Amazon
Security Engineer II, RSCI Vector Security
Amazon, Virginia, Minnesota, United States, 55792
Security Engineer II, RSCI Vector Security
Job ID: 2698135 | Amazon Development Center U.S., Inc.Do you have a passion for innovation and building technologies that make large-scale clouds more reliable, efficient, and scalable? Would you like to work within the most advanced and scaled clouds that support the most critical workloads for the US Intelligence and Defense communities? Do you want to build automation that will influence the national security and defense mission agency partners of AWS?The Regions Services Corporate Infrastructure (RSCI) is looking for a Security Engineer to help validate that our services, applications, and infrastructure are designed and implemented to the highest security standards. Similarly, our highly collaborative team is committed to each team member’s growth as our business grows.The Security Engineer is responsible for ensuring the appropriate operational security posture is maintained for the US ADC Remote Management and Administration (RM&A) networks. As a Security Engineer, you will be responsible for analyzing the security of infrastructure, applications and services, discovering and addressing security issues, building security automation, and quickly reacting to new threat scenarios. You will have the opportunity to learn from, and be mentored by, those who are building and securing our cutting-edge services.You are expected to be strong in multiple security domains and provide significant contributions to the Engineering team and to multiple groups throughout Amazon. You are expected to closely work with service teams to develop secure solutions to complex business problems and ensure we are holding a high security bar for our customers. You are also expected to mentor more junior engineers and be a security thought leader for the organization.You must foster constructive dialogue and seek resolution when confronted with discordant views. Engineers in this role are expected to participate fully in the planning of the org’s team work and constantly seek opportunities for process improvement. You should also have a deep understanding of at least one specialty for which you are a sought-out resource (both within IT Security and by groups throughout Amazon), while having an understanding of the application of Information Security in a broad range of technical areas.You will be “Customer Obsessed”, working closely with our customers to understand their pain points and find resolution quickly and completely. You will have a keen eye for potential problems and inefficiencies, and the initiative and drive to provide a complete solution to the problem. You will communicate clearly and collaborate with others to deliver results with minimal supervision. This leader must be able to dive deep into the details of business, operations, and engineering.This position requires that the candidate selected must currently possess and maintain an active TS/SCI security clearance with polygraph. The position further requires the candidate to opt into a commensurate clearance for each government agency for which they perform AWS work.Key job responsibilities
Operate and maintain Tenable.SCConduct periodic reviews of information systems to ensure compliance with the security authorization packageCoordinate any changes or modifications to hardware, software, or firmware of a system with the ISSM and other security stakeholders prior to implementation.Monitor system recovery processes to ensure security features and procedures are properly restored and functioning correctlyEnsure all IS security-related documentation is current and accessible to properly authorized individualsMaintain audit records and assess records against documented control criterion.Identify cybersecurity vulnerabilities and assist with the implementation of the countermeasures for themDocument appropriate responses to IA Controls and make recommendations for remediation and compliance of controls.Conduct continuous monitoring activities for RM&A environments.BASIC QUALIFICATIONS
- CCSP (Certified Cloud Security Professional) or CEH (Certified Ethical Hacker) or CFR (CyberSec First Responder) or Cloud+ or CySA+ (CompTIA Cybersecurity Analyst) or GCED (GIAC Certified Enterprise Defender) or GICSP (Global Industrial Cyber Security Professional) or PenTest+, or Bachelor's degree- 4+ years of experience of years of progressive security architecture experience; preferably within a Microsoft Active Directory environment- 4+ years of experience designing and implementing a secure Active Directory domain architecture- 4+ years experience working with stakeholders across many job functions- CompTia Security + CE Certification, CompTIA Advanced Security Practitioner (CASP) or Certified Information Systems Security Professional (CISSP) certification- Current, active US Government Security Clearance of TS/SCI with PolygraphPREFERRED QUALIFICATIONS
- Master's Degree in Engineering, Information Technology or related technical discipline- 6+ years of prior experience as Network or Systems Engineer/Administrator.- 6+ years of experience in understanding of all aspects of Systems Engineering, including design and architecture.- Experience with multiple programming languages (such as, Java, C++, Ruby, Python, Perl, etc.)- Experience in securing cloud services- Experience in Identity standards and frameworks- Meets/exceeds Amazon’s leadership principles requirements for this role- Meets/exceeds Amazon’s functional/technical depth and complexity for this roleAmazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.
