Description

Are you passionate about protecting Amazon's customers from emerging cyber threats? Join our team to develop innovative detection capabilities that defend against sophisticated attacks at massive scale.

Key job responsibilities

As a Security Engineer on the Threat Discovery and Detection (TD2) team within Customer Service Security, you'll be instrumental in developing and implementing advanced threat detection mechanisms that safeguard Amazon's customer service operations. You'll work at the intersection of security research and detection engineering, leveraging modern security tools and techniques to identify and prevent potential security incidents.

You'll be responsible for designing, implementing, and optimizing detection rules and systems that monitor and analyze security-related activities across our infrastructure. Your expertise will be crucial in developing scalable detection solutions that enable proactive threat identification, behavioral analysis, and risk mitigation.

In this role, you'll collaborate closely with data engineers, data scientists, and incident responders to transform security requirements into effective detection capabilities. You'll utilize advanced security platforms and AWS services to build comprehensive detection frameworks that protect our customers and systems from evolving security risks.

A day in the life

• Design and implement detection logic to identify sophisticated attack patterns and anomalous behaviors

• Develop and optimize detection rules across multiple security monitoring platforms

• Research and analyze emerging attack patterns and techniques to enhance detection capabilities

• Collaborate with data teams to ensure detection systems effectively utilize available telemetry

• Present detection strategies to stakeholders and incorporate feedback into implementations

• Troubleshoot detection accuracy issues and tune rules to reduce false positives

About the team

The Threat Discovery and Detection (TD2) team is a critical component of the Customer Service Security organization. Our mission is to protect Amazon customer data and ensure operational integrity through advanced detection techniques and continuous monitoring. We develop innovative solutions that identify internal threats impacting Customer Service and establish a multi-layered defense strategy.

In the coming years, we're focused on expanding our detection coverage, implementing machine learning-based detection capabilities, and enhancing our ability to identify sophisticated threats in real-time. As a Security Engineer, you'll be at the forefront of these initiatives, helping to shape the future of threat detection at Amazon.

Basic Qualifications

• 3+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience

• Bachelor’s degree in Computer Science, Engineering, related discipline, or equivalent experience with 3+ years of security engineering experience

• Experience performing secure code review and writing scripts to automate security functions & solve security problems with automation

• Strong programming skills in SQL, Python, Java, or similar languages

Preferred Qualifications

• Knowledge of threat hunting and incident response processes

• Familiarity with cloud security and AWS security services

• Experience with machine learning applications in security

• Experience with SIEM platforms and security monitoring tools

• Strong understanding of the MITRE ATT&CK framework and attack methodologies

• Expertise in developing and implementing detection rules and logic

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.

Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.

Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $136,000/year in our lowest geographic market up to $212,800/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits . This position will remain posted until filled. Applicants should apply via our internal or external career site.