Amazon Web Services is looking for a security focused Engineer for the Controlled Working Environment (CWE) program. We are seeking an experienced and motivated Security Engineer (SecEng) to expand our Security Operations Center (SOC) and maintain security compliance in this working environment. The right candidate must thrive in high-pressure situations, think like both an attacker and defender, and drive relevant teams to take the right actions in the right time frames to mitigate risks.
We are looking for an individual with a deep understanding on how to balance business and technical risk that can effect the program. The candidate should be able to identify IT risks, define a mitigation plan to remediate, and consistently drive for the right results. They must have a passion for engineering novel solutions to complex security challenges, and recognize and fill gaps in capabilities. The ability to quickly design and build internal-facing tools that enable scaled programmatic automation is a plus.
The successful candidate will have a good mix of broad technical knowledge and a demonstrated background in information security. We value broad and deep technical knowledge, specifically in the fields of Windows forensics, Cloud security, security operations, incident response, network security, and emergent security intelligence.
An ideal candidate should be able to accomplish most of the following:
* Confidently and intelligently respond to security incidents, and proactively consider how to prevent the same type of incidents from occurring in the future.
* Design and coordinate cohesive responses to security events that involve multiple teams across the organization.
* Build security utilities and tools that enable the team to operate at high speed and wide scale.
* Evaluate the impact of current security threats, advisories, publications, and academic research to the organization. Identify plans of action and coordinate as necessary across teams to mitigate risk.
* Ability to communicate effectively at different levels of sensitivity, knowledge, and audiences.
* Recognize, adopt, and instill the best practices of security engineering throughout the organization
* Fulfill regular on-call responsibilities.
This position requires that the candidate selected be a US Citizen.
BASIC QUALIFICATIONS
- 3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language experience
- 2+ years of scripting, programming, and security code review in a common programming language (non-internship) experience
- 2+ years of troubleshooting systems issues, analyzing logs, or automating basic tasks using command line tools (non-internship) experience
- Bachelor's degree in a STEM field (Science, Technology, Engineering, Mathematics), or 2+ years of IT Security experience
- Knowledge of networking protocols such as HTTP, DNS and TCP/IP
- Knowledge of industry-based security vulnerabilities and remediation techniques
- Experience in scripting, programming, and security code reviewing in a common programming language (non-internship)
- BS degree in computer science, computer engineering, or related field, or 4+ years of technical work experience
- 3+ years of any combination of the following: application security frameworks, identity and access controls, incident response, mobile security, cloud computing and security, AI security, threat intelligence, and penetration testing experience
- Experience in enterprise software
- Experience with Windows and Linux operating systems
- Experience architecting, securing, and operating Amazon Web Services
PREFERRED QUALIFICATIONS
- 2+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience
- 2+ years of scripting, programming, or security code review in a common language, such as Python, Java or C++ experience
- Knowledge of command line tools to troubleshoot protocols, analyze log outputs, or automate basic tasks
- Knowledge of networking protocols, to include HTTP(S), DNS, and TCP/IP
- Experience in scripting, programming, or security code reviewing in a common language, such as Python, Java, or C++
- CISSP, CISA, CISM or other security certification, or GCIH (GIAC Certified Incident Handler) or GSEC (GIAC Security Essentials) or Security+
- Experience in written and oral communication, including the ability to communicate with all levels in the organization (technical, business, executive)
- Experience with programming/scripting (Batch, VB, PowerShell, Java, C#, Chef, Perl, Ruby and/or PHP), or experience in web security
- Experience in compliance requirements (e.g. NIST, ISO, HIPAA, FedRAMP, etc.).
- Extensive knowledge of internet security issues, cloud architectures, threat landscape, and experience with virtualization technologies like AWS services.
The base salary range for this position is listed below. Your Amazon package will include sign-on payments and restricted stock units (RSUs). Final compensation will be determined based on factors including experience, qualifications, and location. Amazon also offers comprehensive benefits including health insurance (medical, dental, vision, prescription, Basic Life & AD&D insurance and option for Supplemental life plans, EAP, Mental Health Support, Medical Advice Line, Flexible Spending Accounts, Adoption and Surrogacy Reimbursement coverage), 401(k) matching, paid time off, and parental leave. Learn more about our benefits at https://amazon.jobs/en/benefits.
USA, VA, Arlington - 159,300.00 - 202,400.00 USD annually
USA, VA, Herndon - 159,300.00 - 202,400.00 USD annually