Job Description

DESCRIPTION

The Team: How often have you had an opportunity to lead a global 24x7 security incident response team that is obsessed with protecting customer trust by solving an important business problem through technology innovations? Would you like to know more about how modern technologies like computer vision and machine learning can be used to solve these problems? If this sounds intriguing, then we\'d like to talk to you about a role within a new Amazon organization. We are entrepreneurial, wear many hats, and work in a collaborative environment that\'s more like a startup than a big company.

As a Senior Manager of Security, Incident Response, you will help ensure our applications and services are designed and implemented to the highest standards. If you enjoy performing monitoring, detection and incident response, as well as scaling forensics, vulnerability management, threat intelligence and cloud security functions this position will provide you with a challenging opportunity. You will participate in security audits, risk analysis, vulnerability testing and security reviews across all elements of this organization\'s software systems.

This role will draw on multiple disciplines:
- Security Engineering: emphasis on operating systems and networking, foundational internet services, modern exploitation techniques, and hacking tools.
- Data Science and Intelligence Analysis: emphasis on detecting anomalies in large unstructured data sets, synthesizing data and reports from different sources, making logical inferences about that data, and publishing results.
- Software Development: developing your own small tools and scripts to aid in data processing or other aspects of an investigation.
You will experience challenging, novel situations every day and given the size of this initiative, you\'ll have the opportunity to work with multiple technical teams at Amazon in different locations. You should be comfortable with a high degree of ambiguity and relish the idea of solving problems that haven\'t been solved at scale before. Along the way, we guarantee that you\'ll learn a ton, have fun and make a positive impact on millions of people.

About the team
The Team: We are the Global Security Operations Services team within the Amazon Physical Stores organization, responsible for protecting, innovating, building, and sustaining the security operations engineering technologies, services, and IT infrastructure that support our ability to protect customer trust and our organization. Our vision is to transform Security Operations Engineering Services through the ideals of simplicity, scalability, sustainability, and security.

We are open to hiring candidates to work out of one of the following locations:

Austin, TX, USA | Seattle, WA, USA

BASIC QUALIFICATIONS

- Bachelor\'s degree in Computer Science or related field or equivalent experience.

- 10+ years of experience in Security Operations, performing Incident Response, Forensics and Analysis with expertise in writing run books, and complexity analysis.
- Experience running vulnerability scans and reviewing vulnerability assessment reports along with managing and configuring security monitoring tools.
- Experience in security engineering, specifically with network security, common attack patterns and exploitation techniques.
- Practical knowledge of system security analysis techniques such as threat modeling and attack graphs
- Knowledge of network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols).

PREFERRED QUALIFICATIONS

- Security certifications (CISSP, GCIA GCIH, GCFA, GCFE, etc.)
- Master\'s or PhD in Computer Science or related field.
- Experience with Security Operations, Incident Response, Threat Hunting and Assurance methodologies e.g. fuzzing, static and dynamic code analysis.
- Ability to write fully functional exploits for common vulnerabilities such as simple stack overflow, cross-site scripting, or SQL injection.
- Experience using standard Security Assessment and Penetration Testing tools such as BurpSuite, Metasploit, and IDA Pro.
- Knowledge of technical security issues facing large multinational companies.
- Data Science techniques such as clustering, anomaly detection, and machine learning leveraging data analysis tools such as OSSEC, Splunk, Behavioral Analytics, SQL, R, or MatLab

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.

Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $166,700/year in our lowest geographic market up to $324,100/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits. Applicants should apply via our internal or external career site.

Amazon