Fulltime Cloud Security Analyst openings in Seattle, United States on September 15, 2022

Security Operations Analyst, AWS Cloud Security at Amazon Web Services

Location: Seattle

Description

Job summary

The AWS Cloud Response Team is responsible for the security and availability of AWS Cloud services. Our primary focus is to ensure the security of our cloud products and continuously raise the security bar for our customers. This role requires Security Analysts to work with internal stakeholders to solve security challenges at massive scale, and to think strategically to develop and implement changes to drive automation, scalability, and continuous improvements across the organization.

Were looking for talented IT and/or project management-savvy professionals with a passion for security who thrive in high pressure environments to help us continue to raise the security bar for cloud computing.

This role will be located in Seattle, WA. (Relocation Required)

Successful candidates should:
• be able to understand technical vs. business risks and consistently drive internal engineering teams to take the correct actions to mitigate risks in a timely manner.
• actively seek areas of opportunity to improve the Security Incident Handling Lifecycle, saving time/effort while continuously delivering higher-quality outcomes for the security of AWS customers.
• demonstrate a mix of both broad and deep process and/or technical knowledge.
• be passionate and knowledgeable in the fields of process improvement, risk assessment, network and operating system security, software security, and security operations.
• possess a combination of troubleshooting, technical, and communication skills, as well as the ability to handle a mix of disparate tasks which may include small-project and software development work.
• be comfortable exemplifying the Amazonian Leadership Principle of “Deliver Results” and “Bias for Action”, challenging decisions and escalating when appropriate.
This role will provide career growth opportunities as you gain new security skills in the course of your duties.

Key job responsibilities
• Manage security issues and engage with partner security teams and internal service teams to ensure timely remediation of issues, escalating as necessary to ensure appropriate levels of urgency and engagement.
• Participate in efforts to promote security throughout the Company and build good working relationships within the team and with others across Amazon.
• Demonstrate high capacity and tolerance for extreme context switching and interruptions while remaining productive and effective.
• Proactive knowledge-sharing within the team and across the company.
About the team

Our team is dedicated to supporting new members. We have a broad mix of experience levels and tenures, and were building an environment that celebrates knowledge sharing and mentorship. We care about your career growth and strive to assign projects based on what will help each team member develop into a better-rounded security champion and enable them to take on more complex and higher-risk tasks in the future.

Our team also puts a high value on work-life harmony. Striking a healthy balance between your personal and professional life is crucial to your happiness and success here, which is why we arent focused on how many hours you spend at work or online. Instead, were happy to offer a flexible schedule so you can have a more productive and well-balanced lifeboth in and outside of work. Our global on-call rotation ensures issues are handled 24×7 without the need to interrupt typical sleep schedules.

Here at AWS, we embrace our differences. We are committed to furthering our culture of inclusion. We have ten employee-led affinity groups, reaching 40,000 employees in over 190 chapters globally. We have innovative benefit offerings, and we host annual and ongoing learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences. Amazons culture of inclusion is reinforced within our Leadership Principles, which remind team members to seek diverse perspectives, Learn and Be Curious, and Earn Trust.

BASIC QUALIFICATIONS
• BS degree in Information Technology, Information Security, Computer Science, Computer Engineering, Electrical Engineering, or 2+ years equivalent technology experience.
• 2+ years of demonstrated experience with a focus in areas such as systems, network, and/or application security/audit, cyber security.
PREFERRED QUALIFICATIONS
• 2+ years of experience in fields such a Security Operations, technology audit, or security vulnerability lifecycle.
• Design and coordinate cohesive responses to security events that involve multiple teams across an organization.
• Confidently and intelligently respond to security incidents, and programmatically prevent the same type of incidents from occurring in the future.
• Ability to prioritize multiple tasks and projects.
• Have a passion to learn and thrive in a dynamic and constantly changing environment.
• Experience with virtualization technologies, especially with AWS services.
• Relevant industry certifications such as CISSP, SANS, ISC2, CompTia, etc.
• Maturity, judgment, negotiation/influence skills, analytical skills, and leadership skills.
• Demonstrated knowledge of web protocols, common attacks, and working knowledge of Linux/Unix tools and architecture.
• Understanding of best practices across multiple security disciplines/domains.
• Demonstrated ability to work autonomously with a Bias for Action, critical and creative thinking.
• Demonstrated ability to collaborate, develop partnerships, and work effectively as a member of a global, inclusive team.
• Meets/exceeds Amazons Leadership Principle requirements for this role.
• Meets/exceeds Amazons functional/technical depth and complexity for this role.
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit
Apply Here
For Remote Security Operations Analyst, AWS Cloud Security roles, visit Remote Security Operations Analyst, AWS Cloud Security Roles

********

Security Engineer at Amazon Web Services, Inc.

Location: Seattle

BS degree in Computer Science, Computer Engineering, Electrical Engineering, or 3+ years’ equivalent technology experience.

