Security Engineer, AWS Security Incident Response
Share
Job Location:
Monthly Salary:
Posted on:
9 hours ago
Vacancies:
1 Vacancy
Job Summary
AWS Security Incident Response is looking for technical Security Engineers that are passionate about learning new concepts and work well within a team environment to keep customers secure. We value engineers that can work through ambiguity to identify suspicious activity lead security response and can explain technical security concepts to non-technical audiences.
Key job responsibilities
- Hold or be able to attain an Australian Government Security Vetting Agency clearance (see
- Respond to threat findings that indicate unauthorized activity has occurred
- Identify and recommend solutions that improve or expand AWS SIR capabilities security automation.
- Providing security engineering solutions and support during customer-facing incidents proactively considering the prevention of similar incidents from occurring in the future.
- Working alongside and mentoring information security engineers to improve security reduce and quickly address risk.
- Identify evaluate and communicate security threats risks and vulnerabilities and propose recommended remediation for security issues.
- Track and report on the effectiveness of AWS detective controls such as Amazon GuardDuty and partner products such as CrowdStrike Falcon or Wiz Defend
- Develop processes and policies to increase security response effectiveness.
- On-call support: This role requires periodic on-call responsibilities including weekends.
A day in the life
As a Security Engineer in AWS Security Incident Response your responsibilities include monitoring networks and systems for potential threats performing triage for security alerts documenting suspicious activity and reporting issues so they can be adequately handled. You will work alongside our security engineers and partner teams to perform daily threat detection and incident response using the full capability of AWS technologies and services to detect and mitigate cyber threats at a massive scale and help protect AWS Customers. You should also enjoy learning about the most up-to-date new technologies and procedures to protect information systems and data.
About the team
AWS Security Incident Response provides 24/7 threat monitoring investigation and response across for customers AWS environments. The service enhances existing security capabilities by providing security monitoring for all native AWS services and supports vendor agnostic detective and protective controls to provide holistic security controls for customers. This is done by leveraging data on common attack techniques to enhance detective controls and incident response then building auto-remediation capabilities to minimize disruption to customer workloads. When a security event does happen you will be there provide guidance.
- 3 years of troubleshooting systems issues analyzing logs or automating basic tasks using command line tools (non-internship) experience
- 3 years of programming in Python Ruby Go Swift C or similar object oriented language experience
- 3 years of any combination of the following: threat modeling experience secure coding identity management and authentication software development cryptography system administration and network security experience
- Bachelors degree in computer science or equivalent
- Knowledge of networking protocols such as HTTP DNS and TCP/IP
- Knowledge of industry-based security vulnerabilities and remediation techniques
- Experience in security operations risk management and incident response
- Experience with AWS services or other cloud offerings
- Experience triaging security alerts front-line analysis and escalation
- GCIH (GIAC Certified Incident Handler) or GSEC (GIAC Security Essentials) or Security or CISSP CISA CISM or other security certification
- Experience with AI/ML technologies
Acknowledgement of country:
In the spirit of reconciliation Amazon acknowledges the Traditional Custodians of country throughout Australia and their connections to land sea and community. We pay our respect to their elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples today.
IDE statement:
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status disability or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process including support for the interview or onboarding process please visit for more information. If the country/region youre applying in isnt listed please contact your Recruiting Partner.
Key job responsibilities
- Hold or be able to attain an Australian Government Security Vetting Agency clearance (see
- Respond to threat findings that indicate unauthorized activity has occurred
- Identify and recommend solutions that improve or expand AWS SIR capabilities security automation.
- Providing security engineering solutions and support during customer-facing incidents proactively considering the prevention of similar incidents from occurring in the future.
- Working alongside and mentoring information security engineers to improve security reduce and quickly address risk.
- Identify evaluate and communicate security threats risks and vulnerabilities and propose recommended remediation for security issues.
- Track and report on the effectiveness of AWS detective controls such as Amazon GuardDuty and partner products such as CrowdStrike Falcon or Wiz Defend
- Develop processes and policies to increase security response effectiveness.
- On-call support: This role requires periodic on-call responsibilities including weekends.
A day in the life
As a Security Engineer in AWS Security Incident Response your responsibilities include monitoring networks and systems for potential threats performing triage for security alerts documenting suspicious activity and reporting issues so they can be adequately handled. You will work alongside our security engineers and partner teams to perform daily threat detection and incident response using the full capability of AWS technologies and services to detect and mitigate cyber threats at a massive scale and help protect AWS Customers. You should also enjoy learning about the most up-to-date new technologies and procedures to protect information systems and data.
About the team
AWS Security Incident Response provides 24/7 threat monitoring investigation and response across for customers AWS environments. The service enhances existing security capabilities by providing security monitoring for all native AWS services and supports vendor agnostic detective and protective controls to provide holistic security controls for customers. This is done by leveraging data on common attack techniques to enhance detective controls and incident response then building auto-remediation capabilities to minimize disruption to customer workloads. When a security event does happen you will be there provide guidance.
- 3 years of troubleshooting systems issues analyzing logs or automating basic tasks using command line tools (non-internship) experience
- 3 years of programming in Python Ruby Go Swift C or similar object oriented language experience
- 3 years of any combination of the following: threat modeling experience secure coding identity management and authentication software development cryptography system administration and network security experience
- Bachelors degree in computer science or equivalent
- Knowledge of networking protocols such as HTTP DNS and TCP/IP
- Knowledge of industry-based security vulnerabilities and remediation techniques
- Experience in security operations risk management and incident response
- Experience with AWS services or other cloud offerings
- Experience triaging security alerts front-line analysis and escalation
- GCIH (GIAC Certified Incident Handler) or GSEC (GIAC Security Essentials) or Security or CISSP CISA CISM or other security certification
- Experience with AI/ML technologies
Acknowledgement of country:
In the spirit of reconciliation Amazon acknowledges the Traditional Custodians of country throughout Australia and their connections to land sea and community. We pay our respect to their elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples today.
IDE statement:
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status disability or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process including support for the interview or onboarding process please visit for more information. If the country/region youre applying in isnt listed please contact your Recruiting Partner.
Required Experience:
IC
About Company
Free shipping on millions of items. Get the best of Shopping and Entertainment with Prime. Enjoy low prices and great deals on the largest selection of everyday essentials and other products, including fashion, home, beauty, electronics, Alexa Devices, sporting goods, toys, automotive ... View more
