BS degree in Information Technology, Information Security, Computer Science, Computer Engineering, Electrical Engineering, or 2+ years equivalent technology experience.
Job summary
The AWS Cloud Response Team manages the security and availability of AWS Cloud services. We operate on the 'AWS' side of the Shared Responsibility Model to ensure "Security of the Cloud" and to protect our customers. This role requires Security Analysts to work with internal stakeholders to solve security challenges at massive scale, and to think strategically to develop and implement changes to drive automation, scalability, and continuous improvements across the organization.
We're looking for talented IT and/or project management-savvy professionals with a passion for security who thrive in high pressure environments to help us continue to raise the security bar for cloud computing.
- be able to understand technical vs. business risks and consistently drive internal engineering teams to take the correct actions to mitigate risks in a timely manner.
- actively seek areas of opportunity to improve the Security Incident Handling Lifecycle, saving time/effort while continuously delivering higher-quality outcomes for the security of AWS customers.
- demonstrate a mix of both broad and deep process and/or technical knowledge.
- be passionate and knowledgeable in the fields of process improvement, risk assessment, network and operating system security, software security, and security operations.
- possess a combination of troubleshooting, technical, and communication skills, as well as the ability to handle a mix of disparate tasks which may include small-project and software development work.
- be comfortable exemplifying the Amazonian Leadership Principle of "Deliver Results" and "Bias for Action", challenging decisions and escalating when appropriate.
This role will provide career growth opportunities as you gain new security skills in the course of your duties.
Key job responsibilities
- Manage security issues and engage with partner security teams and internal service teams to ensure timely remediation of issues, escalating as necessary to ensure appropriate levels of urgency and engagement.
- Participate in efforts to promote security throughout the Company and build good working relationships within the team and with others across Amazon.
- Demonstrate high capacity and tolerance for extreme context switching and interruptions while remaining productive and effective.
- Proactive knowledge-sharing within the team and across the company.
About the team
Our team is dedicated to supporting new members. We have a broad mix of experience levels and tenures, and we're building an environment that celebrates knowledge sharing and mentorship. We care about your career growth and strive to assign projects based on what will help each team member develop into a better-rounded security champion and enable them to take on more complex and higher-risk tasks in the future.
Our team also puts a high value on work-life harmony. Striking a healthy balance between your personal and professional life is crucial to your happiness and success here, which is why we aren't focused on how many hours you spend at work or online. Instead, we're happy to offer a flexible schedule so you can have a more productive and well-balanced life—both in and outside of work. Our global on-call rotation ensures issues are handled 24x7 without the need to interrupt typical sleep schedules.
Here at AWS, we embrace our differences. We are committed to furthering our culture of inclusion. We have ten employee-led affinity groups, reaching 40,000 employees in over 190 chapters globally. We have innovative benefit offerings, and we host annual and ongoing learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences. Amazon's culture of inclusion is reinforced within our Leadership Principles, which remind team members to seek diverse perspectives, Learn and Be Curious, and Earn Trust.
- 2+ years of experience in fields such a Security Operations, technology audit, or security vulnerability lifecycle.
- Design and coordinate cohesive responses to security events that involve multiple teams across an organization.
- Confidently and intelligently respond to security incidents, and programmatically prevent the same type of incidents from occurring in the future.
- Ability to prioritize multiple tasks and projects.
- Have a passion to learn and thrive in a dynamic and constantly changing environment.
- Experience with virtualization technologies, especially with AWS services.
- Relevant industry certifications such as CISSP, SANS, ISC2, CompTia, etc.
- Maturity, judgment, negotiation/influence skills, analytical skills, and leadership skills.
- Demonstrated knowledge of web protocols, common attacks, and working knowledge of Linux/Unix tools and architecture.
- Understanding of best pra