• Security Engineer (SecEng), SecOps Parts, AWS

    Amazon (Herndon, VA)


    Description

    This position requires that the candidate selected be a US Citizen.

     

    The Platform Automation and Response Tooling for Security (PARTS) team at AWS seeks Security Engineers (SecEng) to help build and scale security incident response platforms across the world's largest cloud provider. This role offers the opportunity to work with modern technologies and Amazon's services to create security platforms that protect AWS and its customers. Our mission involves optimizing existing processes while pioneering new solutions. We maintain and improve production services, developing advanced capabilities to streamline incident response workflows. Simultaneously, we undertake long-term innovation projects, working backwards from customer needs, analyzing data, and prototyping disruptive solutions with leadership oversight.

    Key Aspects of the Role:

    Drive operational excellence through process improvement and automation for our internal security customers

    Participate in on-call rotation providing tier 3+ support for Security Operations

    Develop and enhance incident response workflows and tools

    Conduct research and data analysis to improve security operations

    Create and monitor metrics to measure project effectiveness and ROI

    The PARTS team combines Security Engineers and Software Development Engineers focused on:

    Automating and innovating security Incident Response (IR)

    Maintaining and improving production services

    Developing innovative solutions for complex customer needs

    Building scalable platforms that strengthen Amazon's security posture

    Ideal candidates should be passionate about:

    Delivering innovative security solutions that delight our customers with efficiency and productivity gains

    Solving complex problems at scale by building high-quality security software

    Contributing to customer-focused security automation

    Modern coding languages; Typescript, Python, etc.

    AWS services and offerings

    Key job responsibilities

    - You are an experienced engineer. You engage autonomously with product and system owners to help create, build and innovate security operations.

     

    - You contribute to the strategic vision for your team, partnering effectively with customers and stakeholders. You establish a roadmap and successfully deliver engineering solutions that execute that vision.

     

    - You are able to independently make short-term vs. long-term decisions. You define clear goals and objectives. You make crisp decisions about what projects move forward and in what priority order.

     

    - You proactively identify risks and bring them to the attention of your manager, customers, and stakeholders with plans for mitigation before they become roadblocks. You know when to escalate.

     

    - You communicate ideas effectively, both verbally and in writing, to all types of audiences. You are able to write narratives and strategic documentation.

     

    - You work successfully with customers, leaders, and other engineering teams.

     

    - You define metrics to measure customer experience, solution quality, and operational excellence.

     

    - Your team has customer engagement mechanisms, adheres to SLAs, and effectively manages operations.

     

    A day in the life

     

    - You review new and ongoing security mitigations to implement, analysing the proposed path forward and course correcting rapidly.

     

    - You align the short term requirements with our long term investments, consistently measuring innovation impact, and proposing out-of-the box solutions.

     

    - You identify gaps by constantly challenging the norms. Every little innovation could result in days of operational improvement for customers.

    About the team

    Our team is the escalation point for emergent security issues that require innovative solutions and automations at scale. Our team is made up of security engineers from various diverse backgrounds, including red/blue team, IR, IM, etc.

    Diverse Experiences

    Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.

     

    Why Amazon Security?

     

    At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.

    Inclusive Team Culture

    In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.

    Training & Career Growth

    We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.

    Work/Life Balance

    We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.

    Basic Qualifications

    - BS degree in Computer Science, MIS, Computer Engineering, (or) 3+ years’ equivalent technology experience

     

    - 3 + years experience building scalable incident response utilities and tools for internal use that enable your fellow Security Engineers to operate at high speed and wide scale

     

    - 3 years’ experience with focus in areas such as systems, network, and/or application security

     

    - 3 + years experience with web protocols and Linux/Unix tools and architecture

     

    - 2+ years experience building automated tools in any of these languages: C, C++, Python, Perl, and/or Ruby

    Preferred Qualifications

    - A MS degree in Computer Science, MIS, Computer Engineering, or 5+ years’ equivalent technology experience.

     

    - 3+ year of experience on a Security Operations team

     

    - 3+ years building security automation solutions

     

    - 2+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience

     

    - 3+ years with virtualization technologies, familiarity with AWS services is highly valued in particular

     

    - 2+ years building in AWS Cloud Environment and architecture.

     

    Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.

     

    Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.