Security Engineer

Job ID: 841487 | Amazon Web Services, Inc.


AWS Managed Services is seeking a Senior Security Engineer who desires to join our global, innovative & high-energy Security team. The right candidate must thrive in high-pressure situations, think like both an attacker and defender, and help relevant teams to take the right actions in the right timeframes to mitigate risks.

The Security team is responsible for the continuous improvement of AMS Security Response program, detecting and responding to threats together with customers and driving security improvement back into the service via improved processes or more secure development practices. The AMS Security team are also responsible for working with customers on their cloud adoption and on activities that require greater security judgment. They work hands-on developing detective capabilities, identifying mitigations to vulnerabilities and respond to potential threats to Amazon systems and those of our customers. Security Engineers are unique individuals prepared to relentlessly resolve security issues by gathering and analyzing event data and conducting root-cause analysis.

This position requires a person with a security background who will show initiative by proactively identifying security flaws and vulnerabilities, quickly assessing the potential risk, driving for the right architecture decisions across many different teams to harden infrastructure, while educating the broader team.

Security Engineers are expected to develop elegant solutions to complex business problems and apply appropriate technologies while following security engineering best practices. You are also expected to mentor more junior engineers and be a security thought leader for the organization.

The successful candidate will have a mix of deep technical knowledge and a demonstrated background in information security. We value broad and deep technical knowledge, specifically in the fields of cryptography, application security, infrastructure security, security operations, security response, and security intelligence.

Responsibilities of AMS Security Engineers are spread across the following work streams ·
- Working with AMS development teams to employ Secure Development Lifecycle to the code and componentry we develop, using practices such as threat modeling.
- Working with AMS customers to migrate to AWS so that they reduce their security risk to an acceptable level, while leveraging the maximum security benefit of using AWS.

- Working with AMS Operations to deliver a secure service, while proactively detecting and responding to security risks, threats or incidents.

Amazon is an Equal Opportunity-Affirmative Action Employer – Minority / Female / Disability / Veteran / Gender Identity / Sexual Orientation / Age


- 4+ years’ equivalent information security or engineering experience.
- 4+ years working experience with Internet protocols, cloud architectures, and security design principles.
- 4+ years Industry experience working with either Windows platforms, Linux platforms or both.


- Security certifications encouraged.
- Experience working with a Secure Development Lifecycle.
- Experience triaging security alerts and executing incident response
- Experience with virtualization technologies, especially with AWS services.
- Strong sense of ownership, urgency, and drive
- Demonstrable teamwork skills and resourcefulness
- Experience in customer support, abuse management, incident handling, or forensics
- Experience in Compliance Requirements (e.g. SOX, ISO, HIPPA, FedRamp, etc.)
- Previous experience on a Security Operations team, experience coordinating responses to security incidents, or operating in a SOC environment.
- Hands on experience with 3rd party security solutions.
-Possess self-drive to keep moving things forward even in the face of ambiguity and imperfect knowledge (avoid “analysis paralysis”)

Amazon is an Equal Opportunity-Affirmative Action Employer – Minority / Female / Disability / Veteran / Gender Identity / Sexual Orientation / Age