Senior Security Engineer, Security Incident Response Team (SIRT)
Arlington, Virginia, USA
Amazon.com
Free shipping on millions of items. Get the best of Shopping and Entertainment with Prime. Enjoy low prices and great deals on the largest selection of everyday essentials and other products, including fashion, home, beauty, electronics, Alexa...With your technical expertise, you will be solving security challenges at scale, working to protect the applications powering the most sophisticated e-commerce platform ever built. We value broad and deep technical knowledge, specifically in the fields of forensics, malware analysis, network security, application security, threat hunting, and threat intelligence.
Key job responsibilities
- Coordinates containment and eradication of major security incidents
- Leads conference calls engaging senior and executive leaders as well as service teams globally
- Gathers facts, evaluates risk, delegates activities, and defines a systematic action plan to contain and eradicate security threats as quickly and safely as possible
- Tracks parallel tasks across accountable owners, re-prioritizing as necessary based on risk
- Engineers solutions that prepare the SIRT team to respond to information security threats of the future
- Works alongside and mentors Information Security engineers
- Keeps their knowledge and skills current with the rapidly changing threat landscape
Basic Qualifications
Basic Qualifications
- BS in Computer Science, Information Security, or equivalent professional experience
- 5+ years of demonstrated experience in areas such as incident response, systems security, network security, and/or application security
- Demonstrated written and verbal communication skills with the ability to adapt messaging to executive, technical, and non-technical audiences
- Proficiency in at least one programming language (e.g., Python, Go, PowerShell, Shell scripting, Perl, Ruby, Java, C++, C)
- Technical depth in two or more specialties including: digital forensics, malware analysis, network security, application security, security intelligence, and security operations
- Understanding of security vulnerabilities, attacker exploit techniques, and their remediation methodologies
- Ability to manage multiple competing priorities with effective prioritization and task switching skills
- Ability to work with a high degree of autonomy and ambiguity
Preferred Qualifications
Preferred Qualifications- Experience in developing security alerts and response automation
- 7+ years of Information Security experience
- Experience with AWS services and security concepts
- Experience building tools using AWS services
- Relevant industry certifications from SANS, ISC2, etc
- Strong demonstrated knowledge of Unix tools and architecture
- Experience working as part of a Computer Security Incident Response Team (CSIRT)
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security Automation AWS C Computer Science CSIRT E-commerce Exploit Forensics Incident response Java Malware Network security Perl PowerShell Python Ruby SANS Scripting Threat intelligence UNIX Vulnerabilities
Perks/benefits: Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open Windows-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security assessment-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open DevSecOps-related jobs
- Open EDR-related jobs