend at home or at work;

it’s about the flow you establish that brings energy to both parts of your life. We believe striking the right balance between your personal and professional life is critical to life-long happiness and fulfillment.

We offer flexibility in working hours and encourage you to find your own balance between your work and personal lives.

BASIC QUALIFICATIONSPREFERRED QUALIFICATIONS

CCSP (Certified Cloud Security Professional) or CEH (Certified Ethical Hacker) or CFR (CyberSec First Responder) or Cloud+ or CySA+ (CompTIA Cybersecurity Analyst) or GCED (GIAC Certified Enterprise Defender) or GICSP (Global Industrial Cyber Security Professional) or PenTest+

Apply now, read the job details by scrolling down Double check you have the necessary skills before sending an application.

• Experience with the architecture of GenAI models, platforms, and applications
• Knowledge of common AI / ML attack techniques such as prompt injection and ability to automate testing for these vulnerabilities
• Ability to identify vulnerabilities and threats specific to GenAI and other AI / ML systems
• Background in adversarial machine learning and emerging attacks like data poisoning, model extraction, membership inference, etc
• Experience with languages commonly used in AI / ML like Python, R, Java, C++
• Meets / exceeds Amazon’s leadership principles for this role
• Meets / exceeds Amazon’s functional / technical depth and complexity expectations for this role
• Excellent communication skills to collaborate with cross-functional teams and present complex security concepts to non-technical stakeholders.

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.

Posted : November 6, 2024 (Updated about 9 hours ago)

J-18808-Ljbffr