Senior AWS Security Engineer

United States

Applications have closed

Business Wire

Explore Business Wire for premium press release & newswire distribution services, offering global reach and tailored solutions for businesses worldwide. Expand your reach today.

View company page

Business Wire, a Berkshire Hathaway company, is the global market leader in press release distribution and regulatory disclosure. We are on a mission to redefine how organizations connect with their audiences - and that’s just the beginning!
Organizations, large and small, depend on us to accurately publicize market-moving news and multimedia, and generate social engagements that develop interactions with their target audiences.
About the RoleAs Senior AWS Security Engineer, you will be a leading member of the security operations and analyst staff for Business Wire, inspiring fellow security analysts and IT colleagues to improve Business Wire’s security posture by demonstrating a passion for cybersecurity, an aptitude for discovering and remediating security threats, and a hands-on, roll-up-your-sleeves approach.  You will be an integral part of Business Wire’s cybersecurity transformation – working to build robust and repeatable monitoring and orchestration solutions and processes to secure Business Wire’s cloud (AWS) infrastructure while supporting traditional security solutions through our transition from datacenter to cloud.
You will work closely with technology teams and other members of the IT Security team to actively prioritize day-to-day operational activities, identify, and remediate threats, and address ongoing threats and/or incidents in a shared responsibility model.  The successful candidate will demonstrate a bias toward action and a willingness to dive deep into potential issues as they arise. Responsibilities include operational aspects of monitoring and remediating security events/threats in Business Wire’s cloud (AWS) and on-premise environments, creating and cultivating practical security operations practices, and mentoring security colleagues as it relates to analyst best practices and developing practical security expertise.

What You'll Do

  • Perform day-to-day monitoring and support of security infrastructure, tools, and systems, including but not limited to threat detection, IDS/IPS, SIEM, Anti-Malware, DLP, and other monitoring tools.
  • Develop an application security framework that provides the next-generation protections required to defend Business Wire and its clients from current and emerging threats.
  • Design security solutions for multiple application platforms and frameworks.
  • Conduct security assessments for web, vendor, and partner applications.
  • Lead efforts to enhance continuous monitoring capabilities in cloud and datacenter environments.
  • Review security metrics and telemetry to identify risks, security threats, or configuration errors.
  • Act as mentor and escalation point for junior security analysts providing next-level support on security issues and guidelines for developers, desktop-support specialists, and system administrators.
  • Quickly respond to security issues and other IT incidents. Assist with security incident response and forensic investigations as necessary.
  • Provide scheduled “on-call” support as part of an “on-call” rotation schedule.
  • Other tasks as assigned.

What You'll Need

  • Bachelor’s degree in Computer Science, Information Systems, Computer Engineering, Cybersecurity, Systems Analysis, or a related field or equivalent work experience.
  • At least 4 years of hands-on AWS security experience.
  • Infrastructure as code (IaC) - CloudFormation, Terraform, Git.
  • Container technologies - ECS, EKS, Fargate, Docker.
  • Industry-recognized professional certification(s) such as CISSP, AWS Security Specialty, etc.
  • Ability to work on highly complex projects that require in-depth knowledge within multiple IT architecture and security domains.
  • Strong knowledge of a wide variety of information security architectures, concepts, and techniques, as well as supporting security tools.
  • Ability to communicate effectively in high-pressure situations.
  • Knowledge of malware analysis tactics and techniques.
  • Experience reviewing and analyzing network packet captures.
  • Experience performing security/vulnerability reviews of network, server, and endpoint environments.
  • Understanding of attack surface reviews and multi-layer defense systems to prevent exploits, detect and intercept attacks, and discover threat agents.
  • Experience with web application testing tools for DAST, SAST, and IAST analysis.
  • At this time, Business Wire will not sponsor a new applicant for employment authorization for this position.
    What We OfferThe base salary range for this position is $150K to $180K/year.  Offered salary will be determined by several factors, including but not limited to: applicant’s education, experience, knowledge, skills and abilities, as well as internal equity and alignment with geographic market data.  Business Wire reserves the right to modify this salary range at any time. Business Wire’s total rewards include:
  • Ability to work remotely 100%
  • Excellent health benefits that begin on your first day of employment
  • $100 monthly fitness allotment, a tuition reimbursement program, and enhanced mental health resources
  • 401(k) plan with generous company match, and annual profit sharing contribution (subject to company performance)
  • PTO, Floating Holidays, Wellness Day Off, Birthday Day Off, and more!
Business Wire is proud to be an equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. Pursuant to the San Francisco Fair Chance Ordinance and other similar state laws and local ordinances, and its internal policy, Business Wire will also consider for employment qualified applicants with arrest and conviction records.

Tags: Application security AWS CISSP Cloud Computer Science DAST Docker Exploits IAST IDS Incident response IPS Malware Monitoring SAST Security assessment SIEM Terraform Threat detection Web application testing

Perks/benefits: 401(k) matching Equity Fitness / gym Flex vacation Health care Team events Wellness

Region: North America
Country: United States
Job stats:  9  0  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.