Amazon Threat Intelligence Security Engineer AWS Fraud Prevention 

United States, Texas, Arlington 

454530812

AWS Fraud Threat Intelligence (FTI) is seeking a motivated Threat Intelligence Security Engineer with a strong investigative mindset and technical background. As a Security Engineer on FTI, you will solve the most interesting and difficult fraud challenges faced by AWS. Your technical skills will enable the program to detect, prevent and disrupt significant fraud threats and build intelligence solutions that scale. You will build proofs of concept and develop tooling/automation solutions that help AWS scale.
Key job responsibilities
* Our partner teams have diverse responsibilities to research, investigate, and disrupt fraud. Your responsibility is to build mechanisms that enable us to collect intelligence, process it, and enable our partners to be more proactive by preventing fraud at each step of the fraud lifecycle.
* Apply your technical expertise to improve organizational awareness of cyber-crime tooling, infrastructure, and capabilities and how bad actors use them against AWS (red/purple). Produce actionable threat intelligence that influences investigations, product, and security teams.
* Drive research into technical fraud problems, automate manual processes, and build tooling/automation that (1) improves team capabilities and (2) enables the program to scale.
* Identify, connect, and analyze new internal and external data sources and adapt them for programmatic use by the team. Optimize data processing and analysis pipelines to work at AWS scale.
* Contribute to overall engineering efforts, including supporting design and development for capturing, storing, processing, analyzing and disseminating threat intelligence for awareness and action.

- BS in computer science, computer security, networking, information systems, computer engineering, systems engineering (or similar field); or 5+ years’ equivalent experience.
- 5+ years’ experience in at least two of the following areas: threat intelligence, security engineering, data mining, information security, security operations/incident response, cyber-crime investigations or intelligence, fraud prevention, cyber threat hunting.
- Proficiency using programming languages: Python required. Other languages are a plus (Go, Ruby, Shell/Bash scripting, Java, Javascript/TypeScript, Rust, etc).
- 3-5+ years experience using SQL or other query languages.
- Ability to conduct technical research across several layers of the tech stack and automating tools.