Amazon – Herndon, Virginia
Job Description
Since early 2006, Amazon Web Services (AWS) has provided companies of all sizes with an infrastructure web services platform in the cloud. With AWS you can requisition compute power, storage, and other services-gaining access to a suite of elastic IT infrastructure services as your business demands them. With AWS you have the flexibility to choose whichever development platform or programming model makes the most sense for the problems you’re trying to solve. You pay only for what you use, with no up-front expenses or long-term commitments, making AWS the most cost-effective way to deliver your application to your customers and clients. And, with AWS, you can take advantage of Amazon.com’s global computing infrastructure, that is the backbone of Amazon.com’s multi-billion retail business and transactional enterprise whose scalable, reliable, and secure distributed computing infrastructure has been honed for over a decade.
The AWS IT Security team is responsible for the security and availability of all of the services offered by AWS, including EC2, S3, and others. Our team works with the service teams to solve security challenges at massive scale, and builds tools to automate the auditing and operation of AWS infrastructure. This role is responsible for establishing and leading the Security Operations team.
Key responsibilities include:
Manage and develop the security operations team and ensure that we promptly respond to risks, and that we have strong engagement with affected teams
Responsible for driving all ops issues to successful closure while improving response metrics and identifying key areas for process improvement
Communicate all major issues to CISO and AWS Security team and
Create and direct team training and on-boarding program and teach best security practices
Prioritize the operational workload and ensure correct ownership for all incidents.
Arrange for surge support during major incidents
Act as an ambassador of the AWS Security team by directly interacting with security researchers, customers, business partners, and other external parties who contact us regarding security questions
Define and develop best-practice security response standards that will be implemented across AWS
Guide the development of in-house tools and techniques used to support security response in the Cloud
Help recruit the very best talent for Amazon through active participation in the recruiting process
Collaborate to ensure that decisions are based on the merit of the proposal, not the proposer.
When none of the proposals is the obvious winner, you are still decisive, able to disagree and commit to the team’s decision
Note: this position requires some on-call responsibilities
BS in Computer Science or related field
Minimum of 8 years of systems, network, and/or application security experience (broad knowledge in security engineering, system and network security, authentication and security protocols, cryptography, and application security)
Minimum of 4 years of security operations/response experience with a deep domain knowledge in vulnerability assessment/remediation, incident response, and the Internet threat environment
Minimum of 4 years working with network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP/S, HTTPS, routing protocols)
Minimum of 2 years experience managing/developing a team of direct reports
• MS in Computer Science or related field
• Experience with hardware virtualization technologies
• Strong scripting skills in at least one of the following is ideal: Perl, Python, Shell
• Programming in C, C++, Java, Python, Perl, and/or Ruby
• Sharp analytical abilities and the ability to make sound decisions quickly
• Strong sense of ownership, urgency, and drive
• Demonstrate an ability to achieve stretch goals in a highly innovative and fast paced environment (can’t suffer from “analysis paralysis”-must move forward in the face of ambiguity and imperfect knowledge)
How to Apply
Please email our AWS Recruiting Lead, Kelly O’Mara (komara@amazon.com) if you have any questions.
Job Description
Since early 2006, Amazon Web Services (AWS) has provided companies of all sizes with an infrastructure web services platform in the cloud. With AWS you can requisition compute power, storage, and other services-gaining access to a suite of elastic IT infrastructure services as your business demands them. With AWS you have the flexibility to choose whichever development platform or programming model makes the most sense for the problems you’re trying to solve. You pay only for what you use, with no up-front expenses or long-term commitments, making AWS the most cost-effective way to deliver your application to your customers and clients. And, with AWS, you can take advantage of Amazon.com’s global computing infrastructure, that is the backbone of Amazon.com’s multi-billion retail business and transactional enterprise whose scalable, reliable, and secure distributed computing infrastructure has been honed for over a decade.
The AWS IT Security team is responsible for the security and availability of all of the services offered by AWS, including EC2, S3, and others. Our team works with the service teams to solve security challenges at massive scale, and builds tools to automate the auditing and operation of AWS infrastructure. This role is responsible for establishing and leading the Security Operations team.
Key responsibilities include:
Manage and develop the security operations team and ensure that we promptly respond to risks, and that we have strong engagement with affected teams
Responsible for driving all ops issues to successful closure while improving response metrics and identifying key areas for process improvement
Communicate all major issues to CISO and AWS Security team and
Create and direct team training and on-boarding program and teach best security practices
Prioritize the operational workload and ensure correct ownership for all incidents.
Arrange for surge support during major incidents
Act as an ambassador of the AWS Security team by directly interacting with security researchers, customers, business partners, and other external parties who contact us regarding security questions
Define and develop best-practice security response standards that will be implemented across AWS
Guide the development of in-house tools and techniques used to support security response in the Cloud
Help recruit the very best talent for Amazon through active participation in the recruiting process
Collaborate to ensure that decisions are based on the merit of the proposal, not the proposer.
When none of the proposals is the obvious winner, you are still decisive, able to disagree and commit to the team’s decision
Note: this position requires some on-call responsibilities
BS in Computer Science or related field
Minimum of 8 years of systems, network, and/or application security experience (broad knowledge in security engineering, system and network security, authentication and security protocols, cryptography, and application security)
Minimum of 4 years of security operations/response experience with a deep domain knowledge in vulnerability assessment/remediation, incident response, and the Internet threat environment
Minimum of 4 years working with network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP/S, HTTPS, routing protocols)
Minimum of 2 years experience managing/developing a team of direct reports
• MS in Computer Science or related field
• Experience with hardware virtualization technologies
• Strong scripting skills in at least one of the following is ideal: Perl, Python, Shell
• Programming in C, C++, Java, Python, Perl, and/or Ruby
• Sharp analytical abilities and the ability to make sound decisions quickly
• Strong sense of ownership, urgency, and drive
• Demonstrate an ability to achieve stretch goals in a highly innovative and fast paced environment (can’t suffer from “analysis paralysis”-must move forward in the face of ambiguity and imperfect knowledge)
How to Apply
Please email our AWS Recruiting Lead, Kelly O’Mara (komara@amazon.com) if you have any questions.