Security Response Manager, Security Incident Response Team (SIRT)
At Amazon, we obsess over our customers and maintaining their trust. To earn that trust in an environment as vast and varied as Amazon’s requires the applied skills of smart security engineers and experienced, innovative security leaders willing to tackle challenges at dizzying scales.Amazon is seeking a qualified leader to join our innovative, high energy Security Incident Response Team (SIRT) You will manage a team of talented, passionate security engineers responsible for detecting, analyzing and responding to information security threats across Amazon and its subsidiaries, as a part of a global, follow-the-sun security response organization. Think you have what it takes? Keep reading. Security Responsibilities:
- Lead the onboarding alarms process to SIRT and the creation of automated workflows.
- Coordinate Incident Response activities in the Arlington, VA, node to ensure timely and effective response to information security threats
- Provide escalation support to security engineers, making technical, risk-based trade-off decisions concerning important and urgent security issues
- Provide clear communications to information security and business leaders
- Ensure continuity of operations for security incident management through effective communications between the global nodes of the Amazon Security Operations Center
- Continually improve the efficiency and effectiveness of the Incident Response team by identifying technical and procedural opportunities and leading the team to deliver creative solutions
- Create a positive work environment in which your team can achieve organizational & personal goals
- Own all facets of team hiring, performance management & career development
- Provide technical & soft skill coaching to maintain a motivated, innovative & effective team
- Track and report on key results and initiatives being delivered by the team
Basic Qualifications
- 5+ years experience leading, managing & developing high performing teams
- 7+ years of hands-on experience with information security controls and processes such as passive network monitoring, endpoint detection and response, continuous security monitoring, incident response, digital forensics or vulnerability management
- BA/BS in computer science, information security, related discipline, or equivalent work experience
Preferred Qualifications
- Excellent verbal and written communication skills, with a focus on translating technically complex issues into easy to understand concepts
- 3+ years of progressive experience within a Security Operations Center, Blue Team, or similar environment
- Demonstrable information security risk-based prioritisation ability
- DevOps experience
- Experience working with teams across multiple locations
- Experience architecting/operating/securing Amazon Web Service