#J-18808-Ljbffr
Job ID: 2698135 | Amazon Development Center U.S., Inc.Do you have a passion for innovation and building technologies that make large-scale clouds more reliable, efficient, and scalable? Would you like to work within the most advanced and scaled clouds that support the most critical workloads for the US Intelligence and Defense communities? Do you want to build automation that will influence the national security and defense mission agency partners of AWS?The Regions Services Corporate Infrastructure (RSCI) is looking for a Security Engineer to help validate that our services, applications, and infrastructure are designed and implemented to the highest security standards. Similarly, our highly collaborative team is committed to each team member’s growth as our business grows.The Security Engineer is responsible for ensuring the appropriate operational security posture is maintained for the US ADC Remote Management and Administration (RM&A) networks. As a Security Engineer, you will be responsible for analyzing the security of infrastructure, applications and services, discovering and addressing security issues, building security automation, and quickly reacting to new threat scenarios. You will have the opportunity to learn from, and be mentored by, those who are building and securing our cutting-edge services.You are expected to be strong in multiple security domains and provide significant contributions to the Engineering team and to multiple groups throughout Amazon. You are expected to closely work with service teams to develop secure solutions to complex business problems and ensure we are holding a high security bar for our customers. You are also expected to mentor more junior engineers and be a security thought leader for the organization.You must foster constructive dialogue and seek resolution when confronted with discordant views. Engineers in this role are expected to participate fully in the planning of the org’s team work and constantly seek opportunities for process improvement. You should also have a deep understanding of at least one specialty for which you are a sought-out resource (both within IT Security and by groups throughout Amazon), while having an understanding of the application of Information Security in a broad range of technical areas.You will be “Customer Obsessed”, working closely with our customers to understand their pain points and find resolution quickly and completely. You will have a keen eye for potential problems and inefficiencies, and the initiative and drive to provide a complete solution to the problem. You will communicate clearly and collaborate with others to deliver results with minimal supervision. This leader must be able to dive deep into the details of business, operations, and engineering.This position requires that the candidate selected must currently possess and maintain an active TS/SCI security clearance with polygraph. The position further requires the candidate to opt into a commensurate clearance for each government agency for which they perform AWS work.Key job responsibilities
Operate and maintain Tenable.SCConduct periodic reviews of information systems to ensure compliance with the security authorization packageCoordinate any changes or modifications to hardware, software, or firmware of a system with the ISSM and other security stakeholders prior to implementation.Monitor system recovery processes to ensure security features and procedures are properly restored and functioning correctlyEnsure all IS security-related documentation is current and accessible to properly authorized individualsMaintain audit records and assess records against documented control criterion.Identify cybersecurity vulnerabilities and assist with the implementation of the countermeasures for themDocument appropriate responses to IA Controls and make recommendations for remediation and compliance of controls.Conduct continuous monitoring activities for RM&A environments.BASIC QUALIFICATIONS
- CCSP (Certified Cloud Security Professional) or CEH (Certified Ethical Hacker) or CFR (CyberSec First Responder) or Cloud+ or CySA+ (CompTIA Cybersecurity Analyst) or GCED (GIAC Certified Enterprise Defender) or GICSP (Global Industrial Cyber Security Professional) or PenTest+, or Bachelor's degree- 4+ years of experience of years of progressive security architecture experience; preferably within a Microsoft Active Directory environment- 4+ years of experience designing and implementing a secure Active Directory domain architecture- 4+ years experience working with stakeholders across many job functions- CompTia Security + CE Certification, CompTIA Advanced Security Practitioner (CASP) or Certified Information Systems Security Professional (CISSP) certification- Current, active US Government Security Clearance of TS/SCI with PolygraphPREFERRED QUALIFICATIONS
- Master's Degree in Engineering, Information Technology or related technical discipline- 6+ years of prior experience as Network or Systems Engineer/Administrator.- 6+ years of experience in understanding of all aspects of Systems Engineering, including design and architecture.- Experience with multiple programming languages (such as, Java, C++, Ruby, Python, Perl, etc.)- Experience in securing cloud services- Experience in Identity standards and frameworks- Meets/exceeds Amazon’s leadership principles requirements for this role- Meets/exceeds Amazon’s functional/technical depth and complexity for this roleAmazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.
#J-18808-Ljbffr