Security Engineer

Do you want to work on planetary scale incident response solutions in the cloud? Are you skilled at performing Incident Response activities and helping customers build threat detection and incident response capabilities using highly scalable computing architectures? Are you excited to help customers respond to security incidents and automate security operations giving them unprecedented capability and agility? Do you enjoy working on fast‑paced complex projects focused on game‑changing business outcomes for customers globally? As a member of the Threat Detection and Incident Response Practice in the AWS Global Service Security you will have the opportunity to help customers respond to security incidents and pioneer technically superb security solutions to help customer operate securely in the cloud. Building on those experiences you’ll collaborate with AWS service teams on new features, innovate with new technologies, and explore new challenges.

• Successful applicants must have the legal right to work in the UK

• Perform and oversee security incident response operations
• Become a deep technical resource that earns the trust of customer stakeholders before, during, and after a security event
• Independently contribute to teams that include Amazonians, partners, and customers to build and deploy threat detection and incident response capabilities
• Design, build, and deploy solutions to automate security operations and incident response on AWS
• Independently contribute to internal builder projects to develop new consulting engagement models and capabilities for customers
• Develop high‑quality content, such as automation tools, reference architectures, and white papers to help our consultants, partners, and customers build on the work that we deliver
• Innovate on behalf of customers by translating your thoughts into actionable results
• Mentor and invest in our consultants, partners, and customers to raise the bar for our customers
• Periodic on‑call required

Diverse Experiences: AWS values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job below, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.

Why AWS?: Amazon Web Services (AWS) is the world’s most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating — that’s why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses.

Inclusive Team Culture: Here at AWS, it’s in our nature to learn and be curious. Our employee‑led affinity groups foster a culture of inclusion that empower us to be proud of our differences. Ongoing events and learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (diversity) conferences, inspire us to never stop embracing our uniqueness.

Mentorship & Career Growth: We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge‑sharing, mentorship and other career‑advancing resources here to help you develop into a better‑rounded professional.

Work/Life Balance: We value work‑life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.

• Experience performing incident response activities and 1+ year of experience building/operating on the AWS platform and 3+ years of experience in technical IT security or related job role
• 2+ years of threat detection or incident response experience. Hands‑on technical experience in incident response technology, security, automation, implementation, integration, and/or deployment.
• This role requires you to be a UK national

• Hands‑on technical experience in building scripts, tools, or methodologies that enhance customers’ threat detection and incident response capabilities.
• Strong scripting skills in modern scripting languages like PowerShell, Python, Node.js, Javascript, Bash, Ruby, or SQL.
• Experience communicating complex technical matters clearly and concisely orally and in writing and experience managing customers during a security event, including managing customer expectations and delivering results.

Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice https://www.amazon.jobs/en/privacy_page to know more about how we collect, use, and transfer the personal data of our candidates.

Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.

If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.