Security Engineer, Physical Operations Incident Response, SOC, Physical Operations Incident Response, AWS SOC
DESCRIPTION
Amazon Security is looking for a Security Engineer to join the SOC Physical Operations (PhysOps)Team! PhysOps drives physical security incident response across Amazon Security spanning a range of physical, logical, and technical domains.
At Amazon Security, we obsess over our customers and maintaining their trust. To earn that trust in an environment as vast and varied as ours, requires broad technical and industry skills to drive emergent response and tackle never-before-seen challenges at accelerated scales.
Security is our highest priority. As an Amazon Security Operations Center (SOC) team member, you will help secure that environment for our customers while working on cutting edge security products across a variety of platforms and technologies. This role requires engineers to work tactically, with both internal and external stakeholders, to solve security challenges at scale, and to think strategically to develop and implement changes that drive automation, scalability and continuous progress for the team.
Key job responsibilities
- Own and manage in-flight security issues. Triage/assess security issues and engage with internal service teams to ensure prompt mitigation and remediation of issues, escalating internally as necessary to ensure the right level of urgency and engagement.
- Communicate the state of these issues to technical and non-technical stakeholders, in varying levels and roles.
- Act as a technical escalation and quality assurance focal for the team, providing broad and deep solutions that achieve outcomes while maintain an acceptable level of risk.
- Deliver working mechanisms/solutions spanning the full incident lifecycle, working backwards from both our internal needs and those of our customers.
An ideal candidate should be able to conduct most of the following:
- Demonstrate technical proficiency in the fields of security operations, incident response, and emergent security intelligence.
- Explore building and improving our tooling to improve global operational efficiency.
- Promote security throughout the company, building good working relationships within the team and with our stakeholders and service team partners.
- Demonstrate a high proficiency for context switching which enables you to manage incidents, act as an escalation point to the team, communicate to senior leaders, and deliver projects/process improvement results.
A day in the life
In the morning you will take handover from the prior site. You will accept ownership of security issues presently in-flight. The issues could relate to a range of physical, logical, or technical products and services, so you will often need to learn on the go. You will engage various stakeholders, such as internal service teams, along with Amazon Security Leadership, Legal, and the leadership from the impacted service team. As the day progresses, new issues will be assigned to you based on your workload and you will be responsible for triaging them, determining their level of impact, and work towards resolving them at the appropriate pace. At the end of the day, you will document all the issues you are tracking so they can be taken over by the site relieving you. In addition to the day to day incident response work, you will act as an escalation point for the team, ensuring we are driving the appropriate outcomes. As capacity allows, you will work on strategic projects. You will support our 24x7x365 global response team with oncall coverage as required.
About the team
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.
Why Amazon Security?
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
Inclusive Team Culture
In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.
Training & Career Growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.
Mentorship and Career Growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.
BASIC QUALIFICATIONS
- Bachelor's degree in computer science or equivalent
- Experience applying threat modeling or other risk identification techniques or equivalent
- Ability to work any shift pattern within the 24/7/365 operation including days, nights, holidays and weekends.
PREFERRED QUALIFICATIONS
- Experience with AWS products and services
- Experience with any combination of the following: threat modeling, secure coding, identity management and authentication, software development, cryptography, system administration and network security
- Experience with programming languages such as Python, Java, C++
- 3+ years operating in an enterprise incident response or security operations team
- Experience with security incident response processes, tools, techniques and strategies
Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice (https://www.amazon.jobs/en/privacy_page) to know more about how we collect, use and transfer the personal data of our candidates.
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/content/en/how-we-hire/accommodations.