Minimum of 5 years or more of demonstrated experience with a focus in areas such as systems, network, and/or application security.
Minimum of 2 years experience on a Security Operations team, especially experience coordinating responses to security incidents.

Job summary
The AWS Cloud Response Team is responsible for the security and availability of AWS Cloud services.

Our primary focus is to ensure the security of our cloud products and continuously raise the security bar for our customers.

This role requires Security Analysts to work with internal stakeholders to solve security challenges at massive scale, and to think strategically to develop and implement changes to drive automation, scalability, and continuous improvements across the organization.

We’re looking for talented IT and/or project management-savvy professionals with a passion for security who thrive in high pressure environments to help us continue to raise the security bar for cloud computing.
This role will be located in Seattle, WA.

The successful candidate will have a good mix of deep technical knowledge and a demonstrated background in information security.

We value broad and deep technical knowledge, specifically in the fields of cryptography, network security, software security, malware analysis, forensics, security operations, incident response, and emergent security intelligence.

An ideal candidate should be able to accomplish most of the following: – Confidently and intelligently respond to security incidents, and proactively consider how to prevent the same type of incidents from occurring in the future.
Design and coordinate cohesive responses to security events that involve multiple teams across the organization.

Build security utilities and tools for internal use that enable you and your fellow Security Engineers to operate at high speed and wide scale.
Evaluate the impact to the organization of current security trends, advisories, publications, and academic research. Coordinate responses as necessary across affected teams to do the right thing for our customers and our organization.
Ability to communicate effectively at multiple levels of sensitivity, and multiple audiences.

Recognize, adopt and instill the best practices in security engineering fields throughout the organization: development, cryptography, network security, security operations, incident response, security intelligence.
Provide subject matter expertise on architecture, authentication and system security.
Fulfill regular on-call responsibilities.

Key job responsibilities
Our team is dedicated to supporting new members.

We have a broad mix of experience levels and tenures, and we’re building an environment that celebrates knowledge sharing and mentorship.

We care about your career growth and strive to assign projects based on what will help each team member develop into a better-rounded security champion and enable them to take on more complex and higher-risk tasks in the future.
Our team also puts a high value on work-life harmony.

Striking a healthy balance between your personal and professional life is crucial to your happiness and success here, which is why we aren’t focused on how many hours you spend at work or online.

Instead, we’re happy to offer a flexible schedule so you can have a more productive and well-balanced life—both in and outside of work.
Our global on-call rotation ensures issues are handled 24×7 without the need to interrupt typical sleep schedules.

Here at AWS, we embrace our differences. We are committed to furthering our culture of inclusion. We have ten employee-led affinity groups, reaching 40,000 employees in over 190 chapters globally.

We have innovative benefit offerings, and we host annual and ongoing learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences.

Amazon’s culture of inclusion is reinforced within our Leadership Principles, which remind team members to seek diverse perspectives, Learn and Be Curious, and Earn Trust.
5+ years’ equivalent information security experience.
3+ years experience with internet security issues, cloud architectures, and threat landscape.
Experience with virtualization technologies, especially with AWS services.
Relevant industry certifications from SANS, ISC2, etc.
Maturity, judgment, negotiation/influence skills, analytical skills, and leadership skills.
Strong demonstrated knowledge of web protocols, common attacks, and an in-depth knowledge of Linux/Unix tools and architecture.
Ability to prioritize multiple tasks and projects in a dynamic environment.
Effective written and oral communication with multiple levels of leadership involving both business and technical sides of the business.
Meets/exceeds Amazon’s leadership principles requirements for this role
Meets/exceeds Amazon’s functional/technical depth and complexity for this role

Amazon is committed to a diverse and inclusive workplace.

Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.
For individuals with disabilities who would like to request an accommodation, please visit
Apply Here
For Remote Security Engineer roles, visit Remote Security Engineer Roles

********

Application Security Engineer at Amazon Dev Center U.S., Inc.

Location: Seattle

BS in Computer Science or related field, or equivalent work experience.

Minimum of 3 years of experience with any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security.

Intermediate knowledge and understanding of security engineering, system and network security, authentication and security protocols, cryptography, or application security.
Job summary

This role is open to alternative locations including: New York, NY – Boston, MA – Seattle, WA – Vancouver, BC Canada – Herndon, VA – Arlington, VA – Baltimore, MD – San Luis Obispo, CA – San Diego, CA

Help us protect not only the Amazon Web Services (AWS) cloud computing environment but all of our customers as well Since 2006, our great team at AWS has been enabling our customers to bring great ideas to life in ways that aren’t possible in traditional IT environments.

With AWS you can flexibly harness compute, storage, security, and other services from across the globe as your business demands them.

AWS Security is on the cutting edge of many security issues for a wide variety of platforms and technologies including cloud services, Internet of things (IoT), identity and access management, mobile devices, virtualization and custom hardware, all operating at massive scale.
Similarly, our highly collaborative team is committed to each team member’s growth as our business grows.

AWS Security is looking for an Application Security Engineer to help validate that our services, applications, and websites are designed and implemented to the highest security standards.

