The Amazon Web Services (AWS) Security Analytics team is looking for a high-speed Security Engineer who has a strong passion for security-at-scale. You will be part of a small team focused on active defense, which detects and mitigates security incidents without a human in the loop.
You will directly improve security for the largest cloud on earth.
You will work with data scientists and engineers to design, test, and implement detection and mitigation controls for Amazon. You'll function as a data analyst, extracting knowledge from raw data, and answering functional questions about the 'texture' of the data as well. You will work with existing threat intelligence and incident response teams to identify and codify attacker and analysis methodology into automated analyses.
You will have access to amazing amounts of security-relevant data sources, as well as virtually unlimited resources to process that data. While experience with AWS is nice, its more important to have a good handle on security detection and response controls, and ability to code.
You will not be directly responsible for incident response, but will directly support those teams with your expertise, analysis, and analytic tools. You will balance long-term strategic thinking with immediate tactical needs, and be able to drive towards a long-term goal with short-term efforts.
If you like searching for needles in haystacks of needles, think sigmoid functions are neat, and can fend off hordes of rampaging datasets with your coding-fu, we'd love to hear from you.
The preferred location for this position is Baltimore, MD, but it can also be located in Herndon, VA or Arlington, VA (HQ2).
BS degree in Computer Science or related field, or 5+ years of equivalent work experience
3 + years of professional software development experience
1 + years multiple programming languages developing scalable and maintainable applications or services
Understanding of security engineering, system and network security, authentication and security protocols, cryptography, or application security
Understanding of the Mitre [email protected] framework and its application
Knowledge of hardware and software common in large organizations (operating systems, office and productivity applications, laptops/servers, routers/switches, etc)
Knowledge of standard network protocols and multiple levels (TCP/IP, HTTP(S), etc)
Knowledge of various host and network telemetry data (e.g. process lists, application logs, netflow records) and how to relate them to each other
Ability to handle multiple competing priorities in a fast-paced environment
Strong sense of ownership, urgency, and drive
Experience building distributed web-based applications or services at massive scale
Knowledge of Linux/Unix tools and architecture
Hands on experience with "Big Data" tools such as Hadoop
Extensive knowledge of internet security issues and threat landscape
Experience with AWS or other cloud computing platforms
Experience with (Jupyter) Notebooks
Meets/exceeds Amazon's leadership principles requirements for this role
Meets/exceeds Amazon's functional/technical depth and complexity for this role
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit