Jobs · Consulting · Virginia

Sr. Security Intelligence Engineer , Threat Intelligence for Global Enterprise Response

Amazon · Arlington, VA · 1 wk ago
ConsultingFull-time

About the role

The Threat Intelligence for Global Enterprise Response (TIGER) team, part of Amazon Cyber Threat Intelligence (ACTI), is responsible for developing actionable intelligence on advanced cyber threats to Amazon employees and company assets. We obtain indicators and other intelligence from a variety of internal and external sources and use that information to develop an understanding of sophisticated actors and their tools, techniques, and procedures (TTPs). Our intelligence supports incident response teams, red teams, detections teams and teams working to prevent financial loss to the company. We leverage that understanding to proactively identify and mitigate malicious activity.

Key job responsibilities

  • Draft and publish finished written threat intelligence products based on findings.
  • Analyze large and unstructured data sets to discover new threats, uncover trends, and identify anomalies indicative of malicious activities.
  • Perform deep dive analysis of malicious artifacts.
  • Create security techniques and automation for internal use that enable you and others to operate at high speed and broad scale.
  • Contribute to Amazon's understanding of the current threat landscape and the techniques, tactics, and procedures associated with specific threats.
  • Periodic on-call responsibilities.

About the team

In Amazon Security, we're dedicated to creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.

Basic Qualifications

  • Bachelor's degree in Computer Science or a related field
  • 5+ years of any combination of the following: application security frameworks, identity and access controls, incident response, mobile security, cloud computing and security, AI security, threat intelligence, and penetration testing experience
  • Experience that includes strong analytical skills, attention to detail, and effective communication abilities
  • Experience with SQL and Python scripting
  • Extensive experience tracking sophisticated cyber threat groups (5+ years)

Preferred Qualifications

  • Master's degree in Computer Science or a related field
  • Strong understanding of Windows, Linux, and or OS X internals
  • Experience with malware analysis, network flow analysis, and large scale data analysis.
  • Experience with modern threat intelligence platforms (TIPs), especially the Vertex Project's Synapse, and their APIs
  • Experience building and conducting analysis leveraging AWS services. Experience building automated tools in the Python programming language.

Similar jobs