Jobfoundry
Jobfoundry
Amazon

Security Engineer, AWS Security Incident Response

Amazon
BusinessSG, SingaporeFull-time3 weeks ago
Apply Now

About the role

AI summarised

AWS Security Incident Response is seeking a Security Engineer to monitor networks and systems for threats, perform triage, and lead incident response. The role involves developing security automation, improving detective controls, and providing on-call support. The ideal candidate has a bachelor's degree in a related field, experience with web protocols and security attacks, and knowledge of system, network, and OS.

BusinessFull-timeSolutions Architect

Key Responsibilities

  • Respond to threat findings that indicate unauthorized activity has occurred
  • Identify, evaluate and communicate security threats, risks and vulnerabilities, and propose recommended remediation for security issues.
  • Contribute to the development of security automation and security posture improvements.
  • Track and report on the effectiveness of AWS detective controls such as Amazon GuardDuty and partner products such as CrowdStrike Falcon or Wiz Defend
  • Develop processes and policies to increase security response effectiveness.
  • On-call support: This role requires periodic on-call responsibilities including weekends.
  • Monitor networks and systems for potential threats, perform triage for security alerts, document suspicious activity, and report issues so they can be adequately handled.
  • Work alongside security engineers and partner teams to perform daily threat detection and incident response, using the full capability of AWS technologies and services to detect and mitigate cyber threats at a massive scale and help protect AWS Customers.

Requirements

  • Bachelor's degree in Engineering, Computer Science, or a related field
  • Experience with web protocols, common security attacks, and remediation (non-internship)
  • Knowledge of system, network and OS
  • Experience solving basic problems by writing code or scripts with some assistance
  • Experience with AWS services or other cloud offerings
  • Experience triaging security alerts, front-line analysis, and escalation
  • GCIH (GIAC Certified Incident Handler) or GSEC (GIAC Security Essentials) or Security+