Security Engineer II Threat Hunting

Amazon.Com, Inc. Seattle , WA 98113

Posted 3 weeks ago

Threat Hunting plays a crucial role in a modern Information Security organization. Defenses continue to become increasingly complex, providing opportunities for attackers to be creative and get around them. In cases like these, the only thing standing between an attacker and their goal is the Threat Hunter, who is watching their every move and acting to eliminate the threat.

Amazon's Threat Hunting team is looking for individuals who are excited by the idea of finding threats in ways where no other defense mechanism can, eradicating threats and building new intelligence to prevent future attacks from succeeding. The Threat Hunting team hunts for adversarial activity within Amazon using a variety of analytic techniques, data sources, and threat intelligence. This role is behind the keyboard for the hunt, helping to root out known and unknown malicious activities from the environment using a variety of dynamic methods, tools, and procedures.

Threat Hunting is a force multiplier for security practitioners across Amazon through the production of intelligence about adversaries they find, producing artifacts and insights that are integrated into a variety of security solutions. To achieve this, Threat Hunters are required to keep an open mind and pivot quickly between activities based on priorities and ongoing intelligence.

Threat Hunters are frequently asked to work with ambiguity and limited data to achieve these goals, but are trusted to explore new ideas and engage with teams throughout Amazon to overcome these hurdles. Creativity and curiosity are imperative in this role in order to think like and find adversaries, and investments are made into Threat Hunters to ensure they have the skills, training and tools to do so. Lastly, it is important that Threat Hunters are leaders, able to communicate clearly, rise above team boundaries and inspire teams and individuals to join them in eradicating adversarial activity with the ultimate goal of ensuring our customers are protected.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Senior Security Ops Engineer


Posted 4 days ago

VIEW JOBS 5/21/2020 12:00:00 AM 2020-08-19T00:00 Who we are: SoFi is a digital personal finance company whose mission is to help its members achieve financial independence to realize their ambitions, whether that be to buy a house one day, start a family on their own terms or be debt free. We aim to be at the center of our members' financial lives, and to help every member Get Their Money Right®. By joining SoFi, you'll become part of a forward-thinking company that is transforming financial services by embracing technology to build innovative loan products, investment tools, and more. One of the fastest growing fintech companies, we've grown from 250 employees in 2015 to over 1,500 employees today, and are well on our way to reaching 1 million members. With offices across the US, we offer the excitement of a rapidly growing startup with the stability of a seasoned management team and some of the best talent around. As an employer, we strive to hire employees who are committed to both our company's mission and our desire to build the best culture in the world. If you are driven, passionate about what you do, and excited about the SoFi mission, we would love to hear from you. The Role SoFi is a mission driven company where we are laser focused on helping our members get their money right. We're doing this by providing a set of game changing capabilities for our members across a broad set of financial products that our members use daily -- moving from a high pressure, transaction based sales relationship to a mutually beneficial, incentive-aligned lifetime relationship. We are looking for a talented Senior Security Operations Engineer that's both excited about this mission and about using technology to help make our members financial lives better. The Senior Security Operations Engineer operates and maintains the Security team's portfolio of vulnerability management, Security Incident and Event Management (SIEM), automation, and authentication tools. Additional tasks include forensic recovery/support, event management, spam investigation, threat feed management, penetration tests findings mitigation, proactive defense, network sensor auditing, and security event management. This role will focus heavily on operational and strategic level tasks, and provide counsel and guidance to the junior level security operations engineers in the department. The Senior Operations Engineer also serves in an engineering and architectural capacity, providing not only the appropriate information and planning required for new technology and policy deployments but should have the skills to help drive the solution forward. The ideal candidate is hands-on, articulate and focused, and can own projects, features and functionality; enjoys learning and mentoring others. We're looking for a world-class security operations engineer to help create a world class security operations environment. What you'll do: * Take the lead in engineering, architecting and deploying security operations tools and processes * Work with cross functional teams to engineer, design and deploy security operations solutions * Proactively identify, troubleshoot, and mitigate vulnerabilities and provide metrics for reporting * Participate in incident response, threat modeling,threat intelligence gathering and analysis, and threat hunting * Help expand defense-in-depth security for the organization to protect critical IT assets and data from internal and external threats * Assist in the development, execution, and enforcement of security processes, policies, and procedures * Monitor computer networks for security issues. * Investigate security breaches and other cyber security incidents. * Document security breaches and assess the damage they cause. * Monitor and track known vulnerabilities in our applications and infrastructure. * Work with teams to fix the vulnerabilities in their respected areas * Stay current on IT security trends and news. * Work with the security team to develop company-wide best practices for security. * Research security enhancements and make recommendations to management. * Stay up-to-date on information technology trends and security standards. What you'll need: * Bachelor's degree in computer science or a related field. * 6+ years of experience in information security or related field. * Understanding of DNS, firewalls, proxies, WAFs, SIEM, antivirus, and IDPS concepts. * Ability to identify and mitigate vulnerabilities and explain how to avoid them. * Experience in network administration and security. * Experience in Web Application security and OWASP Top 10 knowledge. * Experience in UNIX/Linux operating systems administration. * Experience with configuration management tooling such as Salt. * Understanding of database administration and security issues related to relational databases (MySQL or Postgres). * Experience with AWS cloud security and best practices * Ability to thrive in a fast-paced growing company. * Ability to drive a project from inception to completion. Nice to haves: * Working knowledge of Python or other scripting language. * Working experience with Java (or another Object-Oriented Programming language). * Familiarity with at-scale services. * Familiarity with Docker and kubernetes. * Familiarity with secure coding practices. * Familiarity with security standards such as PCI DSS, ISO 27001, etc. * Experience working with identity and access control management solutions. * Familiarity with infrastructure best practices. * Experience working in a risk-based security program. Why you'll love working here: * Competitive salary packages and bonuses * Comprehensive medical, dental, vision and life insurance benefits * Generous vacation and holidays * Paid parental leave for eligible employees * 401(k) and education on retirement planning * Tuition reimbursement on approved programs * Monthly contribution up to $200 to help you pay off your student loans * Great health & well-being benefits including: telehealth parental support, subsidized gym program * Employer paid lunch program (except for remote employees) * Fully stocked kitchen (snacks and drinks) Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records. SoFi provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion (including religious dress and grooming practices), sex (including pregnancy, childbirth and related medical conditions, breastfeeding, and conditions related to breastfeeding), gender, gender identity, gender expression, national origin, ancestry, age (40 or over), physical or medical disability, medical condition, marital status, registered domestic partner status, sexual orientation, genetic information, military and/or veteran status, or any other basis prohibited by applicable state or federal law. Sofi Seattle WA

Security Engineer II Threat Hunting

Amazon.Com, Inc.