Security Engineer, Enterprise Protection Program

Description

Join Amazon's elite Security organization as a Security Engineer within our Enterprise Protection Program, where you will play a crucial role in safeguarding our company against insider risks.

As part of the Enterprise Protection Program, you will be at the forefront of evaluating, investigating, and mitigating active insider risks daily, while designing and implementing sophisticated detections and innovative tooling solutions. We are looking for someone who is passionate about "diving deep" and enjoys building creative solutions to complex security challenges.

In this role, you will also collaborate closely with legal and engineering teams to develop preventative security measures and architect enterprise‑scale tools for rapid investigation and proactive threat detection. The ideal candidate demonstrates exceptional analytical skills, thrives in both independent and collaborative work environments, and excels at cross‑functional partnership. You will have the opportunity to shape the future of enterprise security solutions while working alongside industry‑leading professionals.

This position involves on‑call responsibilities, typically for one week every six months.

• Perform deep‑dive analysis of internal and external datasets to identify trends, anomalies, and activities indicative of insider risks;
• Collaborate with engineering teams to translate use cases into technical requirements, as well as develop, implement, and refine scalable security solutions to identify and mitigate insider risk;
• Assist with identifying and driving opportunities to automate and optimize insider risk analytics, tooling, and processes;
• Contribute to promoting security best practices for identifying and mitigating insider risk by fostering opportunities to collaborate with other EPP and Amazon Security teams, as well as external industry partners;
• Provide guidance to peers, managers, and senior leaders on technical direction and improvement opportunities for insider risk analytics, tooling, and processes.

Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.

Why Amazon Security? At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services.

Inclusive Team Culture:
In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.

Training & Career Growth:
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge‑sharing, training, and other career‑advancing resources here to help you develop into a better‑rounded professional.

Work/Life Balance:
We value work‑life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture.

• 3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object‑oriented language experience
• 2+ years of troubleshooting systems issues, analyzing logs, or automating basic tasks using command‑line tools (non‑internship) experience
• Bachelor's degree in computer science or equivalent
• 2+ years of scripting, programming, and security code review in a common programming language (non‑internship) experience
• Knowledge of networking protocols such as HTTP, DNS and TCP/IP
• Knowledge of industry‑based security vulnerabilities and remediation techniques

• 2+ years of any combination of the following: threat modeling experience, secure coding, identity management and…