Jobs · Engineering · Virginia

Security Engineer II, Security Incident Response Team (SIRT)

Amazon · Arlington, VA · 3 days ago
EngineeringFull-time

About the role

Amazon is seeking qualified Security Engineers to join our Information Security team. The SIRT Security Engineers respond to security events, conduct analysis of threats, and provide security services to safeguard highly sensitive data.

Responsibilities

  • Responding to security incidents, and coordinating a cohesive response involving multiple teams across Amazon.
  • Providing security engineering solutions and support during customer-facing incidents, proactively considering the prevention of similar incidents from occurring in the future.
  • Aiding in the development of pragmatic solutions that achieve business requirements while maintaining an acceptable level of risk.
  • Evaluating the impact of current security trends, advisories, publications, and academic research to Amazon, coordinating response as necessary across affected teams.
  • Keeping your knowledge and skills current with the rapidly changing threat landscape.
  • Participating in a follow-the-sun on-call rotation.

Requirements

  • 2+ years of scripting, programming, and security code review in a common programming language (non-internship)
  • 2+ years of troubleshooting systems issues, analyzing logs, or automating basic tasks using command line tools (non-internship)
  • Bachelor's degree in a STEM field (Science, Technology, Engineering, Mathematics), or 2+ years of IT Security experience
  • Knowledge of industry-based security vulnerabilities and remediation techniques
  • Experience in troubleshooting systems issues, analyzing logs, or automating basic tasks using command line tools (non-internship experience)

Preferred Qualifications

  • 2+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience
  • Knowledge of networking protocols, to include HTTP(S), DNS, and TCP/IP
  • Experience with AWS products and services
  • Experience performing security activities across one or more phases of the software development lifecycle (SDLC), such as security design review, threat modeling, secure code review, and security testing

Qualifications

  • Basic Qualifications: 2+ years of scripting, programming, and security code review in a common programming language (non-internship); 2+ years of troubleshooting systems issues, analyzing logs, or automating basic tasks using command line tools (non-internship); Bachelor's degree in a STEM field, or 2+ years of IT Security experience; Knowledge of industry-based security vulnerabilities and remediation techniques; Experience in troubleshooting systems issues, analyzing logs, or automating basic tasks using command line tools (non-internship experience).
  • Preferred Qualifications: 2+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience; Knowledge of networking protocols, to include HTTP(S), DNS, and TCP/IP; Experience with AWS products and services; Experience performing security activities across one or more phases of the software development lifecycle (SDLC), such as security design review, threat modeling, secure code review, and security testing.

Pay

The base salary range for this position is $159,300.00 - $202,400.00 USD annually.

Schedule

Follow-the-sun on-call rotation.

Similar jobs