Job ID: 2850429 | Amazon Web Services Australia Pty Ltd
AMS Security provides 24/7 threat monitoring, investigation, and response across for customer’s AWS environments. AMS enhances existing security capabilities by supporting security monitoring for all native AWS services and supports vendor agnostic detective and protective controls to provide holistic security controls for customers. This is done by leveraging data on common attack techniques to enhance detective controls and incident response, then building auto-remediation capabilities to minimize disruption to customer workloads. When a security event does happen, you will be there provide guidance.
AWS Managed Services (AMS) Security is looking for technical Security Engineers that are passionate about learning new concepts and work well within a team environment to keep customers secure. We value engineers that can work through ambiguity to identify suspicious activity, lead security response, and can explain technical security concepts to non-technical audiences.
Key job responsibilities
1. Identify, evaluate and communicate security threats, risks and vulnerabilities, and propose recommended remediation for security issues.
2. Contribute to the development of security automation and security posture improvements.
3. Track and report on the effectiveness of AWS detective controls such as Amazon GuardDuty, Amazon Macie, and other new security products.
4. Develop processes and policies to increase security response effectiveness.
5. On-call support: This role requires periodic on-call responsibilities including weekends.
A day in the life
As a Security Engineer in AWS Managed Services (AMS), your responsibilities include monitoring networks and systems for potential threats, performing triage for security alerts, documenting suspicious activity, and reporting issues so they can be adequately handled. You will work alongside our security engineers and partner teams to perform daily threat detection and incident response, using the full capability of AWS technologies and services to detect and mitigate cyber threats at a massive scale and help protect AWS Customers. You should also enjoy learning about the most up-to-date new technologies and procedures to protect information systems and data.
BASIC QUALIFICATIONS
1. Minimum of 2 years or more of demonstrated experience in a technical field with a focus in areas such as operating systems, network, and/or applications.
2. Understanding of security concepts and common security threats in host operating systems (Linux/ Windows), log analysis and investigation.
3. Knowledge of networking protocols such as HTTP, DNS and TCP/IP
4. Experience with programming languages such as Python
PREFERRED QUALIFICATIONS
1. Knowledge of common system security vulnerabilities and remediation techniques.
2. Understanding of the tools, tactics, and techniques used by threat actors during security events.
3. Familiarity/experience with AWS services and security concepts.
#J-18808-Ljbffr