DESCRIPTION
Amazon Web Services (AWS) is the leading cloud provider, providing virtualized infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises, run their operations and applications on AWS' multi-tenant infrastructure.
Key job responsibilities
As a Senior Security Engineer, you'll help to build and manage services that detect and automate the mitigation of cybersecurity threats across Amazon's infrastructure. You'll work with data scientists, software development engineers, and other security engineers across multiple teams to develop innovative security solutions. Our services protect the AWS cloud for all customers and preserves our customers' trust in us. You'll get to use the full power and breadth of AWS technologies to build services that proactively protect AWS customers, both internally and externally, from security threats.
You will be working in a team of industry-leading security experts working with UK customers to operate and continuously improve industry-leading security programs and processes. This team manages the underlying security programs and processes for personnel security, physical and logical accreditations, education, awareness and training, assurance, and cyber security. This position will have visibility at senior levels of government agencies, commercial institutions, and AWS including interaction with CISOs, CTOs, their staffs, and AWS senior leadership.
In addition to a strong understanding of security technologies, tool development, offensive and defensive security tactics, and ideally some experience with distributed systems, you'll need a number of other qualities to be successful in this role. The team has a mix of experience levels, and we're building an environment that celebrates knowledge sharing and mentorship. Our senior engineers, data scientists, and managers truly enjoy mentoring junior engineers, data scientists, and engineers from non-traditional backgrounds through one-on-one mentoring and thorough, but kind, code reviews.
BASIC QUALIFICATIONS
• Extensive experience performing security investigations, penetration testing, and/or incident response in the context of large organisations.
• In-depth understanding of security threats, hands-on experience detecting and defending from cyber attacks, and experience using big data analytics and orchestration to address security challenges. Ability to develop code with at least one modern language such as Java, Go, TypeScript, Python, Rust and security code review.
• Demonstrated technical leadership in security (e.g., tech lead, developed security architecture for a product or system, led technical component of security project, etc.). Experience leading and coaching junior security engineers to improve their skills and effectiveness.
PREFERRED QUALIFICATIONS
• BS or MS in a STEM related field. Understanding of the Mitre ATT&CK framework and knowledge of host and network telemetry data (e.g., process lists, application logs, NetFlow).
• Have awareness and understanding of current cyber security threats, actors and their techniques. Experience with data science, big data analytics technology stack, analytic development for endpoint and network security, and streaming technologies (e.g., Kafka, Spark Streaming, and Kinesis).
• Strong sense of ownership combined with collaborative approach to overcoming challenges and influencing organisational change.
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.
#J-18808-Ljbffr