You will be responsible for analyzing the security of applications and services, discovering and addressing security issues, building security automation, and quickly reacting to new threat scenarios.

You will have the opportunity to learn from, and be mentored by, those who are building and securing our cutting-edge services.

A Security Engineer II at Amazon is expected to be strong in multiple domains and provide significant contributions to the AWS IT Security team and to multiple groups throughout Amazon.

Security engineers are expected to develop elegant solutions to complex business problems and apply appropriate technologies while following security engineering best practices.
A Security Engineer II must foster constructive dialogue and seek resolution when confronted with discordant views.

Engineers in this role are expected to participate fully in the planning of the AWS IT Security team’s work and constantly seek opportunities for process improvement.

A successful candidate will need a combination of troubleshooting, technical, and communication skills, as well as the ability to handle a mix of disparate tasks which may include project and software development work.
This role will provide career growth opportunities as you gain new security skills in the course of your duties.

Inclusive Team Culture
Here at AWS, we embrace our differences. We are committed to furthering our culture of inclusion. We have ten employee-led affinity groups, reaching 40,000 employees in over 190 chapters globally.

We have innovative benefit offerings, and host annual and ongoing learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences.

Amazon’s culture of inclusion is reinforced within our 16 Leadership Principles, which remind team members to seek diverse perspectives, learn and be curious, and earn trust.

Work/Life Balance
Our team puts a high value on work-life balance.

It isn’t about how many hours you spend at home or at work; it’s about the flow you establish that brings energy to both parts of your life.
We believe striking the right balance between your personal and professional life is critical to life-long happiness and fulfillment.

We offer flexibility in working hours and encourage you to find your own balance between your work and personal lives.

Mentorship & Career Growth
Our team is dedicated to supporting new members.

We have a broad mix of experience levels and tenures, and we’re building an environment that celebrates knowledge sharing and mentorship.

We care about your career growth and strive to assign projects based on what will help each team member develop into a better-rounded professional and enable them to take on more complex tasks in the future.
Key job responsibilities

Application security reviews (threat model, design review, code reviews)
Secure architecture design
Projects and research work as needed
Security training and outreach to internal development teams
Create and improve security guidance documentation
Create and improve security tool/process development to scale security review mechanims
Security metrics delivery and improvements
Assistance with recruiting activities and administrative work

Experience implementing security solutions at the business division level
Able to work in a diverse team
An understanding of network and web related protocols (such as, TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)
An understanding of web services
Experience with multiple programming languages (such as, Java, C++, Ruby, Python, Perl, etc.)
Excellent written and verbal communication skills
Demonstrable teamwork skills and resourcefulness
Possess self-drive to keep moving things forward even in the face of ambiguity and imperfect knowledge (avoid “analysis paralysis”)
Strong sense of ownership, urgency, and drive
Sharp analytical abilities and proven design skills

Amazon is committed to a diverse and inclusive workplace.

Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.
For individuals with disabilities who would like to request an accommodation, please visit
Apply Here
For Remote Application Security Engineer roles, visit Remote Application Security Engineer Roles

********

Security Engineer at Amazon Dev Center U.S., Inc.

Location: Seattle

• BS in Computer Science or related field, or equivalent work experience
• Minimum of 3 years of experience in Security Engineering or Vulnerability Research capabilities, supporting projects from concept to delivery, and 2 years in two or more of the following technical categories: Scaling security assessments (e.g. automating workflows relating to vulnerability research)
• Virtualization/OS security (Linux, Xen, KVM, QEMU)
• Static analysis and source auditing
• Fuzzing and dynamic security testing
• 3+ years of experience performing security testing of C/C++/Java projects
Job summary
• *This role is open to alternative locations including: New York, NY – Boston, MA – Seattle, WA – Vancouver, BC Canada – Herndon, VA – Arlington, VA – Baltimore, MD – San Luis Obispo, CA – San Diego, CA

Help us protect not only the Amazon Web Services (AWS) cloud computing environment but all of our customers as well Since 2006, our great team has been enabling our customers to bring great ideas to life in ways that aren’t possible in traditional IT environments.

With us you can flexibly harness compute, storage, security, and other services from across the globe as your business demands them.

AWS Security is on the cutting edge of many security issues for a wide variety of platforms and technologies including cloud services, Internet of things (IoT), identity and access management, mobile devices, virtualization and custom hardware, all operating at massive scale.
Similarly, our highly collaborative team is committed to each team member’s growth as our business grows.

As a part of the AppSec team, we help AWS invest in emerging technologies securely.

We are looking for a technically deep Senior Security Engineer to help secure the open-source dependencies of AWS and our customers.

You will be responsible for developing tooling that will help detect security issues at scale, validating discovered issues in existing code, and working to ensure all issues are properly remediated.

The successful candidate must be comfortable leveraging deep security expertise to ensure proper security testing strategy, execution and remediation across a portfolio of open-source projects.
You will provide crystal-clear technical direction and risk mitigation guidance for diverse engineering and business leaders at all levels.

