Security Intelligence Engineer, Amazon Cyber Threat Intelligence
Amazon · Herndon, VA · 5 days ago
Quality AssuranceFull-time
About the role
The Amazon Customer Ecosystems (ACES) team, part of Amazon Cyber Threat Intelligence (ACTI), develops actionable intelligence on advanced cyber threats to Amazon ecosystems such as AWS, Ads and LEO their customers. We obtain indicators and other intelligence from a variety of internal and external sources and use that information to understand sophisticated actors and their tools, techniques, and procedures (TTPs).
Responsibilities
- Analyze both attributed and unattributed actor TTPs to generate intelligence and insights into current threats.
- Create security techniques and automation for internal use that enable you to operate at high speed and broad scale.
- Contribute to Amazon's understanding of the current threat landscape and the techniques, tactics, and procedures associated with specific threats.
- Draft and publish finished written threat intelligence products based on findings.
- Periodic on-call responsibilities.
Requirements
- 3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language experience
- 2+ years of troubleshooting systems issues, analyzing logs, or automating basic tasks using command line tools (non-internship) experience
- Bachelor's degree in computer science or equivalent
- 3 years experience with tracking high-sophistication cyber threat groups
Preferred Qualifications
- 2+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience
- Knowledge of command line tools to troubleshoot protocols, analyze log outputs, or automate basic tasks
- Knowledge of networking protocols such as HTTP(S), DNS, and TCP/IP
- Experience with AWS products and services
- Experience performing security activities across one or more phases of the software development lifecycle (SDLC), such as security design review, threat modeling, secure code review, and security testing
- Experience with malware analysis, network flow analysis, and large scale data analysis. Experience with modern threat intelligence platforms (TIPs).
Qualifications
- US Citizen
Pay
Base salary range for this position is listed below. Final compensation will be determined based on factors including experience, qualifications, and location.
- USA, MD, Annapolis Junction - 159,300.00 - 202,400.00 USD annually
- USA, NY, New York - 159,300.00 - 212,800.00 USD annually
- USA, TX, Austin - 159,300.00 - 202,400.00 USD annually
- USA, VA, Arlington - 159,300.00 - 202,400.00 USD annually
- USA, VA, Herndon - 159,300.00 - 202,400.00 USD annually
- USA, WA, Seattle - 159,300.00 - 202,400.00 USD annually