Security Support Engineer, Vulnerability Management and Remediation Operations
Amazon Security is seeking an experienced and innovative Support Engineer specializing in cybersecurity to join our Vulnerability Management and Remediation Operations (VMRO) team in London, UK. The VMRO team is a global team responsible for assessing, detecting, and driving the remediation of vulnerabilities across the Amazon ecosystem.
Key responsibilities:
* Support vulnerability detection campaigns by working closely with Campaign Owners to launch and continuously improve campaign quality across Amazon.
* Assess and negotiate with customers to drive down security risk by engaging teams to remediate critical vulnerabilities in their environments.
* Collaborate with builder teams to implement security fixes and improvements.
* Understand technical details of vulnerabilities affecting Amazon’s infrastructure, services, and applications.
* Review and analyze common vulnerability disclosures and assist in evaluating potential impacts.
* Help triage vulnerabilities and contribute to impact and detection logic assessments.
* Contribute to the development and automation of repetitive tasks.
* Actively participate in updating documentation and sharing knowledge across global peers.
* Participate in an on‑call rotation to support continuous monitoring and remediation of vulnerabilities.
Basic Qualifications:
* Bachelor’s degree in Computer Science, Computer Engineering, Software Engineering, Cybersecurity or related technical degree, or 3+ years equivalent technology experience.
* Strong understanding of security concepts with a security mindset.
* Strong understanding of computer and network weaknesses and mitigating controls.
* Strong ability to understand risk and prioritization in the context of the business.
* Excellent communication skills within technical and business settings.
* Ability to document learnings and contribute to knowledge sharing and runbook building.
* Experience with secure‑cloud configuration (CloudTrail, AWS Config), cloud‑security technologies (VPC, Security Groups, WAF, etc.), and cloud‑permission systems (IAM).
* Experience with identity and access concepts, including SSO, SAML, Federated Identity, RBAC, authentication, authorization solutions, encryption, SSL, and related technologies.
Preferred Qualifications:
* 2+ years of experience in fields such as Security Operations, technology audit, or security vulnerability lifecycle.
* Ability to prioritize multiple tasks and projects.
* Passion for learning and thriving in a dynamic, constantly changing environment.
* Experience with virtualization technologies, especially AWS services.
* Relevant industry certifications (CISSP, SANS, ISC2, CompTIA, etc.).
* Maturity, judgment, negotiation/influence skills, analytical skills, and leadership skills.
* Demonstrated knowledge of web protocols, common attacks, and working knowledge of Linux/Unix tools and architecture.
* Understanding of best practices across multiple security disciplines/domains.
* Demonstrated ability to work autonomously with a bias for action, critical and creative thinking.
* Demonstrated ability to collaborate, develop partnerships, and work effectively as a member of a global, inclusive team.
Amazon is an equal opportunity employer. We believe passionately that employing a diverse workforce is central to our success. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice for more information.
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Job ID: A3030189
#J-18808-Ljbffr