By applying your hard-earned years of practical security expertise to strengthen the security maturity of open-source projects used by AWS and its customers, you will literally grow the future of secure cloud computing.

A Security Engineer at Amazon is expected to be strong in multiple domains and provide significant contributions to the Security team and to multiple groups throughout Amazon.
A Security Engineer should foster constructive dialogue and seek resolution when confronted with discordant views.

Engineers in this role are expected to participate fully in the planning of the IT Security team’s work and constantly seek opportunities for process improvement.

They should also have a deep understanding of at least one specialty for which they are a sought out resource (both within AWS Security and by groups throughout Amazon), while having an understanding of the application of information security in a broad range of technical areas.

A successful candidate will need a combination of troubleshooting, technical, and communication skills, as well as the ability to handle a mix of disparate tasks which may include project and software development work.
This role will provide career growth opportunities as you gain new security skills in the course of your duties.

Responsibilities:
Triaging open-source projects for analysis
Source auditing and static analysis of selected projects
Designing and implementing dynamic testing infrastructure to scale out impact
Coordinating with AWS and external parties to drive timely and customer-focused remediation of discovered issues
Contributing to maturity of upstream projects by sharing harnesses, toolchains, scripts, issue patterns, etc.

Inclusive Team Culture
Here at AWS, we embrace our differences. We are committed to furthering our culture of inclusion. We have ten employee-led affinity groups, reaching 40,000 employees in over 190 chapters globally.

We have innovative benefit offerings, and host annual and ongoing learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences.

Amazon’s culture of inclusion is reinforced within our 16 Leadership Principles, which remind team members to seek diverse perspectives, learn and be curious, and earn trust.
Work/Life Balance
Our team puts a high value on work-life balance.

It isn’t about how many hours you spend at home or at work; it’s about the flow you establish that brings energy to both parts of your life.
We believe striking the right balance between your personal and professional life is critical to life-long happiness and fulfillment.

We offer flexibility in working hours and encourage you to find your own balance between your work and personal lives.
Mentorship & Career Growth
Our team is dedicated to supporting new members.

We have a broad mix of experience levels and tenures, and we’re building an environment that celebrates knowledge sharing and mentorship.

We care about your career growth and strive to assign projects based on what will help each team member develop into a better-rounded professional and enable them to take on more complex tasks in the future.
• MS in Computer Science, Information Security, or related field, or equivalent work experience
• Demonstrated ability to prepare technical specifications and executive-ready communications
• Demonstrated understanding of crypto basics (encryption, signing, certificates, common algorithms)
• Experience with open-source development
• Experience using AWS core services (EC2, S3, IAM, Kinesis, Lambda, KMS, VPC, etc)
• Expert knowledge of Linux, and hypervisor security (especially in cloud environments)
• Experience with CodeQL or other formalized description languages
• Knowledge of common security-relevant protocols (e.g. SSH, TLS, DNS, DHCP, NTP, ICMP)
• *This role is open to alternative locations including: New York, NY – Boston, MA – Seattle, WA – Vancouver, BC Canada – Herndon, VA – Arlington, VA – Baltimore, MD – San Luis Obispo, CA – San Diego, CA.

Meets/exceeds Amazon’s leadership principles requirements for this role
Meets/exceeds Amazon’s functional/technical depth and complexity for this role

#AppSec

Amazon is committed to a diverse and inclusive workplace.

Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.
For individuals with disabilities who would like to request an accommodation, please visit
Apply Here
For Remote Security Engineer roles, visit Remote Security Engineer Roles

********

Cyber Security Operations Analyst at Costco Wholesale

Location: Seattle

This is an environment unlike anything in the high-tech world and the secret of Costco’s success is its culture. The value Costco puts on its employees is well documented in articles from a variety of publishers including Bloomberg and Forbes. Our employees and our members come FIRST. Costco is well known for its generosity and community service and has won many awards for its philanthropy. The company joins with its employees to take an active role in volunteering by sponsoring many opportunities to help others. In 2018, Costco contributed over $39 million to organizations such as United Way and Children’s Miracle Network Hospitals.

Costco IT is responsible for the technical future of Costco Wholesale, the second largest retailer in the world with wholesale operations in twelve countries. Despite our size and explosive international expansion, we continue to provide a family, employee centric atmosphere in which our employees thrive and succeed. As proof, Costco consistently ranks in the top five of Forbes “America’s Best Employers”.

The role of every Information Security team member is to support the overarching values and business goals of Costco Wholesale as they relate to meeting legal, ethical and regulatory obligations. The Cyber Security Operations Analyst is the liaison between the business, stakeholders, supporting teams and external vendors. The Analyst will support security testing of web applications, client server applications, web services, cloud-based solutions, APIs, operating systems, databases, and network fabric devices (i.e.switches, routers, firewalls, load balancers, WAPs, etc.). In addition, the Analyst works across a variety of projects, partners with third-party vendors on scoping and remediation recommendations, co-ordinates the setup of testing hosts and resources, consults with the business team to discuss remediation options and finding details. The Cyber Security Operations Analyst also provides consultative services, creates and maintains documentation related to policies, standards and procedures. The Analyst advocates security testing procedures and information security best practices to IT and business partners. Senior Analysts are expected to mentor team members to help others progress in their career.

