Sr. Security Engineer - Detection Engineering, Consumer Logistics Security
US, CO, Virtual Location - Colorado
Amazon.com
Free shipping on millions of items. Get the best of Shopping and Entertainment with Prime. Enjoy low prices and great deals on the largest selection of everyday essentials and other products, including fashion, home, beauty, electronics, Alexa...
Job summary
Consumer Logistics Security is seeking a Senior Security Engineer to focus on Detection Engineering who will build, test, deploy, and maintain a scalable cybersecurity detection platform focused on the unique threats faced by Amazon's Worldwide Fulfillment Operations. The engineer will ensure that the company is prepared to detect and respond effectively to cybersecurity events and that the appropriate processes, procedures and communication plans are maintained and tested periodically.
Key Responsibilities:
· Build, test, deploy, and maintain a DPI platform / function in an ICS/OT environment.
· Support BAU functions, such as growth and expansion, data onboarding, platform health, and code pipeline.
· Build and maintain security telemetry bus solution for efficient and organized data onboarding.
· Support development of detections and alerts to identify potential security incidents
· Learn about the operations business functions and how systems and software enable customer fulfillment to understand the threats they face
· Analyze logging and alerting infrastructure to ensure appropriate coverage and capability
· Coordinate with with the global incident response organization to improve their capability to respond to detections developed by our team
· Clearly identify the decision-makers and various roles and functions during a security incident
· Engage with executive stakeholders to ensure that business needs and expectations are understood and met
· Confirm and test the business’s capability to detect, respond, recover and restore business operations during a security incident
· Develop and report performance metrics that demonstrate readiness, business impact and risk reduction
· Periodically evaluate existing systems and capabilities to ensure continued effectiveness
· 5+ years of industry, academic, or military security engineering experience, including previous work in detection engineering and threat hunting
· Experience developing SIEM (e.g Splunk), big data/data lake query platforms (e.g. Apache Spark), or relational database
· Experience developing security telemetry bus solutions for efficient and organized data onboarding.
· Experience influencing without authority, dealing with ambiguity, and establishing clear priority and strategy
· Experience thinking and communicating clearly and effectively during a security event
· Hands-on experience with network and endpoint security monitoring solutions (e.g. Deep Packet Inspection, IDS , EDR, etc.)
· Familiarity with operational technology, industrial control or other cyber-physical systems
· Experience in AWS and hybrid on-premise/cloud environments
· Experience using version control and a CI/CD pipeline
· Experience mentoring, developing, or training colleagues
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.
Consumer Logistics Security is seeking a Senior Security Engineer to focus on Detection Engineering who will build, test, deploy, and maintain a scalable cybersecurity detection platform focused on the unique threats faced by Amazon's Worldwide Fulfillment Operations. The engineer will ensure that the company is prepared to detect and respond effectively to cybersecurity events and that the appropriate processes, procedures and communication plans are maintained and tested periodically.
Key Responsibilities:
· Build, test, deploy, and maintain a DPI platform / function in an ICS/OT environment.
· Support BAU functions, such as growth and expansion, data onboarding, platform health, and code pipeline.
· Build and maintain security telemetry bus solution for efficient and organized data onboarding.
· Support development of detections and alerts to identify potential security incidents
· Learn about the operations business functions and how systems and software enable customer fulfillment to understand the threats they face
· Analyze logging and alerting infrastructure to ensure appropriate coverage and capability
· Coordinate with with the global incident response organization to improve their capability to respond to detections developed by our team
· Clearly identify the decision-makers and various roles and functions during a security incident
· Engage with executive stakeholders to ensure that business needs and expectations are understood and met
· Confirm and test the business’s capability to detect, respond, recover and restore business operations during a security incident
· Develop and report performance metrics that demonstrate readiness, business impact and risk reduction
· Periodically evaluate existing systems and capabilities to ensure continued effectiveness
Basic Qualifications
· 5+ years of industry, academic, or military security engineering experience, including previous work in detection engineering and threat hunting
· Experience developing SIEM (e.g Splunk), big data/data lake query platforms (e.g. Apache Spark), or relational database
· Experience developing security telemetry bus solutions for efficient and organized data onboarding.
· Experience influencing without authority, dealing with ambiguity, and establishing clear priority and strategy
· Experience thinking and communicating clearly and effectively during a security event
· Hands-on experience with network and endpoint security monitoring solutions (e.g. Deep Packet Inspection, IDS , EDR, etc.)
Preferred Qualifications
· 7+ years of total security engineering experience, including previous work in detection engineering and threat hunting in large enterprise environments· Familiarity with operational technology, industrial control or other cyber-physical systems
· Experience in AWS and hybrid on-premise/cloud environments
· Experience using version control and a CI/CD pipeline
· Experience mentoring, developing, or training colleagues
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.
Tags: AWS Big Data CI/CD Cloud EDR Endpoint security ICS IDS Incident response Industrial Monitoring SIEM Splunk Strategy
Perks/benefits: Team events
Regions:
Remote/Anywhere
North America
Country:
United States
Job stats:
16
3
0
Category:
Security Engineering Jobs
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Cyber Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Malware-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open Forensics-related jobs