Security Engineer, EPP Analytics
The Amazon Security Enterprise Protection team builds tools and services for the monitoring and response to malicious activity on the Amazon internal network. We collect, process, and analyze data from all parts of Amazon's worldwide infrastructure to identify and reduce risks to Amazon.
We are looking for a Security Engineer who is excited about designing and building secure solutions to solve challenging problems for mission critical systems that protect Amazon and our customer data. In Amazon Security, our challenges are broad and deep -- we build flexible, secure, scalable, high-performance and robust tools and services.As a Security Engineer, you will collaborate to ensure we keep our customers safe while developing these novel tools and services. In a given day, you might be inspecting an application’s code for security issues, fine-tuning the design for a new tool alongside its developers, or designing and developing a new tool or service.
The ideal candidate combines technical acumen with an ability to lead by influence and communicate clearly. They should be comfortable with a high degree of ambiguity and relish the idea of solving problems that haven't been solved at scale before.In their communication, they will clearly articulate risks to technical and non-technical audiences alike. Interpersonally, successful candidates will effectively harmonize disparate opinions while effectively prioritizing risks to guide their partners towards secure solutions.
Our organization prizes its employees, and we show it through investing in work-life harmony. We have dedicated resources that consistently innovate in reducing on-call time and ensuring the team spend their time on the highest-value tasks. Join the Amazon Security organization to work hard, have fun, and make history!
Key job responsibilities
This role will allow you to work with internal service teams, IT services teams, Risk Assessment and Security Response teams to build detections and analytics that find and reduce insider risk.
You will bring deep security knowledge and experience to builder teams to help them build better controls and audit capabilities, while developing detections and response plans that inform the right people when anomalies occur.
As a security engineer on the team you will work and lead the most complex and ambiguous projects. However you also be paying attention to the team's work as well as your own.
You will contribute to think big ideas about how we radically change how we approach this problem space, help drive feedback and prioritization models. You'll lead calibration and review exercises across teams to ensure a consistent approach to detections is being taken.
A day in the life
No two days are the same in Insider Risk teams - the nature of the work we do and constantly shifting threat landscape means sometimes you'll be working with an internal service team to find anomalous use of their data, other days you'll be working with IT teams to build improved controls.Some days you'll be busy writing detections and response plans, or mentoring or running design review meetings.
About the team
About AmSec:
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.
Why Amazon Security
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.
Inclusive Team Culture
In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.
Training and Career growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.- Bachelor's degree in computer science or equivalent- 3+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience
- Common knowledge and understanding of security engineering, system and network security, authentication and security protocols, cryptography, or application security. Experience reading and writing in at least one programming language.- 3+ years of experience with at least two of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, penetration testing, cloud security, mobile security, and network security You demonstrate excellent judgement in assessing and prioritizing technical risk, have a strong application security background with a focus on scalable solutions, have experience building and securing complex AWS architecture You have excellent written and verbal communication skills, work to identify and remove bottlenecks for your teammates, both in process and technology.
If you would like to request an accommodation, please notify your Recruiter.