Finding the best job has never been easier
Share
In the Senior Security Intel Engineer role you will formulate new analytic techniques and work across teams to drive the supporting capabilities. A deep understanding of advanced actor tactics, techniques, and procedures (TTPs) is required, as well as how those TTP’s will present themselves in network-based and host-based logs derived from software, operating systems, networks, cloud infrastructure, networking equipment, and web applications. In addition, you will script and help automate recurring tasks to improve the overall effectiveness of the intelligence and how it is utilized throughout Amazon and AWS, to include; tactical integrations with red and blue teams and strategic impact overall. Beyond direct technical work on exploits, vulnerability research, and threat intelligence, the VEX Senior Security Intel Engineer will steer strategic direction in the secure design of AWS services, coordinate take-downs of malicious infrastructure, and drive effective technical countermeasures.Key job responsibilities
* Identify, research, and analyze novel vulnerabilities discovered in threat intelligence data, applications, devices, and networks
* Interface with ACTI reverse engineers to provide reversing requirements as well as be able to independently triage malware, analyze exploit code, and study attack techniques to understand how vulnerabilities are being weaponized
* Pursue actionable intelligence on current exploits, perform deep dive analysis of malicious artifacts related to software exploits, and use that data to identify attacks against Amazon, AWS, and its customers
* Analyze large and unstructured data sets to identify trends and anomalies indicative of malicious activities
* Create security techniques and automation for internal use that enable the team to operate at high speed and broad scale
* Provide situational awareness on the current threat landscape and the techniques, tactics, and procedures associated with specific threats
* Accurately document ongoing investigations, craft consumable threat intelligence products, and clearly present and communicate emerging threats and high-risk vulnerabilities in cloud, network devices, and web applications to key stakeholders
* Periodic on-call responsibilitiesA day in the lifeDiverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Training & Career Growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.Work/Life Balance
- BS degree in Computer Science, Management Information Systems, Computer Engineering, or 5+ years equivalent technology experience
- 5 years experience with analyzing software exploits and creating corresponding detections and/or countermeasures
- 5 years experience in system, network, and/or application security
- 4 years experience building automated tools in C, C++, Java, Python, Perl, PowerShell, or Ruby
- 3 years experience with SQL or other query languages.
- MS degree in Computer Science, MIS, Computer Engineering
- 7+ years experience Threat Intelligence research and analysis related to software exploits and the creation of corresponding detections and/or countermeasures
- Experience with malware analysis, network flow analysis, and large scale data analysis
- * Experience with fuzzing and web application enumeration (Burp, Beef, Fiddler)
- Strong understanding of Windows, Linux, and or OS X internals, web, and common software vulnerabilities
- Solid programming skills and experience with languages such as Python
- Cloud infrastructure experience, to include automated deployment technologies
- Cloud penetration testing experience
- Meet/exceed Amazon’s leadership principles requirements for this role
- Meet/exceed Amazon’s functional/technical depth and complexity for this role
These jobs might be a good fit