Security Engineer, Enterprise Protection Program - Account Misuse Team

• The Enterprise Protection Program
• Account Misuse Team (EPP-AM) is seeking a Security Engineer to lead the identification, investigation, and mitigation of insider threats to Amazon through advanced data analysis and threat hunting techniques.

We seek a security professional who thrives on "diving deep" into complex data challenges and enjoys the technical aspects of threat hunting. The ideal candidate combines strong analytical and investigation skills with innovative thinking to develop "think big" solutions that advance our security capabilities. This role offers the opportunity to make a significant impact on Amazon's security posture while working with innovative tools and technologies in a collaborative, fast-paced environment.

Key job responsibilities

Threat Investigation & Analysis:

• Lead daily investigations into active insider threats using data from internal and external sources
• Build sophisticated queries and process large datasets to identify and pursue potential insider threat activity
• Apply deep analytical skills to uncover complex security patterns and anomalies

Innovation & Tool Development:

• Develop proactive, innovative projects that leverage technical expertise to create innovative solutions
• Design and implement tools for detection, mitigation, and prevention of insider threat activity
• Drive security process improvements to strengthen Amazon's internal threat protection capabilities

Cross-Functional Collaboration:

• Partner effectively with HR, legal, engineering, analytics, and prevention teams to execute security initiatives
• Deliver results both independently and through collaborative efforts across multiple partner teams
• Contribute to team knowledge sharing

Leadership & Impact:

• Take ownership of complex security challenges
• Contribute to strategic security planning and process optimization
• Participate in on-call responsibilities (typically one week every two months)

A day in the life
Drive High-Impact Security Solutions: You'll tackle complex insider threat cases and spearhead strategic projects that directly reduce risk across Amazon's global operations. Each day brings unique challenges as you analyze threat patterns, investigate security incidents, and develop innovative approaches.

Collaborate Across the Enterprise: Your day involves dynamic interactions with internal security stakeholders, engineering teams, and service partners across both Amazon and AWS. You'll facilitate cross-functional meetings, provide security expertise to diverse teams, and build relationships that enable effective threat mitigation.

Lead Innovation and Process Development: You'll spend time designing and developing tools that streamline insider threat detection and response; identifying gaps in current processes and architect scalable solutions.

About the team
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.

Why Amazon Security?
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.

Inclusive Team Culture:

In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.

Training & Career Growth:

We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.

Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.

Basic Qualifications

• Bachelor's degree in computer science or equivalent
• 3+ years of troubleshooting systems issues, analyzing logs, or automating basic tasks using command line tools (non-internship) experience
• 3+ years of scripting, programming, and security code review in a common programming language (non-internship) experience
• Experience working with global teams and diverse partners
• 4+ years of fraud investigation, abuse, cyber-crimes, or equivalent experience

Preferred Qualifications

• Experience with AWS products and services
• 2+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience
• Knowledge of command line tools to troubleshoot protocols, analyze log outputs, or automate basic tasks
• Experience in running SQL queries and data mining

Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.

Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.

The base salary range for this position is listed below. Your Amazon package will include sign-on payments and restricted stock units (RSUs). Final compensation will be determined based on factors including experience, qualifications, and location. Amazon also offers comprehensive benefits including health insurance (medical, dental, vision, prescription, Basic Life & AD&D insurance and option for Supplemental life plans, EAP, Mental Health Support, Medical Advice Line, Flexible Spending Accounts, Adoption and Surrogacy Reimbursement coverage), 401(k) matching, paid time off, and parental leave. Learn more about our benefits at https://amazon.jobs/en/benefits.

USA, VA, Herndon - 159,300.00 - 202,400.00 USD annually
USA, WA, Seattle - 159,300.00 - 202,400.00 USD annually