Security Engineer III - AMZ11027.12

About The Position

Requirements

• A master’s degree or foreign equivalent in Computer Science, Telecommunication System Management, or equivalent, or related discipline and three (3) years of experience in the job offered or related occupation.
• In the alternative, a bachelor’s degree or foreign equivalent in Computer Science, Telecommunication System Management, or equivalent, or related discipline followed by five (5) years of experience in the job offered or related occupation.
• Three (3) years of related work experience involving each of the following:
• Experience in security engineering and network technologies (PCAP, Netflow), Operating Systems and network security, common attack patterns and exploitation techniques.
• Experience with Security Operations, Incident Response, Threat Hunting and Assurance methodologies.
• Experience with common attack patterns and exploitation techniques.
• Practical knowledge of system security analysis techniques such as threat modeling, attack graphs.
• Expertise in writing run-books, and complexity analysis, execute vulnerability scans and reviews vulnerability assessment reports.

Responsibilities

• Analyze network and host activity on incident response situations, leveraging best practices tools and creation of custom tool sets and scripts.
• Coordinate critical and sensitive incident response engagements spanning multiple geographies.
• Conduct briefings on the outcome of threat hunting and incident response operations to a broad spectrum of audiences, ranging from technical teams to executive management.
• Conduct Threat Hunting operations, and assess the risk on findings, using known adversary TTPs (Tactics, Techniques and Procedures).
• Coordinate critical and sensitive cyber threat hunting engagements spanning multiple geographies.
• Work with partner organizations within Amazon to help integrate security at all levels of their projects.
• Conduct Incident response and Forensics analysis on AWS resources, including but not limited to EC2 instances, given a "known-good" baseline.
• Be involved in hands-on security assessments, where one will develop and provide guidance, and advocate security engineering best practices.
• Analyze the security of applications and services following Amazon’s security processes and policies, and provide guidance on technologies, discovering and addressing security issues and quickly reacting new threat scenarios.
• Participate in and perform security audits, risk analysis, vulnerability testing and security reviews across all elements of projects and software systems.
• Detect anomalies in large unstructured data sets, synthesize data and reports from different sources, make logical inferences about such data and publish results.
• Design and develop tools and scripts to aid in data processing or other aspects of a security investigation.
• Provide security architecture and solve security challenges at scale and work to help create solutions while developing strong security culture and practices.
• Evaluate and recommend new and emerging security products and technologies.
• Working alongside and mentoring Information Security engineers to improve security, reduce and quickly address risk.

Benefits

• A sign-on bonus and restricted stock units may be provided as part of the compensation package, in addition to a full range of medical, financial, and/or other benefits, dependent on the position offered.