Sr. Security Engineer, AWS Center for Quantum Computing

About The Position

Requirements

• 4+ years of non-internship background in troubleshooting systems issues, analyzing logs, or automating complex tasks using command line tools
• 5+ years of work in identifying security issues and risks, and developing mitigation plans
• 4+ years of (non-internship) scripting, programming, and security code review in common programming languages
• Experience (non-internship) in scripting, programming, and security code reviewing in a common programming language
• Experience (non-internship) in troubleshooting systems issues, analyzing logs, or automating complex tasks using command line tools
• Experience working in identifying security issues and risks, and developing mitigation plans
• Experience (non-internship) in industry-based security vulnerabilities identification, attack patterns, and remediation techniques
• Experience as a mentor, tech lead or leading an engineering team
• 5+ years relevant security engineering work experience, or a Bachelor’s degree in Cybersecurity, Computer Science/Engineering, Electrical Engineering, Informatics, or related academic degrees
• 5+ years of professional work experience as a security expert in one or more of these areas: security engineering, scientific research, engineering research and development
• Hands-on experience with security lifecycle activities including threat modeling, risk analysis, design review, and testing
• Strong understanding of adversary TTPs and experience with threat detection, response, and recovery

Nice To Haves

• Experience applying threat modeling or other risk identification techniques or equivalent
• Experience with security in service-oriented architectures/microservices and web services
• Interest in learning Quantum Technologies
• Effective teacher and instructor, with experience developing and delivering training to security, technical, and business professionals
• Ability to develop and deliver security awareness training programs
• Excellent written communication skills, with a focus on translating technically complex security issues into simple, easy to understand concepts for business and technical leadership
• Experience writing and publishing security standards
• Ability to manage tactical (daily) operations and participate in development of strategic program plans
• Understanding of crisis operations, risk management, and crisis communication
• Understanding of business continuity and incident command system
• Strong working knowledge of access control systems and physical security systems/components
• Experience in providing security oversight at data centers or research lab environments/equivalent

Responsibilities

• Work with internal stakeholders, academic and corporate partners to meet or exceed Amazon security bar
• Understand software lifecycle on scientific equipment and mitigate physical and logical risks
• Perform periodic reviews of software baselines and network activity
• Manage security reviews of internally used, external-facing, or third-party applications
• Create and maintain detailed inventories of sensitive hardware and software
• Audit equipment and software before commissioning in a development or production environment

Benefits

• 401k
• health_insurance
• dental_insurance
• vision_insurance
• life_insurance
• disability_insurance
• paid_holidays
• paid_volunteer_time
• tuition_reimbursement
• professional_development
• flexible_scheduling
• employee_stock_purchase_plan