Security Engineer, Enterprise Protection Program - Account Misuse Team

Description

The Enterprise Protection Program - Account Misuse Team (EPP-AM) is seeking a Security Engineer to lead the identification, investigation, and mitigation of insider threats to Amazon through advanced data analysis and threat hunting techniques.

We seek a security professional who thrives on "diving deep" into complex data challenges and enjoys the technical aspects of threat hunting. The ideal candidate combines strong analytical and investigation skills with innovative thinking to develop "think big" solutions that advance our security capabilities.

This role offers the opportunity to make a significant impact on Amazon's security posture while working with innovative tools and technologies in a collaborative, fast-paced environment.

Key job responsibilities

Threat Investigation & Analysis:

- Lead daily investigations into active insider threats using data from internal and external sources

- Build sophisticated queries and process large datasets to identify and pursue potential insider threat activity

- Apply deep analytical skills to uncover complex security patterns and anomalies

Innovation & Tool Development:

- Develop proactive, innovative projects that leverage technical expertise to create innovative solutions

- Design and implement tools for detection, mitigation, and prevention of insider threat activity

- Drive security process improvements to strengthen Amazon's internal threat protection capabilities

Cross-Functional Collaboration:

- Partner effectively with HR, legal, engineering, analytics, and prevention teams to execute security initiatives

- Deliver results both independently and through collaborative efforts across multiple partner teams

- Contribute to team knowledge sharing

Leadership & Impact:

- Take ownership of complex security challenges

- Contribute to strategic security planning and process optimization

- Participate in on-call responsibilities (typically one week every two months)

A day in the life

Drive High-Impact Security Solutions:
You'll tackle complex insider threat cases and spearhead strategic projects that directly reduce risk across Amazon's global operations. Each day brings unique challenges as you analyze threat patterns, investigate security incidents, and develop innovative approaches.

Collaborate Across the Enterprise:
Your day involves dynamic interactions with internal security stakeholders, engineering teams, and service partners across both Amazon and AWS. You'll facilitate cross-functional meetings, provide security expertise to diverse teams, and build relationships that enable effective threat mitigation.

Lead Innovation and Process Development:
You'll spend time designing and developing tools that streamline insider threat detection and response; identifying gaps in current processes and architect scalable solutions.

About the team

Diverse Experiences

Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.

Why Amazon Security?

At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.

Inclusive Team Culture

In Amazon Security, it's in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.

Training & Career Growth

We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.

Work/Life Balance

We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there's nothing we can't achieve.

Basic Qualifications

- Bachelor's degree in computer science or equivalent

- 3+ years of troubleshooting systems issues, analyzing logs, or automating basic tasks using command line tools (non-internship) experience

- 3+ years of scripting, programming, and security code review in a common programming language (non-internship) experience

- Experience working with global teams and diverse partners

- 4+ years of fraud investigation, abuse, cyber-crimes, or…