Security Engineer Operations, Physical Stores Tech Security

Job Description

Job summaryGo is a new kind of store with no lines and no checkout you just grab and go! Customers simply use the Amazon Go app to enter the store, take what they want from our selection of fresh, delicious meals and grocery essentials, and go! Our checkout-free shopping experience is made possible by our Just Walk Out Technology, which automatically detects when products are taken from or returned to the shelves and keeps track of them in a virtual cart. When you are done shopping, you can just leave the store. Shortly after, we will charge your Amazon account and send you a receipt. Check it out at amazon.com/go . Designed and custom-built by Amazonians, our Just Walk Out Technology uses a variety of technologies including computer vision, sensor fusion, and advanced machine learning. Innovation is part of our DNA! Our goal is to be Earths most customer centric company, and we are just getting started. We need people who want to join an ambitious program that continues to push the state of the art in computer vision, machine learning, distributed systems and hardware design.The Role: As a Security Engineer you will help ensure our applications and services are designed and implemented to the highest standards. If you enjoy analyzing the security of applications and services, discovering and addressing security issues and quickly reacting to new threat scenarios, this position will provide you with a challenging opportunity. You will participate in security audits, risk analysis, vulnerability testing and security reviews across all elements of this projects software systems.This role will draw on multiple disciplines:
• Security Engineering: emphasis on operating systems and networking, foundational Internet services, modern exploitation techniques, and hacking tools.
• Data Science and Intelligence Analysis: emphasis on detecting anomalies in large unstructured data sets, ability to synthesize data and reports from different sources, make logical inferences about that data, and publish results.
• Software Development: ability to develop your own small tools and scripts to aid in data processing or other aspects of an investigation.
• You will tackle challenging, novel situations every day and given the size of this initiative, you ll have the opportunity to work with multiple technical teams at Amazon in different locations.
• You should be comfortable with a high degree of ambiguity and relish the idea of solving problems that haven t been solved at scale before.
• Along the way, we guarantee that you ll learn a ton, have fun and make a positive impact on millions of people.
Key job responsibilities
• Work with the wider technology teams to improve technology hygiene and reduce the attack surface.
• Design and run exercise campaigns based on industry specific threat intelligence and vulnerabilities.
• Act as an integral driver of the cyber operations development programme, benchmarking results against industry standard frameworks including MITRE and NIST.
• Responsible for performing penetration testing and realistic security attack scenarios, to identify weaknesses in applications, systems and infrastructure.
• Engage in Purple team engagements with Security Operations Center team members.
• Continually research new offensive security tactics, techniques, and procedures.
• Continuously test existing security defences put in place and provide recommendations.
• Monitor, triage, prioritize and investigate security events and alerts, which populates in Splunk, EDR, Cloudwatch, Crowdstrike, Anti-DDoS and/or other deployed solutions.
• Perform incident response activities such as incident analysis, investigation, host triage and recovery, remote system analysis and remediation efforts with solid correlation abilities.
About the teamHere at Amazon, we embrace our differences. We are committed to furthering our culture of inclusion. We have ten employee-led affinity groups, reaching 40,000 employees in over 190 chapters globally. We have innovative benefit offerings, and host annual and ongoing learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences. Amazon s culture of inclusion is reinforced within our 16 Leadership Principles, which remind team members to seek diverse perspectives, learn and be curious, and earn trust.Work/Life BalanceOur team puts a high value on work-life balance. It isn t about how many hours you spend at home or at work; it s about the flow you establish that brings energy to both parts of your life. We believe striking the right balance between your personal and professional life is critical to life-long happiness and fulfillment. We offer flexibility in working hours and encourage you to find your own balance between your work and personal lives.Mentorship & Career GrowthOur team is dedicated to supporting new members. We have a broad mix of experience levels and tenures, and we re building an environment that celebrates knowledge sharing and mentorship. We care about your career growth and strive to assign projects based on what will help each team member develop into a better-rounded professional and enable them to take on more complex tasks in the future.,
• Any Security certifications (CISSP, GCIA GCIH, GCFA, GCFE, etc.)
• Bachelor or Master s in Computer Science or related field.
• Experience with Security Operations, Incident Response, Threat Hunting, detectors building.
• Experience with common attack patterns and exploitation techniques. Ability to write fully functional exploits for common vulnerabilities such as simple stack overflow, cross-site scripting, or SQL injection.
• Experience in using standard Security Assessment and Penetration Testing tools such as BurpSuite, Metasploit, and IDA Pro.
• Knowledge of technical security issues facing large multinational companies.

Keyskills :
system analysisfirewallcustomer relationssecurity operations centernetworkingpenetration testing