Job Details

Security Engineer, WWPS Solutions Architecture

Job ID: 2919147 | Amazon Web Services, Inc.

This position requires that the selected candidate has U.S. citizenship.

Amazon Web Services is looking for a security focused Engineer for the Controlled Working Environment (CWE) program. We are seeking an experienced and motivated Security Engineer (SE) to expand our Security Operating Center (SOC) and maintain security compliance in this working environment. The right candidate must thrive in high-pressure situations, think like both an attacker and defender, and drive relevant teams to take the right actions in the right time frames to mitigate risks.

We are looking for an individual with a deep understanding on how to balance business and technical risk that can effect the program. The candidate should be able to identify IT risks, define a mitigation plan to remediate, and consistently drive for the right results. They must have a passion for engineering novel solutions to complex security challenges, and recognize and fill gaps in capabilities. The ability to quickly design and build internal-facing tools that enable scaled programmatic automation is a plus.

The successful candidate will have a good mix of broad technical knowledge and a demonstrated background in information security. We value broad and deep technical knowledge, specifically in the fields of Windows forensics, Cloud security, security operations, incident response, network security, and emergent security intelligence.

Responsibilities

1. Confidently and intelligently respond to security incidents, and proactively consider how to prevent the same type of incidents from occurring in the future.
2. Design and coordinate cohesive responses to security events that involve multiple teams across the organization.
3. Build security utilities and tools that enable the team to operate at high speed and wide scale.
4. Evaluate the impact of current security threats, advisories, publications, and academic research to the organization. Identify plans of action and coordinate as necessary across teams to mitigate risk.
5. Ability to communicate effectively at different levels of sensitivity, knowledge, and audiences.
6. Recognize, adopt, and instill the best practices of security engineering throughout the organization.
7. Fulfill regular on-call responsibilities.

Amazon has a fast-paced environment where we “Work Hard, Have Fun, Make History.” On a “typical” day engineers might deep dive to root cause a customer issue, investigate why a metric is trending the wrong way, consult with the top engineers at Amazon, or discuss radical new approaches to automate operational issues.

BASIC QUALIFICATIONS

1. BS degree in Computer Science, MIS, Computer Engineering, or other technical degree or 3+ year's equivalent technology experience.
2. Minimum of 3 years' experience in three or more of the following: incident response, application security, network security, security operations, or network engineering, with at least two years of experience on a Security Operations team, especially coordinating responses to security incidents.
3. Experience using industry-standard SIEMs, especially ElasticSearch.
4. Experience with security operations of Window and Linux operating system (OS) environments, (e.g. Windows system, security, application event logs).
5. Experience working with AWS security services (e.g. AWS Security hub, Amazon GuardDuty, AWS Config, etc).
6. This position requires that the candidate selected be a U.S. citizen.

PREFERRED QUALIFICATIONS

1. Security related certifications such as OSCP, CISSP, CCSP, RHCSA, CompTIA Security+ Linux+, GIAC, GCIH, GCFA, GCIA, GPEN, GNFA, GCUX, CE.
2. Effective written and oral communication with multiple levels of leadership involving both business and technical teams.
3. Experience in scripting or programming (Ruby, Python, Shell/BASH, Java, etc.) and automation of security tasks through scripting/programming.
4. Experience in compliance requirements (e.g. NIST, ISO, HIPAA, FedRAMP, etc.).
5. Extensive knowledge of internet security issues, cloud architectures, threat landscape, and experience with virtualization technologies like AWS services.

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.