Amazon Security Engineer II Infrastructure Compliance 

United States, Minnesota, Minneapolis 

7757218

You’ll join a diverse team of with software, systems and network engineers to develop software defined solutions to increase security while reducing complexity. And you’ll experience an inclusive culture that welcomes bold ideas and empowers you to own them to completion.The Infrastructure Identity Security Team is responsible for the security and risk management of the AWS Network Infrastructure. We build systems that detect, assess, and mitigate risk across the global infrastructure and are accountable for keeping the Amazon Infrastructure secure and compliant with customer requirements.
Key job responsibilities
You will aid in the development, assessment, and analysis of security outcomes for AWS Infrastructure Identity Team.Identify and drive mitigation of security risks through formal, deep dive assessment activitiesLead in the identification and application of remediation and mitigation techniques, including the development of monitoring and reporting capabilities.Additionally
• Shape the future in network security through automation
• Continuously assess the effectiveness of network security controls and processes
• Work alongside software engineers to deliver best in class tools for Identity customers
• Codify intentions that define security of traffic flows and maintain them through assessments
• Deliver empirical solutions for programs which cross organizational boundaries
• Research and recommend optimizations of new and existing network security architecture
• Work alongside with software engineers on the design and requirements of security software
• Identify network security risks and participate in resolution
• Create documentation for operational procedures and user education
• Mentor junior staff and participate in interviewing as the subject matter expert on network securityA day in the life
You will assess and document network security risks and help developers build tools that will make you more efficient. You will have the freedom to prioritize as needed to balance your personal life, professional growth, key stakeholders, your teammates, and the delivery of your assigned projects. You will help set the security bar and drive the team towards high standards and best practices. Your leadership team and peers will support your ideas and provide opportunities to give and receive feedback freely.
Diverse Experiences
Amazon values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Why AWS
Work/Life BalanceMentorship and Career Growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.

- 4+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience
- Bachelor's degree in computer science or equivalent
- Knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits or equivalent
- A strong understanding of core internet and networking technologies (routing protocols, network architecture, TCP/IP, etc.)
- Excellent communication and data presentation skills that allow you to clearly, compellingly, and effectively influence audiences internally and externally, across organizational boundaries

- CCSP (Certified Cloud Security Professional) or CEH (Certified Ethical Hacker) or CFR (CyberSec First Responder) or Cloud+ or CySA+ (CompTIA Cybersecurity Analyst) or GCED (GIAC Certified Enterprise Defender) or GICSP (Global Industrial Cyber Security Professional) or PenTest+
- Experience performing risk assessments of vulnerabilities and evaluating mitigating controls in large, complex networks
- Linux systems engineering skills and a solid grasp on operating system fundamentals
- Knowledge of at least one scripting language (Python, Perl, Ruby, etc.)