If you want to be a part of one of the BEST “to work for” companies in the world, simply apply and let your career be reimagined.

ROLE
• Facilitates penetration test engagements using a penetration testing methodology and framework
• Works with information systems custodians (i.e., department managers, user community and systems administrators) at different levels in the organization to define, scope and support testing goals and objectives for penetration test engagements against Costco systems
• Facilitates and oversees vendor access to the Costco environment in support of penetration test engagements. This includes coordination with Costco IT partners for access to networks, applications and rights management.
• Works with the team to ensure weekly reporting and metrics for stakeholders are provided
• Utilizes and improves templates for reporting, organizes penetration test reports for stakeholders and executive leadership
• Performs cross-functional, post-finding reviews and assists with remediation recommendations for stakeholders
• Tracks and verifies remediation activities through re-testing and ad-hoc reporting
• Coordinates activities or engagements with incident response and loss prevention, interact with legal and law enforcement as required

REQUIRED
• Minimum of 3 years of experience in Information Systems Security
• Ability to work effectively, independent of assistance or supervision
• Innovative, creative, and extremely responsive, with a strong sense of urgency
• Willing to share knowledge and assist others in understanding technical and business topics
• Working knowledge of information systems security standards and practices (e.g., access control and system hardening, system audit and log file monitoring, security policies, and incident handling)
• Familiarity with firewalls, routers, load balancers and packet capture technologies helpful
• Familiarity with network security levels (public, DMZ, Internal, PCI)
• Familiarity with protocols and technologies such as TCP, UDP, SSL/TLS
• Familiarity with HTML, CSS, JavaScript and WML
• Familiarity with cloud computing infrastructure and services
• Familiarity with various types of Penetration Testing such as web applications, network and infrastructure testing
• Ability to clearly communicate Information Security matters to executives, auditors, end users, and engineers
• Ability to interpret information security data and processes to identify potential compliance issues (SOX, HIPAA, PCI)
• Ability to quickly understand security systems in order to identify and validate security requirements using logical, risk based prioritization methods
• Ability to handle highly confidential information in a strictly professional manner.
• Ability to adapt to changing priorities.
• Willingness to work outside of regular business hours as required which can include evenings, weekends and holidays

Recommended
• A Bachelor’s degree in Computer Science
• One or more professional security certifications such as CISA, CEH, GIAC, GSEC, OSCP or CISSP (or equivalent experience)
• Working knowledge with firewalls, routers, load balancers and packet capture technologies helpful
• Working knowledge with network security levels (public, DMZ, Internal, PCI)
• Demonstrated experience of “hands on” security knowledge of the following platforms: Windows in a large Active Directory environment, Ubuntu/Redhat and other Linux distributions, AIX and other Unix variants preferred
• Web technologies such as WebSphere, IIS, Apache, etc.
• Scripting knowledge including Perl, Python, PowerShell, etc.
• Working knowledge of protocols and technologies such as TCP, UDP, SSL/TLS
• Working knowledge of HTML, CSS, JavaScript and WML
• Working knowledge of cloud computing infrastructure and services
• Working knowledge of various types of Penetration Testing such as web applications, network and infrastructure testing
• Experience developing and reporting enterprise level metrics.
• Experience with Power BI.

Required Documents
• Cover Letter
• Resume

California applicants, please click here to review the Costco Applicant Privacy Notice.

Apart from any religious or disability considerations, open availability is needed to meet the needs of the business. If hired, you will be required to provide proof of authorization to work in the United States. Applicants and employees for this position will not be sponsored for work authorization, including, but not limited to H1-B visas.
Apply Here
For Remote Cyber Security Operations Analyst roles, visit Remote Cyber Security Operations Analyst Roles

