About the Role
AWS Managed Services (AMS) Security seeks technical Security Engineers passionate about learning new concepts and working collaboratively to ensure customer security. We value engineers who can navigate ambiguity, identify suspicious activity, lead security response, and communicate technical security concepts effectively.
Key Responsibilities
* Evaluate and communicate security threats, risks, and vulnerabilities, and propose recommended remediation for security issues.
* Contribute to the development of security automation and security posture improvements.
* Track and report on the effectiveness of AWS detective controls such as Amazon GuardDuty, Amazon Macie, and other new security products.
* Develop processes and policies to increase security response effectiveness.
* Provide on-call support: This role requires periodic on-call responsibilities including weekends.
A Day in the Life
As a Security Engineer in AWS Managed Services (AMS), you will monitor networks and systems for potential threats, perform triage for security alerts, document suspicious activity, and report issues for adequate handling. You will collaborate with our security engineers and partner teams to perform daily threat detection and incident response, utilizing the full capability of AWS technologies and services to detect and mitigate cyber threats at a massive scale and protect AWS Customers.
About the Team
AMS provides 24/7 threat monitoring, investigation, and response across customers' AWS environments. AMS enhances existing security capabilities by supporting security monitoring for all native AWS services and supports vendor-agnostic detective and protective controls to provide holistic security controls for customers. When a security event occurs, you will be there to provide guidance.
BASIC QUALIFICATIONS
* Familiarity with networking protocols such as HTTP, DNS, and TCP/IP.
* Experience applying threat modeling or other risk identification techniques or equivalent.
* Proficiency in programming languages such as Python, Java, C++.
* At least 3 years of experience in security investigations, detection engineering, and/or security incident response.
* Knowledge of adversary techniques, tactics, and common methods to identify and disrupt the attack lifecycle.
PREFERRED QUALIFICATIONS
* Experience with AWS products and services.
* Information security professional certification or Bachelor's degree.
* Excellent verbal and written skills to communicate complex technical security concepts to non-technical audiences.