Security Engineer, AWS CIRT

We are looking for an experienced security engineer with an ability to scale security and make the right trade‑off decisions that enable us to offer secure, innovative solutions to customers.

Key Responsibilities

• Perform and oversee incident response operations
• Become a deep technical resource that earns the trust of customer stakeholders before, during, and after a security event
• Independently contribute to teams that include Amazonians, partners, and customers to build and deploy threat detection and incident response capabilities
• Design, build, and deploy solutions to automate security operations and incident response on AWS
• Independently contribute to internal builder projects to develop new consulting engagement models and capabilities for customers
• Develop high‑quality content, such as automation tools, reference architectures, and white papers to help our consultants, partners, and customers build on the work that we deliver
• Innovate on behalf of customers by translating your thoughts into actionable results
• Mentor and invest in our consultants, partners, and customers to raise the bar for customers
• On‑call required

Basic Qualifications

• 3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or a similar object‑oriented language
• 2+ years of scripting, programming, and security code review in a common programming language (non‑internship)
• 2+ years of troubleshooting systems issues, analyzing logs, or automating basic tasks using command line tools (non‑internship)
• Bachelor's degree in computer science or equivalent
• Knowledge of networking protocols such as HTTP, DNS, and TCP/IP
• Knowledge of industry‑based security vulnerabilities and remediation techniques
• Experience performing incident response activities
• 1+ year of experience building/operating on the AWS platform
• 3+ years of experience in technical IT security or related job role
• 2+ years of threat detection or incident response experience
• Hands‑on technical experience in incident response technology, security, automation, implementation, integration, and/or deployment

Preferred Qualifications

• 2+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience
• Knowledge of command line tools to troubleshoot protocols, analyze log outputs, or automate basic tasks
• Knowledge of networking protocols such as HTTP(S), DNS, and TCP/IP
• Experience with AWS products and services
• Experience in scripting, programming, or security code reviewing in a common language (Python, Java, or C++)
• Hands‑on technical experience building scripts, tools, or methodologies that enhance customers’ threat detection and incident response capabilities
• Strong scripting skills in modern scripting languages such as PowerShell, Python, Node.js, Javascript, Bash, Ruby, or SQL
• Experience communicating complex technical matters clearly and concisely orally and in writing
• Experience managing customers during a security event, including managing customer expectations and delivering results
• Detailed knowledge of incident response workflows and processes

Amazon est un employeur engagé pour l'égalité des chances. Nous sommes convaincus qu'une main d'oeuvre diversifiée est essentielle à notre réussite. Nous prenons nos décisions de recrutement en fonction de votre expérience et de vos compétences. Nous apprécions votre envie de découvrir, d'inventer, de simplifier et de construire. La protection de votre vie privée et la sécurité de vos données sont une priorité absolue chez Amazon. Veuillez consulter notre Politique de Confidentialité pour en savoir plus sur la façon dont nous collectons, utilisons et traitons les données personnelles de nos candidats.