Security Engineer III - AMZ9081355
About The Position
This role involves leading and architecting organization-wide security initiatives, driving technical direction and strategic decisions across multiple teams to enhance the overall security posture. The engineer will design, implement, and maintain scalable security solutions, including automated testing frameworks and continuous monitoring systems. Key responsibilities include spearheading security incident response, conducting root cause analysis, and implementing preventive measures. The role also requires partnering with development teams to integrate security controls into the software development lifecycle, researching and developing automated security detection systems, and reviewing security architecture proposals. Additionally, the engineer will provide technical mentorship, establish security best practices, and collaborate with various teams to balance security requirements with business objectives. Authoring technical documentation and representing security engineering in senior-level discussions are also crucial aspects of this position.
Requirements
- Bachelor’s degree or foreign equivalent degree in Computer Science, Cyber Security, or a related field and four years of experience in the job offered or a related occupation. Employer will accept six years of experience in the job offered or a related occupation as equivalent to the Bachelor's degree and four years of experience.
- Four years of experience in product or application security and incident response.
- Four years of programming in modern languages including Python, Java, Go, TypeScript, or equivalent.
- Four years of experience with AWS services, cloud security, and service-oriented architectures.
- Four years of working with Authentication/Authorization (SAML/OIDC) protocols and network and web protocols (TCP/IP, UDP, IPSEC, HTTP, and HTTPS).
- Four years of experience in threat modeling, secure design reviews, and penetration testing.
- Four years of experience in security detection engineering, threat hunting, and incident response.
- Four years of experience in implementing proactive security practices.
- Four years of experience in developing and implementing security detections in cloud environments.
Responsibilities
- Lead and architect organization-wide security initiatives, driving technical direction and strategic decisions across multiple teams to enhance the overall security posture.
- Design, implement, and maintain scalable security solutions, including automated testing frameworks and continuous monitoring systems using Python, Go, or other relevant languages.
- Spearhead security incident response efforts, conducting root cause analysis and implementing preventive measures for complex security events.
- Partner with development teams to integrate security controls into the software development lifecycle and ensure secure coding practices.
- Research, develop, and implement automated security detection systems and prototypes to address emerging threats and enhance preventative capabilities.
- Review and approve security architecture proposals, technical implementation plans, and lead security assessments for critical systems and applications.
- Provide technical mentorship to junior engineers, establish security best practices, and drive their adoption across engineering organizations.
- Collaborate with Product, Operations, and Development teams to develop pragmatic solutions that balance security requirements with business objectives.
- Author and maintain technical documentation for security systems, controls, and architectural decisions.
- Represent security engineering in senior-level technical discussions and influence product roadmaps through security expertise.
Benefits
- equity
- sign-on payments
- other forms of compensation
- medical benefits
- financial benefits
- other benefits
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
