Infra-Security Engineer, Devices & Services, Trust & Safety

  • Individual Contributor
  • Remote-Friendly
  • Remote; US (Remote)
  • This position has been filled
  • Experience level: 4+ years

Website amazon Amazon

This content was reproduced from the employer’s website on October 23, 2022. Please visit their website below for the most up-to-date information about this position.

Job summary

The Devices and Services (D&S) Trust & Security team works to ensure that our devices and services are designed and implemented to the high standards required to maintain and enhance customer trust. Security and Privacy are paramount to maintaining trust and we need to continue to build trusted products, maintain and operate trusted environments, and advocate trust to customers and stakeholders.

The team develops security automation for devices & services, performs penetration testing, and handles and tracks incident responses to resolution. The Trust team is responsible for enabling business growth and innovation while honoring data policies and controls that help protect customer trust. We are responsible for defining and executing on the security and privacy requirements across the entire organization.

Key job responsibilities

* Develop and implement network and process controls for Kubernetes environments.
* Assist Incident Response Team with SIEM engineering tasks.
* Provide backup support to the Incident Response team.
* Evaluate or create new technologies and services in order to solve complex security issues.
* Perform design reviews and risk assessments for new or existing production infrastructure.
* Enhance existing systems to detect mis-configurations within large deployments.
* Provide occasional support for various EC2 security agents.

BASIC QUALIFICATIONS* 4+ years of working in the information security field
* 2+ years of experience working in public, or private, cloud/IaaS platforms, focusing on security.
* 3+ years of experience writing in scripted languages, as a core or ancillary duty. (Python, Ruby, Perl, Shell, etc.)
* 1+ years of experience in Splunk, ELK, or similar log aggregation and query platform or SIEM.
* Thorough knowledge and understanding of the integration of Amazon Web Services with fundamental Information Security principles for both architectural review and implementation.
* 2+ years of professional experience in a GNU/Linux systems administration/devops/sre role

* Consideration for others through courtesy, respect, humility, and a service-oriented attitude.
* Proficient in Python
* Comfortable with ambiguity and an ability to bring clarity to those situations.
* Proven history of drafting and championing security policy with service teams.
* Comfortable in a high speed, startup environment.
* Strong interpersonal skills through a keen understanding of one’s own behavior and work style with tolerance for others’ work styles, needs, and viewpoints.
* Experience and detailed technical knowledge of security engineering, system and network security, authentication and security protocols, cryptography, and application security.
* Experience with basic SQL queries.
* Understanding of TLS PKI and certificate management.
* Basic understanding of Linux Container runtimes and orchestration software.
* Bachelor’s degree in computer science or related field.
* Ruby software development experience a major plus.