Security Enginer - Enterprise Protection, EPP-Analytics

Amazon is seeking talented Security Engineers with a background in Insider Risk detection for our growing threat detection and reduction team.

Key job responsibilities
This role will allow you to work with internal service teams, IT services teams, Risk Assessment and Security Response teams to build detections and analytics that find and reduce insider risk.

You will bring deep security knowledge and experience to builder teams to help them build better controls and audit capabilities, while developing detections and response plans that inform the right people when anomalies occur.

As a security engineer on the team you will work and lead the most complex and ambiguous projects. However you also be paying attention to the team's work as well as your own.

You will contribute to think big ideas about how we radically change how we approach this problem space, help drive feedback and prioritization models. You'll lead calibration and review exercises across teams to ensure a consistent approach to detections is being taken.

A day in the life
No two days are the same in Insider Risk teams - the nature of the work we do and constantly shifting threat landscape means sometimes you'll be working with an internal service team to find anomalous use of their data, other days you'll be working with IT teams to build improved controls. Some days you'll be busy writing detections and response plans, or mentoring or running design review meetings.

We are open to hiring candidates to work out of one of the following locations:

Toronto, ON, CAN

Basic Qualifications

- BS in Computer Science or related field, or equivalent work experience.
- 5+ years of demonstrated experience in an Information Security, Data science or Analytics role, preferably in Security Detections, Internal Threat (aka insider threat) investigations, or a relevant engineering role.

Preferred Qualifications

- Experience using and improving metrics to optimize detection effectiveness.
- Relevant industry qualifications
- Experience of Information Security in large enterprise environments.
- Deep knowledge of Insider Threat TTPs (Techniques, Tools and Procedures)
- Ability to work with a high degree of autonomy in a global environment.
- Ability to work in highly ambiguous problems.
- Effective written and verbal communication skills across a broad range of technical and non-technical audiences.

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, disability, age, or other legally protected status. If you would like to request an accommodation, please notify your Recruiter.