Proactive Security Engineer, Customer Service Security Threat

Job ID: 2912058 | Amazon.com Services LLC

Amazon Customer Service Security's Proactive Security Operations team protects millions of customer interactions daily through innovative security measures. We're seeking a Security Engineer to join our team in Seattle, WA, where you'll design and execute security assessments, hunt for threats across our global infrastructure, and develop tools that enhance our security posture.

Our team safeguards Amazon's Customer Service operations by identifying and addressing security vulnerabilities before they can be exploited. Working at this scale means protecting systems that handle millions of customer interactions across multiple countries, requiring both technical expertise and creative problem-solving skills.

1. Design and execute targeted adversarial emulation campaigns across global infrastructure
2. Lead threat hunting operations using data analytics and custom-built tools
3. Develop and maintain security automation tools that scale across our worldwide operations
4. Transform threat intelligence into actionable security improvements
5. Partner with engineering teams to implement effective security controls
6. Mentor team members and shape our security testing methodologies
7. Drive measurable improvements in our security detection and response capabilities
8. Contribute to the team's technical strategy and roadmap
9. Create and maintain documentation for security operations and tools

A day in the life
As a Security Engineer on the Proactive Security Operations team, no two days are exactly alike, but each day is focused on staying one step ahead of potential threats. Your morning typically starts with the team standup, where you align with colleagues on ongoing projects and identify any blockers that need addressing. After standup you might dive into analyzing data to identify emerging threats targeting customer service operations. By mid-morning, you could be deep into planning an adversarial emulation exercise. Our agile methodology ensures we remain flexible and responsive to emerging threats while continuously improving our capabilities as a team.

The CS Proactive Security Operations (CS-PSO) team is a specialized unit within Amazon's Customer Service Security organization, dedicated to staying ahead of emerging security threats. We are a diverse group of security professionals who combine offensive security expertise, threat hunting capabilities, and innovative thinking to protect one of the world's largest customer service operations.

Our team operates at the intersection of cybersecurity and customer trust, employing advanced techniques to identify potential security threats before they can impact our customers. We're builders and breakers, pushing the boundaries of proactive security while developing custom tools and methodologies tailored to our unique environment.

1. 5+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience
2. 2+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object-oriented language experience
3. Bachelor's degree in computer science or equivalent
4. Knowledge of networking protocols such as HTTP, DNS and TCP/IP
5. Knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits or equivalent
6. Demonstrable knowledge of adversarial emulation and red team operations
7. Experience in threat hunting and threat intelligence analysis

1. Masters degree in computer science, cybersecurity, or related fields
2. Experience with advanced persistent threat (APT) techniques and tactics
3. Strong understanding of MITRE ATT&CK framework and adversary behaviors
4. Expertise in developing and executing sophisticated attack scenarios
5. Experience with threat intelligence platforms and OSINT tools
6. Excellent project management and stakeholder communication abilities
7. Experience leading technical initiatives and mentoring junior engineers
8. Collaborative mindset and ability to work across organizational boundaries
9. AWS Solutions Architect Certification, or ability to attain AWS-SA in the first 12 months.
10. Professional security certifications (OSCP, GXPN, GPEN, GCTI, GCFA, etc.)

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.

Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit this link for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.

Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $136,000/year in our lowest geographic market up to $212,800/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit this link.