Amazon
Security Engineer II, Infrastructure Security Compliance
Amazon, Minneapolis, Minnesota, United States, 55400
Security Engineer II, Infrastructure Security Compliance
Job ID: 2862896 | Amazon Data Services, Inc. AWS Infrastructure Services owns the design, planning, delivery, and operation of all AWS global infrastructure. In other words, we’re the people who keep the cloud running. We support all AWS data centers and all of the servers, storage, networking, power, and cooling equipment that ensure our customers have continual access to the innovation they rely on. We work on the most challenging problems, with thousands of variables impacting the supply chain — and we’re looking for talented people who want to help. You’ll join a diverse team of software, systems, and network engineers to develop software-defined solutions to increase security while reducing complexity. You’ll experience an inclusive culture that welcomes bold ideas and empowers you to own them to completion. The Infrastructure Identity Security Team is responsible for the security and risk management of the AWS Network Infrastructure. We build systems that detect, assess, and mitigate risk across the global infrastructure and are accountable for keeping the Amazon Infrastructure secure and compliant with customer requirements. We are seeking engineers with subject matter expertise in network security and software systems, specifically with access controls in large, segmented networks. Key job responsibilities
Aid in the development, assessment, and analysis of security outcomes for AWS Infrastructure Identity Team. Be the security subject matter expert supporting the development teams. Identify and drive mitigation of security risks through formal, deep dive assessment activities. Lead in the identification and application of remediation and mitigation techniques, including the development of monitoring and reporting capabilities. Shape the future in network security through automation. Continuously assess the effectiveness of network security controls and processes. Work alongside software engineers to deliver best in class tools for Identity customers. Codify intentions that define security of traffic flows and maintain them through assessments. Deliver empirical solutions for programs which cross organizational boundaries. Research and recommend optimizations of new and existing network security architecture. Create documentation for operational procedures and user education. Mentor junior staff and participate in interviewing as the subject matter expert on network security. BASIC QUALIFICATIONS
- 4+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience. - Bachelor's degree in computer science or equivalent. - Knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits or equivalent. - A strong understanding of core internet and networking technologies (routing protocols, network architecture, TCP/IP, etc.). - Excellent communication and data presentation skills that allow you to clearly, compellingly, and effectively influence audiences internally and externally, across organizational boundaries. PREFERRED QUALIFICATIONS
- CCSP (Certified Cloud Security Professional) or CEH (Certified Ethical Hacker) or CFR (CyberSec First Responder) or Cloud+ or CySA+ (CompTIA Cybersecurity Analyst) or GCED (GIAC Certified Enterprise Defender) or GICSP (Global Industrial Cyber Security Professional) or PenTest+. - Experience performing risk assessments of vulnerabilities and evaluating mitigating controls in large, complex networks. - Linux systems engineering skills and a solid grasp on operating system fundamentals. - Knowledge of at least one scripting language (Python, Perl, Ruby, etc.). Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. Posted:
October 24, 2024 (Updated 19 days ago)
#J-18808-Ljbffr
Job ID: 2862896 | Amazon Data Services, Inc. AWS Infrastructure Services owns the design, planning, delivery, and operation of all AWS global infrastructure. In other words, we’re the people who keep the cloud running. We support all AWS data centers and all of the servers, storage, networking, power, and cooling equipment that ensure our customers have continual access to the innovation they rely on. We work on the most challenging problems, with thousands of variables impacting the supply chain — and we’re looking for talented people who want to help. You’ll join a diverse team of software, systems, and network engineers to develop software-defined solutions to increase security while reducing complexity. You’ll experience an inclusive culture that welcomes bold ideas and empowers you to own them to completion. The Infrastructure Identity Security Team is responsible for the security and risk management of the AWS Network Infrastructure. We build systems that detect, assess, and mitigate risk across the global infrastructure and are accountable for keeping the Amazon Infrastructure secure and compliant with customer requirements. We are seeking engineers with subject matter expertise in network security and software systems, specifically with access controls in large, segmented networks. Key job responsibilities
Aid in the development, assessment, and analysis of security outcomes for AWS Infrastructure Identity Team. Be the security subject matter expert supporting the development teams. Identify and drive mitigation of security risks through formal, deep dive assessment activities. Lead in the identification and application of remediation and mitigation techniques, including the development of monitoring and reporting capabilities. Shape the future in network security through automation. Continuously assess the effectiveness of network security controls and processes. Work alongside software engineers to deliver best in class tools for Identity customers. Codify intentions that define security of traffic flows and maintain them through assessments. Deliver empirical solutions for programs which cross organizational boundaries. Research and recommend optimizations of new and existing network security architecture. Create documentation for operational procedures and user education. Mentor junior staff and participate in interviewing as the subject matter expert on network security. BASIC QUALIFICATIONS
- 4+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience. - Bachelor's degree in computer science or equivalent. - Knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits or equivalent. - A strong understanding of core internet and networking technologies (routing protocols, network architecture, TCP/IP, etc.). - Excellent communication and data presentation skills that allow you to clearly, compellingly, and effectively influence audiences internally and externally, across organizational boundaries. PREFERRED QUALIFICATIONS
- CCSP (Certified Cloud Security Professional) or CEH (Certified Ethical Hacker) or CFR (CyberSec First Responder) or Cloud+ or CySA+ (CompTIA Cybersecurity Analyst) or GCED (GIAC Certified Enterprise Defender) or GICSP (Global Industrial Cyber Security Professional) or PenTest+. - Experience performing risk assessments of vulnerabilities and evaluating mitigating controls in large, complex networks. - Linux systems engineering skills and a solid grasp on operating system fundamentals. - Knowledge of at least one scripting language (Python, Perl, Ruby, etc.). Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. Posted:
October 24, 2024 (Updated 19 days ago)
#J-18808-Ljbffr