Responsibilities
- Create techniques and tools for the automated detection of malicious activities
- Work with engineering stakeholders to securely design systems and fix security issues
- Create workflows and processes to intake, triage, and resolve security issues
- Execute proactive threat modeling and implement measures to strengthen the preventative controls of our cloud infrastructure
- Coordinate our response procedures during active security incidents
- Empower engineers by conducting regular security incident response trainings creating an environment of security awareness
- Support vulnerability scanning and remediation
Requirements
- Practical knowledge of AWS cloud services and structure
- Networking fundamentals at both WAN and LAN
- Microservice architecture fundamentals, including K8 and Docker
- Experience in vulnerability management, risk quantification, and remediation
- Ability to perform root cause analysis on past security incidents to recommend improvements, or prior SOC and incident response
- Skills in at least one programming or scripting language, such as Go, Java, Python, JavaScript, or Ruby
Nice to haves
These aren’t required, but be sure to mention them in your application if you have them.
- Japanese or Mandarin fluency
- Program Management or Data Science experience
- Network detection experience at various TCP/IP layers
- Strong knowledge of the AWS suite of security-related services with a certification as an AWS Security Specialist
- Experience with the operation of cloud-based infrastructure and API security using services such as AWS EC2 security groups, AWS Web Application Firewall, or AWS Shield
- Past work experience with cloud-based security services like AWS Security Hub, Amazon GuardDuty, Amazon Inspector, Amazon Detective, or AWS Config
- Skills in infrastructure-as-code technologies, such as Terraform or CloudFormation
- Blue Team or exploit development experience