Security Engineer, Physical Operations Incident Response, AWS Security Operations
DESCRIPTION
Amazon Web Services is looking for a Security Engineer to join the SOC Physical Operations (PhysOps)Team! PhysOps drives physical security incident response across AWS spanning a range of physical, logical, and technical domains.
At AWS, we obsess over our customers and maintaining their trust. To earn that trust in an environment as vast and varied as ours, requires broad technical and industry skills to drive emergent response and tackle never-before-seen challenges at accelerated scales.
Security is our highest priority. As an AWS Security Operations Center (SOC) team member, you will help secure that environment for our customers while working on cutting edge security solutions across a variety of platforms and technologies. This role requires engineers to work tactically, with both internal and external stakeholders, to solve security challenges at scale, and to think strategically to develop and implement changes that drive automation, scalability and continuous progress for the team.
This role will be located in Herndon, Virginia.
Successful candidates should:
* Be able to understand technical vs. business risks and consistently drive internal teams to take the correct actions to mitigate risks in a timely manner.
* Actively seek areas of opportunity to improve Security Incident Handling Lifecycle, devising automated solutions while continuously delivering higher-quality outcomes for the security of AWS customers.
* Demonstrate a mix of both broad and deep process and/or technical knowledge.
* Be passionate and knowledgeable in the fields of process improvement, risk assessment, incident response, physical security, and security operations.
* Possess a combination of troubleshooting, technical, and communication skills, as well as the ability to handle a mix of disparate tasks which may include small-project and software development work.
* Be comfortable exemplifying the Amazonian Leadership Principle of "Deliver Results" and "Bias for Action", continuously raising the Security Bar and escalating when appropriate.
Key job responsibilities
* Manage security issues and engage with partner security teams and internal service teams to ensure timely remediation of issues, escalating as necessary to ensure appropriate levels of urgency and engagement.
* Participate in efforts to promote security throughout the Company and build good working relationships within the team and with others across Amazon.
* Demonstrate high capacity and tolerance for extreme context switching and interruptions while remaining productive and effective.
* Proactive knowledge-sharing within the team and across the company.
A day in the life
In the morning you will take handover from the prior site. You will accept ownership of security issues presently in-flight. The issues could relate to a range of physical, logical, or technical products and services, so you will often need to learn on the go. You will engage various stakeholders, such as internal service teams, along with AWS Security Leadership, Legal, and the leadership from the impacted service team. As the day progresses, new issues will be assigned to you based on your workload and you will be responsible for triaging them, determining their level of impact, and work towards resolving them at the appropriate pace. At the end of the day, you will document all the issues you are tracking so they can be taken over by the site relieving you. In addition to the day to day incident response work, you will act as an escalation point for the team, ensuring we are driving the appropriate outcomes. As capacity allows, you will work on strategic projects. You will support our 24x7x365 global response team with oncall coverage, including rotational weekends and holidays as required.
About the team
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.
Why Amazon Security?
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
Inclusive Team Culture
In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.
Training & Career Growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.
BASIC QUALIFICATIONS
- BS degree in Information Technology, Information Security, Computer Science, Computer Engineering, Electrical Engineering, or 2+ years equivalent enterprise or industry technology experience.
- 2+ years of demonstrated experience with a focus in areas such as security monitoring, incident response, supply chain security, logical security, data security.
- Expertise in designing and implementing secure, scalable, and fault-tolerant security tooling and automation solutions
PREFERRED QUALIFICATIONS
- 1+ years of experience in fields such a Security Operations, Incident Response, Physical Security, or Data Protection.
- Ability to prioritize multiple tasks and projects.
- Relevant industry certifications such as CISSP, SANS, ISC2, CompTia, etc.
- Demonstrated knowledge of threat modeling, risk assessments, data protection, alarm monitoring, and physical security.
- Demonstrated ability to work autonomously with a Bias for Action, critical and creative thinking.
- Demonstrated ability to collaborate, develop partnerships, and work effectively as a member of a global, inclusive team.
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.