********

Sr. Information Security Analyst at Promethean

Location: Seattle

Who is Promethean?
Collaborative discovery is at the heart of the learning experience. With more than two decades helping people learn and grow together, Promethean is a true partner for educators, innovators, and business leaders. Our award-winning interactive displays and lesson delivery solutions transform learning and workspaces into creative, connected environments to foster collective success.
At the heart of Promethean is a team of education strategists, designers, and technologists that is dedicated to inspiring engagement and empowering teachers and students around the world. Our goal is to make education technology commonplace in all learning environments, and we strive every day to develop intuitive solutions that speed learning, insights, and creativity.
The Promethean team spans the globe and our work impacts the lives of millions of teachers and students. We stand by our solutions and our employees, offering highly competitive benefits and compensation, as well as providing a work-life balance that lifts and sustains us as we navigate a new future.
We are #TeamPromethean. Join us.
Promethean’s IT team provides solutions to our worldwide workforce that enable them to do the important work of transforming students and teachers lives. We respond to needs, solve problems, provide answers, and continuously stay at the top of our game. We hire professionals who are exceptionally capable, and that is our promise to our clients.
About this role…
The Senior Information Security Analyst focuses on the day-to-day operation of the information security infrastructure at Promethean, assisting with articulating technical security requirements, monitoring the effectiveness of existing information security framework, making recommendations for enhancements, and raising the level of security awareness. The Senior Analyst optimizes and manages security technologies to provide detective and preventative capabilities (vulnerability scanning, endpoint security, intrusion detection, data classification, data loss prevention, network forensics, network, and application security, IAM, RBAC, and event/incident management). This role provides primary operational support for security events and alerts as well as response support to users, advising users on alignment to security policies.
At Promethean…
We take our work seriously because it has impact! We empower students worldwide to learn. We are driven to continuously innovate and develop educational technology that inspires students to unleash their potential. We believe in the power of education to change the world and come to work each day with our sleeves rolled up ready to make a difference! However, we also appreciate that life isn’t just about work. We are a small company with big rewards and understand that you also need time to unwind. Join a company where you can be your best self, work on challenging problems, and have some fun along the way; join Promethean.

Promethean is honored to be an equal opportunity workplace. We realize that by creating teams rich in diverse thoughts and experiences, our people, company and customers are free to thrive. We are committed to providing equal employment opportunities regardless of race, color, national origin, religion, creed, genetic information, sex (including pregnancy, sexual orientation or gender identity), age, marital status, disability, military or veteran status; or any other protected classifications or characteristics under applicable local laws. In addition, Promethean values privacy and the protection of personal information.
For information regarding personal information we collect and our use of such data please see our privacy policy: […] contact recruiting@prometheanworld.com if you have an accessibility request at any point during the hiring process.
#Promethean #EdTechJobs
Apply Here
For Remote Sr. Information Security Analyst roles, visit Remote Sr. Information Security Analyst Roles

********

Sr. Security Engineer at Amazon Dev Center U.S., Inc.

Location: Seattle

• Bachelor’s degree in Information Security, Computer Science, Risk Management, Engineering, Math, Statistics or related discipline, or additional equivalent technology experience
• 6 + years of experience in identifying security issues and risks, and developing mitigation plans
• 4+ years of experience in network, system, or software architecture; design, implementation, support, and evaluation of security-focused tools and services
• 4+ years of scripting or programming experience in Ruby, Python, Shell/BASH scripting, Java, C/C++, C*, Perl, or other languages
• 2+ years of experience in one or more of the following areas: identity and access management, cryptography, web and network protocols, data structures and algorithms, software development, threat modelling, pen tests, or vulnerability assessments
• Proven track record of leading the delivery and operations of large-scale, mission-critical distributed systems
• Deep hands-on technical expertise in Cyber Security and at least one relevant technical area: large scale systems engineering, queuing and messaging, Linux networking, performance analysis, software-defined networking, etc.
• Experience managing complex projects, with significant bottom-line impact
• Experience playing a visionary technical leadership role within a large organization
Job summary

Amazon Web Services (AWS) is the world leader in providing a highly reliable, scalable, low-cost infrastructure platform in the cloud that powers hundreds of thousands of businesses in hundreds of countries around the world.
The AWS container organization is looking for a Security Engineer to join our new centralized Security Engineering team.

As a Security Engineer on the team, you will help establish technical standards and drive the overall technical architecture and security practices across the entire containers organization, for services like EKS, ECS, Fargate, Beanstalk, App Runner and more.
You’ll work on AWS’s hardest problems, building high quality, architecturally sound systems that are aligned with our business needs. You’ll think globally when building systems, ensuring we build high performing, scalable, and secure systems that fit well together. AWS Security Engineers translate business needs into workable technology solutions. Your expertise is deep and broad; you are hands on, producing both detailed technical work and high-level architectural designs.

If you enjoy working in a rapidly changing environment and influencing the strategic direction of a large organization, this position will provide you with a challenging opportunity.

Security Engineers are unique individuals prepared to relentlessly resolve security issues by gathering and analyzing data and conducting the root-cause analysis.

If you enjoy analyzing networks, system services, operating systems, and applications from a security perspective, and you are skilled at discovering security issues that appear under new threat scenarios, this position will provide you with a challenging opportunity.

You will participate in the design, build, and deployment of security controls and security-focused services as well as provide consultation, architectural review, risk analysis, vulnerability testing, and security reviews of many elements of Amazon’s systems.
Position location is flexible, wherever AWS has a presence in the United States

Preferred locations:
NYC, Boston, Arlington, Seattle, Dallas

Responsibilities of this role include:
Evaluate, architect, and build security-focused tools and services
Advise and consult with container software engineers on risk assessment, threat modeling, and vulnerability remediation
Integrate knowledge of cloud security fundamentals, including cryptography and the shared responsibility model into adoption models and methods for internal customers and partners
Use your solid understanding of authentication protocols, core network and system security principles along with your up-to-date understanding of modern attack patterns and methods to drive security into tools used by Amazonians every day
Draw heavily on your experience collecting, analyzing, and summarizing data from a variety of sources to create compelling written and verbal communications

About Us:
Inclusive Team Culture
Here at AWS, we embrace our differences. We are committed to furthering our culture of inclusion. We have ten employee-led affinity groups, reaching 40,000 employees in over 190 chapters globally.

