Sr. Security Engineer - Detection Engineering, Consumer Logistics Security

Job summary
Consumer Logistics Security is seeking a Senior Security Engineer to focus on Detection Engineering who will build, test, deploy, and maintain a scalable cybersecurity detection platform focused on the unique threats faced by Amazon's Worldwide Fulfillment Operations. The engineer will ensure that the company is prepared to detect and respond effectively to cybersecurity events and that the appropriate processes, procedures and communication plans are maintained and tested periodically.

Key Responsibilities:
· Build, test, deploy, and maintain a DPI platform / function in an ICS/OT environment.
· Support BAU functions, such as growth and expansion, data onboarding, platform health, and code pipeline.
· Build and maintain security telemetry bus solution for efficient and organized data onboarding.
· Support development of detections and alerts to identify potential security incidents
· Learn about the operations business functions and how systems and software enable customer fulfillment to understand the threats they face
· Analyze logging and alerting infrastructure to ensure appropriate coverage and capability
· Coordinate with with the global incident response organization to improve their capability to respond to detections developed by our team
· Clearly identify the decision-makers and various roles and functions during a security incident
· Engage with executive stakeholders to ensure that business needs and expectations are understood and met
· Confirm and test the business’s capability to detect, respond, recover and restore business operations during a security incident
· Develop and report performance metrics that demonstrate readiness, business impact and risk reduction
· Periodically evaluate existing systems and capabilities to ensure continued effectiveness

Basic Qualifications

· 5+ years of industry, academic, or military security engineering experience, including previous work in detection engineering and threat hunting
· Experience developing SIEM (e.g Splunk), big data/data lake query platforms (e.g. Apache Spark), or relational database
· Experience developing security telemetry bus solutions for efficient and organized data onboarding.
· Experience influencing without authority, dealing with ambiguity, and establishing clear priority and strategy
· Experience thinking and communicating clearly and effectively during a security event
· Hands-on experience with network and endpoint security monitoring solutions (e.g. Deep Packet Inspection, IDS , EDR, etc.)

Preferred Qualifications

· 7+ years of total security engineering experience, including previous work in detection engineering and threat hunting in large enterprise environments
· Familiarity with operational technology, industrial control or other cyber-physical systems
· Experience in AWS and hybrid on-premise/cloud environments
· Experience using version control and a CI/CD pipeline
· Experience mentoring, developing, or training colleagues




Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.