SecurityEngineerII,ThreatDetection

Are you excited about advancing the state of threat detection at scale to mitigate risk from an ever-evolving threat landscape impacting a diverse range of businesses? Amazon Stores Security's Threat Detection team is looking for a highly motivated Security Engineer to join our team. In this role, you will research emerging threats to develop new detection ideas and build high-confidence detections that proactively identify malicious activity across large-scale log data. You will work closely with Incident Response, Threat Hunting, Threat Intelligence, and Red Team to understand threat models and deliver detections that enable rapid response. You will also develop innovative methods utilizing the latest techniques to detect threats at scale. Your expertise will help defend the data of Amazon's millions of customers against the most critical threats. Key job responsibilities - Identify critical threats targeting Amazon's network by leveraging threat intelligence and security research, then deliver high-fidelity threat detections aligned to attacker tactics, techniques, and procedures (TTPs). - Enhance detection engineering processes by improving how detections are scoped, prioritized, developed, tested, and maintained throughout their lifecycle. - Develop platform requirements to enrich alerts with contextual data, reduce false positives, and automate remediation and response actions in coordination with incident response teams. - Research and develop mechanisms to advance detection capabilities through machine learning, advanced data correlation, risk-based alerting, or generative AI. - Automate your way through challenges using Python or other scripting languages to build tooling, validate detections, and streamline operational workflows at scale. A day in the life Most days you'll be heads-down building and tuning detections, digging into log data to figure out what malicious activity looks like and how to catch it reliably. You'll spend time reading up on the lat