We have innovative benefit offerings, and host annual and ongoing learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences.

Amazon’s culture of inclusion is reinforced within our 14 Leadership Principles, which remind team members to seek diverse perspectives, learn and be curious, and earn trust.
Work/Life Balance
Our team puts a high value on work-life balance.

It isn’t about how many hours you spend at home or at work; it’s about the flow you establish that brings energy to both parts of your life.
We believe striking the right balance between your personal and professional life is critical to life-long happiness and fulfillment.

We offer flexibility in working hours and encourage you to find your own balance between your work and personal lives.
This position involves on-call responsibilities, typically for one week every two months.

We don’t like getting paged in the middle of the night or on the weekend, so we work to ensure that our systems are fault tolerant.

When we do get paged, we work together to resolve the root cause so that we don’t get paged for the same issue twice.
Mentorship & Career Growth
Our team is dedicated to supporting new members.

We have a broad mix of experience levels and tenures, and we’re building an environment that celebrates knowledge sharing and mentorship.
Our senior members enjoy one-on-one mentoring and thorough, but kind, code reviews.

We care about your career growth and strive to assign projects based on what will help each team member develop into a better-rounded engineer and enable them to take on more complex tasks in the future.
Amazon is committed to a diverse and inclusive workplace.

Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.
For individuals with disabilities who would like to request an accommodation, please visit
• Have a clear understanding of cloud computing services/deployment architecture
• Demonstrate innovative security approaches in non-traditional IT environments
• Have experience generating automated metrics to measure service and program effectiveness and consistency
• Have excellent written and verbal communication skills with the ability to present complex technical information in a clear and concise manner to a variety of audiences
• Have experience in the development of security products
• Demonstrable teamwork skills and resourcefulness
• Possess self-drive to keep moving things forward even in the face of ambiguity and imperfect knowledge (avoid “analysis paralysis”)
• Strong sense of ownership, urgency, and drive
• Sharp analytical abilities and proven design skills
• Experience defining cyber-secure architectures, design and development of asynchronous messaging platforms
• Knowledge of networking protocols and their implementations
• Strong knowledge of data structures, algorithms, asynchronous architectures and distributed algorithms
• Deep understanding of system performance tradeoffs, load balancing, and engineering for high availability
• Masters or PhD in Computer Science or Computer Security.
Amazon is committed to a diverse and inclusive workplace.

Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.
For individuals with disabilities who would like to request an accommodation, please visit
Apply Here
For Remote Sr. Security Engineer roles, visit Remote Sr. Security Engineer Roles

********

Security Engineer at Amazon Web Services (AWS)

Location: Seattle

Description

The Amazon Web Services team is looking for a passionate Security Incident Response Engineer who has a specialization in malware analysis and reverse engineering, and who can lead the response to security issues across the largest cloud provider in the world. You must thrive in high-pressure situations, and think like both an attacker and defender, while working through the entire incident response lifecycle. You’ll be working in a global team environment where clear and accurate communication and collaboration on security issues is critical.

In this role you’ll be conducting security monitoring and response activities for the Amazon internal network, focusing on malware analysis and reverse engineering. We value broad and deep technical knowledge, specifically in the fields of malware analysis, incident response, and emergent security intelligence, operating system security, network security, cryptography, software security, forensics, and security operations. We don’t expect you to be an expert in all of the domains mentioned above, but we do expect you to be excited to learn about them!

You’ll apply your creative and critical problem solving skills to quickly design and build tooling that enables programmatic automation at a massive scale. You must have a passion for engineering solutions to complex security challenges, and recognize and fill gaps in capabilities. Above all, you should be passionate about information security, the threat landscape and security automation and tooling.

About Us

Inclusive Team Culture

Here at AWS, we embrace our differences. We are committed to furthering our culture of inclusion. We have ten employee-led affinity groups, reaching 40,000 employees in over 190 chapters globally. We have innovative benefit offerings, and we host annual and ongoing learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences. Amazon’s culture of inclusion is reinforced within our 14 Leadership Principles, which remind team members to seek diverse perspectives, learn and be curious, and earn trust.

Work/Life Balance

Our team also puts a high value on work-life balance. Striking a healthy balance between your personal and professional life is crucial to your happiness and success here, which is why we aren’t focused on how many hours you spend at work or online. Instead, we’re happy to offer a flexible schedule so you can have a more productive and well-balanced life—both in and outside of work.

Mentorship & Career Growth

Our team is dedicated to supporting new members. We have a broad mix of experience levels and tenures, and we’re building an environment that celebrates knowledge sharing and mentorship. We care about your career growth and strive to assign projects based on what will help each team member develop into a better-rounded engineer and enable them to take on more complex tasks in the future.

