Security Engineer, Global Services Security

Overview Description Do you want to work on planetary scale security solutions in the cloud? Are you skilled at performing Incident Response activities and helping customers build threat detection and incident response capabilities using highly scalable computing architectures? Are you excited to help customers automate security operations giving them unprecedented capability and agility? Do you enjoy working on fast-paced complex projects focused on game changing business outcomes for customers globally? As a member of the AWS Customer Incident Response Team (CIRT) in the AWS Global Services Security Organization you will have the opportunity to pioneer technically excellent security solutions supporting customer initiatives that are meaningful to their business. Building on those experiences you’ll collaborate with AWS service teams on new features, innovate with new technologies, and explore new challenges. As a member of AWS CIRT, you will be able to delight customers with leading edge security incident response via AWS Security Incident Response service and Zipline mechanism. Key job responsibilities Lead incident response operations Be the technical resource that earns the trust of customer stakeholders before, during, and after a security event. Contribute individually and as part of a team that include Amazonians, partners, and customers to build and deploy threat detection and incident response capabilities. Lead key elements of designing, building, and deploying solutions to automate security operations and incident response on AWS. Develop high-quality content, such as automation tools, reference architectures, and white papers to help our customers secure their workloads. Innovate on behalf of customers by translating your thoughts into action oriented results. Mentor and invest in our team, partners and customers to raise the bar for our customers. On-call required. About the team Diverse Experiences Amazon values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying. Why AWS Amazon Web Services (AWS) is the world’s most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating — that’s why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses. Work/Life Balance We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve in the cloud. Inclusive Team Culture AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do. Mentorship and Career Growth We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, mentorship and other career-advancing Qualifications Basic Qualifications 3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language experience Knowledge of networking protocols such as HTTP, DNS and TCP/IP 3+ year of experience in technical IT security or related job role 1 year of threat detection or incident response experience Hands-on technical expertise in incident response technology, security, automation, implementation, integration, and/or deployment Preferred Qualifications Hands-on technical expertise in building scripts, tools, or methodologies that enhance customers’ threat detection and incident response capabilities Experience managing a security event, including managing customer expectations and delivering results. Experience in operating security solutions, such as WAF, IPS, Anti-DDoS, or SIEM Interest and/or experience in big data storage, processing, and analytic methodologies and techniques like relational databases, NoSQL, ETL, business intelligence, Hadoop, data science, or machine learning. Knowledge of incident response workflows and processes. Our inclusive culture empowers Amazonians to deliver the best results for our customers. Fluent Mandarin Speaker Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner. #J-18808-Ljbffr