COMPLETE Sr. Security Engineer, AWS Trust and Safety - Dublin

Job Description

AWS Trust and Safety (T&S) is the primary organization within AWS responsible for taking mitigative actions against customer resources that violate the AWS AUP or otherwise threaten other AWS customers, services, and AWS IP reputation. We work closely with AWS service teams to determine appropriate mitigative actions and act as the customer facing outreach team on their behalf.

You will join our global, innovative, and specialized security team who investigates abusive patterns to identify tactics, techniques, and procedures used by abusive threats, works with other AWS security teams to develop automated detections for these abusive threats, and responds to security incidents caused by abusive behavior which could affect AWS services. You must thrive in ambiguous, often high-pressure situations to identify the cause of abuse and develop mitigation and remediation actions.




Key job responsibilities
- You are a technical leader on the team. You will engage autonomously with AWS programs and services to create, build, and innovate security operations.
- Communicate ideas effectively, both verbally and in writing, to all types of audiences.
- Assist in defining the strategic vision for the team, partnering effectively with customers and stakeholders. You will help establish a roadmap and successfully deliver engineering solutions that execute the team’s mission.
- Proactively identify risks and bring them to the attention of your manager, customers, and stakeholders with plans for mitigation before they become larger events.
- Identify opportunities to converge overlapping technical efforts, and drive the long-term strategy with support of other engineering leaders, and partner organizations.
- Work effectively with customers, leaders, and other engineering teams. You foster a constructive dialogue, harmonize discordant views, and lead the resolution of contentious issues (influence and build consensus).
- Drive operational excellence and efficiency in everything you do, whether by researching new, or scaling up existing capabilities, creating effective mechanisms, and automating day-to-day tasks.
- You will be Amazon’s voice in technical security engagements with customers addressing abuse.
- Ensure we continually obsess on customer needs, and build trust through clear and accurate description of implicated abuse and the impact to AWS and the customer.
- Collect, analyze, and document information to author threat reports to drive scalable mitigation and remediation actions.
- Use SQL and Python or similar scripting languages to automate tasks and manipulate data.
- Provide situational awareness on the current threat landscape and the TTPs associated with specific threats to our business, including ongoing malware campaigns.
- Collect data from intelligence communities, threat intelligence platforms, open source data repositories, and other sources to analyze TTPs and anomalies
- Provide timely, relevant, and proactive analysis across Amazon and subsidiaries.
- Participate in on-call duties

We are open to hiring candidates to work out of one of the following locations:

Dublin, D, IRL

Basic Qualifications:

- BS degree in Computer Science, Security, Distributed Systems, Networking, Computer Engineering, (or) 5+ years’ equivalent technology experience.
- 4+ years experience building scalable incident response utilities and automated tools in any of these languages: Python, C, C++, Perl, and/or Ruby.
- Strong knowledge of Computer Science fundamentals, including; data structures, object-oriented programming, design and analysis of algorithms
- 5+ years experience with focus in areas such as systems, network, web protocols, and/or application security.
- 3+ years experience with SQL or other query languages
- Knowledge of current security trends, threats, and mitigations.
- Understanding of industry standard threat frameworks (Lockheed Martin Cyber Kill Chain, Diamond Model, MITRE ATT&CK)
- Excellent written and oral communication skills
- Previous experience on a Security Operations team, or experience coordinating responses to security incidents.
- A high degree of organization and be very detail-oriented. Must be able to interact with and influence people at all levels.

Preferred Qualifications:

- A MS degree in Computer Science, MIS, Computer Engineering, or 8+ years’ equivalent technology experience.
- 7+ years of experience conducting threat intelligence research and analysis
- 7+ years global analysis and threat mitigation background
- 5+ years scripting/programming experience: Python, C, C++, Java, Ruby, and/or PowerShell
- 3+ years of experience building with and securing AWS cloud services such as Lambda, EC2, and S3.
- Experience with virtualization technologies, familiarity with AWS and GuardDuty services is highly valued in particular.
- One or more professional network and security certifications such as Security+, CEH, CCNA, GSEC, CISA or CISSP (or equivalent work experience)
- Extensive knowledge of internet security issues and threat landscape.
- Strong knowledge of web protocols and an in-depth knowledge of Linux/Unix tools and architecture.
- Well-rounded background in host, network and application security.

Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice (https://www.amazon.jobs/en/privacy_page) to know more about how we collect, use and transfer the personal data of our candidates.

Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need an adjustment during the application and hiring process, including support for the interview or onboarding process, please contact the Applicant-Candidate Accommodation Team (ACAT), Monday through Friday from 7:00 am GMT - 4:00 pm GMT. If calling directly from the United Kingdom, please dial +44 800 086 9884 (tel:+448000869884). If calling from Ireland, please dial +353 1800 851 489 (tel:+3531800851489).