Amazon Security Engineer AWS SOC Incident Response 

United States, Washington, Seattle 

770250197

Key job responsibilities
Detect, monitor and analyze security alerts from various sources to detect and respond to potential threats in real-time.
Develop, implement, and fine-tune detection rules and correlation logic to improve threat detection capabilities.
Conduct in-depth investigations of security incidents, perform forensic analysis, and coordinate incident response activities.
Maintain and optimize security information and event management systems and other security tools used in the SOC.
A day in the life
As a Security Engineer in Detections, your day revolves around safeguarding our digital assets. This position supports other AWS Security Engineers with security engineering, security operations and incident response activities. You will be responsible for coordinating and facilitating security response activities, fine-tuning detection rules. You'll investigate potential incidents, collaborate with threat intelligence teams, and develop new detection algorithms.Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Training & Career Growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.Work/Life Balance

- Bachelor's degree in computer science or equivalent
- Knowledge of networking protocols such as HTTP, DNS and TCP/IP
- Experience programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object oriented language
- 2 plus years experience on a Security team, especially experience coordinating responses to security incidents

- Experience with AWS products and services
- Experience with any combination of the following: threat modeling, secure coding, identity management and authentication, software development, cryptography, system administration and network security
- Experience with programming languages such as Python, Java, C++