AWS SecOps (Corporate Security Response mission)

The Security Engineer role in AWS SecOps has two key aspects: on-call operational excellence and capability development.

Security Engineers in AWS SecOps may be assigned and contribute to one or more of the AWS SecOps team’s workloads which include: the main AWS SecOps (AWS Cloud), AWS Corp Security Response, and Complex Security Events (i.e. priority Incident Response).

Within AWS Corp Security Response, Security Engineers take a technically-applied role in assessing and responding to security issues affecting our corporate infrastructure. The prominent two aspects of this mission are malware response and phishing response throughout the CORP and PROD fabrics for the scope of both Amazon CDO and AWS orgs.

Within AWS Corporate Security role, Security Engineers engage closely with internal partners maintaining corporate infrastructure or tools. They assess the relative importance of new or ongoing issues, document context around them, drive mitigations and ensure appropriate pace of response. They engage stakeholders such as Legal counsel, AWS Security and Service Team Leadership.

Basic Qualifications
• BS degree in Computer Science, Computer Engineering, Electrical Engineering or equivalent related field.
• 3+ years of experience with malware analysis / reverse engineering
• 3+ years experience on a Security team, especially responding to security incidents.
• 1+ year proficiency with one high-level programming or scripting language.

Preferred Qualifications
• 5+ years experience working in security response, security automation tooling, or threat intelligence.
• Experience with Digital Forensics, SOAR, SIEM platforms
• Experience with detection engineering / authoring and using associated tools
• Advanced understanding of Windows, Linux, and or OS X internals
• Experience with Amazon Web Services.
• Meets/exceeds Amazon’s leadership principles requirements for this role
• Meets/exceeds Amazon’s functional/technical depth and complexity for this role

Amazon is committed to a diverse and inclusive workforce. Amazon is an equal opportunity employer and does not discriminate on the basis of race, ethnicity, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.

Company – Amazon Web Services, Inc.

Job ID: A1737248
Apply Here
For Remote Security Engineer roles, visit Remote Security Engineer Roles

********

Sr. Associate, Cyber Security – Cloud at KPMG US

Location: Seattle

Requisition Number: 81993 – 99

Description

Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today’s most important industries. Our growth is driven by delivering real results for our clients. It’s also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it’s no wonder we’re consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Working Mother Magazine, Diversity Inc. and others. If you’re as passionate about your future as we are, join our team.

KPMG is currently seeking a Senior Associate in Technology Enablement for our Consulting practice.

Responsibilities

Demonstrate understanding of business processes and risk management in areas such as cyber security, cloud security, cloud governance and compliance, DevOps, cloud data protection, cloud monitoring and incident response, enterprise security architecture, technology risk management, and others
• Establish a strong knowledge of enterprise cloud environments and cloud service provider platforms including Microsoft Azure, AWS, and Google Cloud Platform and their embedded security, as well as multi-cloud security management technologies; communicate this information to the engagement team and client management through written correspondence and verbal presentations
• Plan and execute client engagements focusing on assessment, review, design and/or implementation of Cloud infrastructure/platform/software security; identify improvement opportunities in the areas of process efficiency and security including role-based security and identify and access management based on KPMG’s methodology for cloud environments
• Identify and evaluate complex business and technology risks and remediation methods to mitigate risks
• Stay current with trends in this emerging space and enhance KPMG’s existing methodology for cloud security and controls engagements

Qualifications
• A minimum of three years of experience in any of the following areas: cloud security assessment and strategy; cloud compliance; solution architecture and design with emphasis on security, security operations and integration with cloud IaaS/PaaS/SaaS security platforms such as AWS, Google Cloud Platform, Microsoft Azure and Workday; IT risk management
• Bachelor’s degree or equivalent work experience
• Possess baseline security certification such as CISM/CISSP/GSEC/CISA/cloud certification for Microsoft Azure/AWS/Google Cloud Platform or studying towards attaining the certification
• Excellent written and verbal communication, facilitation, and presentation skills
• Ability and willingness travel

KPMG LLP (the U.S. member firm of KPMG International) offers a comprehensive compensation and benefits package. KPMG is an affirmative action-equal opportunity employer. KPMG complies with all applicable federal, state and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other category protected by applicable federal, state or local laws. The attached link contains further information regarding the firm’s compliance with federal, state and local recruitment and hiring laws. No phone calls or agencies please.

KPMG does not currently require partners or employees to be fully vaccinated or test negative for COVID-19 in order to go to KPMG offices, client sites or KPMG events, except when mandated by federal, state or local law. In some circumstances, clients also may require proof of vaccination or testing (e.g., to go to the client site).
Apply Here
For Remote Sr. Associate, Cyber Security – Cloud roles, visit Remote Sr. Associate, Cyber Security – Cloud Roles

********

The Tech Career Guru
We will be happy to hear your thoughts

Leave a reply

Tech Jobs Here
Logo