DESCRIPTION

The Amazon Web Services (AWS) Security Operations Center (SOC) Support Engineer works across systems and services to provide security response for logical and physical domains in support of AWS security, customers, and partners. The SOC Support Engineer analyzes and responds to security alerts across systems for internal services. They use their security knowledge and judgement to identify risks, drive swift mitigation, resolution and escalation as needed.

Candidates for this role will possess both knowledge of security principles and experience with practical application of security response. An ideal candidate will have experience in one or more of the following domains: security operation center (SOC), incident response, and security alert response.

They will possess excellent verbal and written communication skills and be able to multitask effectively through multiple incidents or workflows. Successful candidates will demonstrate good judgement and critical thinking while following SOC procedures and guidelines. They will have a technical background to identify through systems and web applications in order to drive security issues across the physical and the logical space.

They will be proactive, adaptable, professional, and insist on the highest standards of work. The AWS SOC is a 24/7/365 operation and shift work will be required to include days, nights, weekends, and holidays. This role also requires flexibility of schedule and the ability and willingness to work outside of normal daytime business hours (including overnight shifts).

Key job responsibilities As an AWS SOC Support Engineer, you will respond to security alerts and incidents and employ established security processes, tools and procedures in accordance with service level agreements (SLA), policies, and standards. You will manage communications, security response and escalations, facilitate operational needs, generate and/or manage tickets, and provide additional services as required.

More specifically, the SOC Support Engineer will:

• Drive security findings, research mitigations, and analyze potential security vulnerability related information from a variety of sources to remediate root cause. • Exercise judgment in assessing security risks, prioritizing incidents, and determining appropriate escalation paths through established channels • Utilize security mindset to respond to security tickets across AWS organizations, following ticket standards and escalating according to documented risk criteria • Create innovative solutions to security issues through technology and process improvements in the SOC workflow • Document incident findings, contribute to security metrics, and identify patterns that can drive systemic improvements across AWS security posture • Consult closely with the other Amazon security and service teams on issues and work as a catalyst to bring stakeholders together to address findings and risks • Interface with technical teams, stakeholders and leadership to translate security mitigation plans into actionable items. • Manage email, phone communications, generate and/or manage trouble tickets, handle incoming chats, and provide technical support to customers.

A day in the life The AWS SOC is expanding physical and logical security services operations to support the growth of our data centers and other related security functions. The AWS SOC Support Engineering is seeking a self-motivated SOC Support Engineer with security technology experience, problem-solving abilities, analysis skills, and strong customer obsession. Come join the team tasked with improving the level of security on a global scale, across new and existing AWS infrastructure.

About the team About Amazon Security

Diverse Experiences Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.

Why Amazon Security? At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.

Inclusive Team Culture In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.

Training & Career Growth We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.

Work/Life Balance We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.

BASIC QUALIFICATIONS

- 2+ years of security experience. - Experience in incident response/management. - Technical degree OR 4+ years professional/technical experience. - Experience with Unix/Linux/Windows Operating Systems administration, troubleshooting and debugging technical systems, scripting, and task automation. - Flexibility of work hours, to include nights, weekends, and holidays.

PREFERRED QUALIFICATIONS

- Experience with AWS Cloud Environments. - Working knowledge of Shell/Bash/Python. - Experience developing systems, networks, and operating systems architecture. - Experience in Physical Access Control Systems (PACS).