Amazon Security SOC Security Analyst II, AWS PhsyOps
  • United Kingdom London
  • Amazon Web Services (AWS)
1 year before
31.12.2023
Protect and Defend
Cyber Defense Analysis
Job Description

Description

The Amazon Security Operations Center (SOC) is expanding operations to support the growth of our data centers and related security functions. We are seeking a Security Analyst with security and operations room/center experience to join our SOC team. The Amazon Security SOC conducts security system monitoring and response to a substantial portfolio of emergent time bound security alarms and incidents. Alarm monitoring, response, adjudication, and triage operations are delivered in collaboration with partner security operations teams and stakeholders globally. Security Analysts are the first line decision maker’s ensuring each response provides the required level of oversight in support of data center security operations; routing for resolution and/or driving escalations.

Our team is dedicated to supporting new members. We have a broad mix of experience levels and tenures, and we’re building an environment that celebrates knowledge sharing and mentorship. We care about your career growth and strive to assign projects based on what will help each team member develop into a better-rounded engineer and enable them to take on more complex tasks in the future.

Our team values work-life harmony. Availability during the Amazon Security SOC’s 24/7/365 operation is imperative to maintaining proficiency in this role, and we understand that striking a healthy balance between your personal and professional life is crucial to your happiness and success here. We encourage members of the team to use personal time as needed to cultivate this balance and to promote a productive and well-balanced life— both in and outside of work.

Key job responsibilities

As a Security Analyst, you will employ security strategies and procedures in accordance with service level agreements, policies, standards, and operating procedures. You will work within the Amazon Security SOC, responding to security events across worldwide security operations.

A day in the life

Daily responsibilities include monitoring intrusion detection systems, ingesting global security incident notifications, dispatching, and escalating in response to security alerts and notifications. You will also manage email, phone communications, generate and/or manage trouble tickets, handle incoming chats, and provide technical support to customers.

About The Team

Inclusive Team Culture

Here at AWS, we embrace our differences. We are committed to furthering our culture of inclusion. We have ten employee-led affinity groups, reaching 40,000 employees in over 190 chapters globally. We have innovative benefit offerings, and host annual and ongoing learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences. Amazon’s culture of inclusion is reinforced within our 16 Leadership Principles, which remind team members to seek diverse perspectives, learn and be curious, and earn trust.

Work/Life Balance

Our team puts a high value on work-life balance. It isn’t about how many hours you spend at home or at work; it’s about the flow you establish that brings energy to both parts of your life. We believe striking the right balance between your personal and professional life is critical to life-long happiness and fulfillment. We offer flexibility in working hours and encourage you to find your own balance between your work and personal lives.

Mentorship & Career Growth

Our team is dedicated to supporting new members. We have a broad mix of experience levels and tenures, and we’re building an environment that celebrates knowledge sharing and mentorship. We care about your career growth and strive to assign projects based on what will help each team member develop into a better-rounded professional and enable them to take on more complex tasks in the future.


Basic Qualifications

Strong analytical skills and able to work with highly confidential information towards all security related matters

Global Security Operations Center experience.

Proven ability to accurately take decisive action based on available information in a timely manner.
3 years of specialized industry or professional experience in Global Security Operations, security analytics, or security; or a relevant college degree and at least three (3) years of industry experience
1 - 2 years’ experience working in operations room/centers.
1 - 2 years’ experience in radio communications.
1 - 2 years’ experience with security systems (e.g., Lenel, Genetec, Axis, Azure, Argus, etc.)
2+ years of experience in security industry standards, policies, and best practices.
1 - 2 years’ experience with operational analysis and report writing
1 - 2 years’ experience demonstrating customer service skills.
Exposure to working with Amazon Security security teams or technologies/services.
Proficiency with MS Office Suite and programs to include Word, PowerPoint, Excel, and Outlook, etc.
Ability to work any shift pattern within the 24/7/365 operation including days, nights, holidays, and weekends.

Preferred Qualifications

Degree in Security & Risk Management (or other security/risk related discipline) and/or
Possession of any or all the following certifications: Certified Protection Professional (CPP), Physical Security Professional (PSP), Certified Business Continuity Professional (CBCP), or Certified Emergency Manager (CEM), etc.
2+ years Access Control Technician experience installing, implementing, maintaining, and programming systems such as Hirsch, Keri, CDVI, CanTech, and Lenel.
2+ years of experience with Crime Prevention through Environmental Design (CPTED).
5+ years' experience in physical security
1-2 years' experience in access control and intrusion detection systems (e.g., Lenel, Multi-Max, C-Cure, Honeywell, etc.)
2-3 years’ previous experience working within an operations room/center.
2-3 years' experience demonstrating high-level customer service skills.
2-3 years' previous experience using MS Office Suite to include Word, PowerPoint, Excel, etc.
Meets/exceeds Amazon’s leadership principles requirements for this role.
Meets/exceeds Amazon’s functional/technical depth and complexity for this role.

Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice (https://www.amazon.jobs/en/privacy_page) to know more about how we collect, use and transfer the personal data of our candidates.

Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need an adjustment during the application and hiring process, including support for the interview or onboarding process, please contact the Applicant-Candidate Accommodation Team (ACAT), Monday through Friday from 7:00 am GMT - 4:00 pm GMT. If calling directly from the United Kingdom, please dial +44 800 086 9884 (tel:+448000869884). If calling from Ireland, please dial +353 1800 851 489 (tel:+3531800851489).


Quick response

Required Knowledge
  • K0001   Knowledge of computer networking concepts and protocols, and network security methodologies.
  • K0004   Knowledge of cybersecurity and privacy principles.
  • K0005   Knowledge of cyber threats an`d vulnerabilities.
  • K0007   Knowledge of authentication, authorization, and access control methods.
  • K0058   Knowledge of network traffic analysis methods.
  • K0116   Knowledge of file extensions (e.g., .dll, .bat, .zip, .pcap, .gzip).
  • K0221   Knowledge of OSI model and underlying network protocols (e.g., TCP/IP).
  • K0301   Knowledge of packet-level analysis using appropriate tools (e.g., Wireshark, tcpdump).
  • K0324   Knowledge of Intrusion Detection System (IDS)/Intrusion Prevention System (IPS) tools and applications.
  • K0332   Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.
  • K0339   Knowledge of how to use network analysis tools to identify vulnerabilities.
  • K0624   Knowledge of Application Security Risks (e.g. Open Web Application Security Project Top 10 list)

Required Skills
  • S0057   Skill in using protocol analyzers.
  • S0156   Skill in performing packet-level analysis.
  • S0169   Skill in conducting trend analysis.

Required Abilities