Front End Engineer II, SPEAR

Amazon

Location: United States
Job Type: full-time
Salary: $129,300 - $223,600
Posted: September 24, 2025

Job Description

Description

We are open to hiring candidates to work out of one of the following locations:

Virtual Location - Washington

The Special Programs, Evaluations, Assessments & Response (SPEAR) team is seeking an experienced Front End Engineer to join our Security Engineering team. You'll be instrumental in developing sophisticated user interfaces for our security assessment platforms and automated evaluation systems that protect Amazon's global infrastructure. This position offers a unique blend of front end development and technical innovation, requiring collaboration with security professionals across Amazon's diverse facilities. This role is remotely based and requires approximately 10% travel.

Key job responsibilities
A Front End Engineer is responsible for building and supporting user workflows that enhance the customer's experience. This may include creating reusable front end components and tools, test and validate components, and iterating based on customer feedback. You’ll dive deep into stakeholder requirements and propose technical solutions to retain and improve the customer experience.

Other responsibilities include being an active reviewer of the team’s technology solutions and operations and helping new teammates understand the team’s customers, systems, and processes. You will also be responsible for thoroughly diagnosing problems in all aspects of operations.

A day in the life
The Special Projects, Evaluations, Assessments, and Response (SPEAR) team consists of dedicated security professionals with subject matter expertise in their respective fields. SPEAR specializes in identifying and providing recommendations for the challenging, unique, and out of the box security issues. SPEAR conducts deep dives of implemented physical, technical, and wireless security measures to ensure AWS’ customers’ information is safe and secure. SPEAR prides itself on delivering quality services to its stakeholders in a timely fashion to achieve a higher standard of security.

In the SPEAR Operational Support and Service (OS2) Security Engineering team, we build and manage a highly scalable, distributed systems and focus on the hard problems so stakeholders can focus on their business. We build out software, hardware, and additional tooling to help our customers accelerate their workflows.

About the team
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.
Why Amazon Security?
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores
Inclusive Team Culture
In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.
Training & Career Growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.

Basic Qualifications

- 3+ years of non-internship professional front end, web or mobile software development using JavaScript, HTML and CSS experience
- 2+ years of computer science fundamentals (object-oriented design, data structures, algorithm design, problem solving and complexity analysis) experience
- Experience using JavaScript frameworks such as angular and react
- Knowledge of professional software engineering & best practices for full software development life cycle, including coding standards, software architectures, code reviews, source control management, continuous deployments, testing, and operational excellence

Preferred Qualifications

- Experience with security visualization tools and/or dashboards
- Experience building front end interfaces for user controlled, edge hardware-based services
- Familiarity with security assessment methodologies
- Experience with responsive design and cross-browser compatibility

Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.

🎯 Who is this job for?

This role is ideal for a Middle to Senior Front End Engineer with at least 3 years of experience in JavaScript, React or Angular, and strong fundamentals in computer science. Candidates should be comfortable building scalable, reusable UI components, collaborating with security teams, and understanding full SDLC practices. Familiarity with security assessment tools, responsive design, and edge hardware interfaces is a strong plus.

💬 Potential Interview Questions

How would you design a real-time security events dashboard for high throughput streams?
Use WebSockets/SSE for live updates, buffer on the client with backpressure, and virtualize lists/graphs. Move heavy parsing/aggregation to Web Workers and render with Canvas/WebGL for thousands of points.
What steps do you take to harden a React/Angular app against XSS and data exfiltration?
Enforce a strict CSP (nonces/hashes), enable Trusted Types, sanitize any HTML, avoid dangerouslySetInnerHTML, and validate all inputs/IPC messages. Use same-site cookies or short-lived tokens and never expose secrets in client code.
How do you build reusable UI components that meet accessibility requirements for security tools?
Start with semantic elements, full keyboard support, focus management, and ARIA only when needed. Ship them via a design system with documented variants and automated a11y tests (axe/Playwright).
What’s your approach to rendering and interacting with very large tables/graphs of findings?
Apply windowing/virtual scroll, incremental rendering, and memoized selectors. Defer expensive work off the main thread and provide scalable filtering via server-side pagination or pre-indexed data.
When would you choose Redux/RTK Query vs React Query (or RxJS in Angular) for state?
Use server-state tools (React Query/RTK Query) for caching, refetching, and sync with APIs; use Redux (or signals/RxJS stores) for persistent UI/process state and cross-page workflows. Keep concerns separate to avoid overfetching and re-renders.
How do you ensure secure, reliable control UIs for edge hardware services?
Design idempotent commands with acknowledgements, retries with exponential backoff, and timeouts. Reflect device state via push updates, show definitive command status, and protect endpoints with authZ and rate limits.
How do you make the app resilient across browsers and network conditions?
Use progressive enhancement, feature detection, and responsive design. Implement offline-first fallbacks, request timeouts with cancellation, and optimistic UI with rollback on failure.
What testing strategy do you use to validate critical workflows before and after release?
Unit tests for logic, component tests with RTL, contract tests for API schemas, and E2E with Playwright including a11y checks. Record traces/videos on failure and gate deploys with CI checks and smoke tests.
How do you monitor performance and errors in production at scale?
Collect RUM for Core Web Vitals, structured errors with source maps, and distributed traces (OpenTelemetry) tied to backend requests. Set SLOs on latency/error rate and alert on budget burn or anomaly spikes.
How do you prevent sensitive information leakage in front-end logs and analytics?
Redact PII at source, whitelist fields, and validate payloads against schemas before sending. Use first-party/consent-aware analytics, encrypt transport, and routinely audit dashboards and logs for sensitive fields.

📋 Job Summary

Amazon’s SPEAR team is hiring a remote Front End Engineer II (US) to build secure, scalable UIs for security assessment platforms protecting global infrastructure. You'll work with React, Angular, JavaScript, and AWS in a high-impact environment, collaborating with security experts. The role offers \$129K–\$223K base pay plus full benefits and equity, with \~10% travel. Ideal for engineers passionate about secure UI development and operational excellence.