Job Description
DESCRIPTION
Come and build innovative services that protect our cloud from Internet-scale security threats!
As a Security Engineer on our team, you’ll help build and manage services that detect and automate the mitigation of cybersecurity threats across Amazon’s infrastructure, including unauthorized vulnerability scanning and exploit attempts. You’ll work with data scientists, software development engineers, and other security engineers across multiple teams to develop innovative security solutions at a massive scale. Our services protect the AWS cloud for all customers and help preserve our customers’ trust in us. You’ll get to use the full power and breadth of AWS technologies to build services that proactively protect every single AWS customer, both internally and externally, from security threats – not many teams can say that!
Our work is regularly highlighted at re:Invent, re:Inforce, and the AWS Security Blog:
Key job responsibilities
- Research, identify, and prioritize security problems that can be detected using automation
- Develop detection prototypes for these security problems to enhance detection capabilities
- Identify opportunities to prevent security issues at scale
A day in the life
You will balance emergent security needs with the strategic advances we need to make the cloud safer for everyone. You will stay aware of threat activity by digging into industry reports and querying security telemetry to find indicators and trends. You will perform exploratory data analysis and your findings will be key to building the right security detections and mitigations. You will both write code for proofs of concept while also leveraging the talents of a multidisciplinary team to deliver operationally robust automated solutions. This will lead to big security wins for Amazon and its customers.
About the team
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.
Why Amazon Security?
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including the cloud.
Inclusive Team Culture
In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.
Training & Career Growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexibility is part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.
BASIC QUALIFICATIONS
- 3+ years of experience performing security investigations, detection engineering, threat hunting, and/or incident response in the context of large organizations
- Understanding of Tactics, Techniques, and Procedures (TTPs) used by threat actors or groups
- Knowledge of host and network telemetry data (e.g., process lists, application logs, NetFlow)
- An understanding of network and web related protocols (such as, TCP/IP, UDP, IPSEC, routing protocols)
- Ability to develop code with at least one modern language, such as Python
Job Tags
Full time,