Sr. Specialist Solutions Architect - Security

Job content

Description

Amazon Web Services (AWS) is looking for experienced and motivated technologists who possess a unique balance of technical depth and excellent interpersonal skills to join the HKT Specialist Solutions Architect team. This team is a group of hands-on architects supporting AWS customers to build the solution solve their specific use cases. This role is for a Solution Architect specialized in Security.

You Will Have The Opportunity To Directly Partner With Customers Wanting To Learn How To Develop Or Improve Applications That Have a Strong Focus Around Security Aspects

• Security Incident Response(IR) coordinator: Help customers find, communicate about, handle, recover from, and especially learn from security incidents.
• Advise customers on architectures to meet industry standards (eg. PCI DSS, ISO 27001, HIPAA, GDPR, ISA-99, NIST Cybersecurity framework etc.). Guide customers to build up risk management, security policies, and strategies of Incident Response(IR) and Disaster Recovery(DR).
• Advanced secure hybrid networking: leverage different AWS services in complex networking topologies to help and advise customers to understand how AWS can securely integrate with their existing edges, OT, IT, and Cloud.
• SecDevOps to ensure that the access to their network and applications is secured event cross different AWS accounts for DEV, QA, Prod, etc.
• Observability of Security Operation Center (SoC): leverage AWS cloud-native services (eg. CloudTrail, CloudWatch, etc) to ensure monitoring, audit-ability and compliance across their different networks, data, and applications.
• Advanced Authentication and Authorization (AuthN & AuthZ), data protection, encryption, and key management (eg. SSO, SAML Federated Identity, RBAC solution, Data Lake/Database encryption, etc). Demonstrate configuring and securing web applications, including WAF, DDoS mitigation strategies and application hardening.
  

As part of specialist solutions architect team, you will support AWS customers to develop prototypes specific to their products and services. You will enjoy keeping your existing technical skills and developing new ones so that you can make substantial contributions to in-depth architecture discussions. So if you are someone who innovates, is passionate about security, likes solving hard problems and working on cutting edge technologies, we would love to have you join our team!

The job is based in Taipei. The role will cover Taiwan and Hong Kong.
The ideal candidate will be …

• Security hands-on experiences: 5+ years experiences on security domain or related works and 3+ years relevant experience coordinating responses to security incidents. Experience in security monitoring, incident handling, threat hunting, threat intelligence, or digital forensics.
• Trusted advisor to customers: Be able to facilitate relationships with senior technical executives, as well as easily interact and give guidance to Chief Security Officer (CSO), software developers, IT operations staff, and system architects. Be able to materialize an overall recommendation (or proposal) based on customer needs and efficiently communication – formal presentations, white boarding, large and small group presentations.
• Be an Architect: Ensure success in helping customers accelerate their adoption of our hybrid / edge specialized services. Guide and motivate the development of artifacts, data sheets, proof of concept best practices, and other high-value customer facing guidance and best practices.
• Nice to have vertical knowledge on industries and have related experiences (eg. banking, manufacturing, semi-conductor, retails, and telecom); able to articulate end-to-end information flow of these focused vertical.
  

Role and Responsibilities

• Security expert, learner, and builder: desire to learn and share security techniques such as application security, cryptography, threat modeling, penetration testing, etc. Advise customers on architectures to meet industry standards. Support customers to build secured hybrid networks, systems, applications, incident response, SecDevOps, and etc.
• Security incident response coordinator: bridge customers’ Security Incident Response Team (SIRT), AWS account teams, AWS cloud support engineers, and security partners. Help customers find, communicate about, handle, recover from, and especially learn from security incidents. Write the report and follow clear procedures of short, middle and long terms so that your efforts can be accountable, repeated, measured, and improved.
• Technical trusted advisor: build and maintain relationships with influential technical decision makers and executives for the successful adoption and deployment of AWS services and technologies, in a landscape of increasing international regulatory and policy complexity.
• Thought leadership: provide solutions that benefit customers through the use of AWS Services. Discover what motivates current business decision-making around security spending and risk taking, and craft & develop compelling audience-specific messages and tools (product videos, customer success stories, demos, white papers, presentations, how-to guides, etc.). Present AWS services and technologies through forums such as AWS Blogs, White papers, Reference architectures and Public-Speaking events such as Executive Briefings, AWS Summits, AWS re:Invent, AWS User Groups and industry events.
• Coach and mentor: develop, capture, and promote best-practices. Participate and contribute as a member of the worldwide AWS technical community of Prototyping Engineers, Solution Architects, Professional Services Consultants, Technical Account Managers, and AWS Trainers.
  
  

Basic Qualifications

• 5+ years relevant experience doing information security work or equivalent BS degree in Information Security, Information Systems, Computer Science, Computer Engineering, or other related fields
• 3+ years relevant experience coordinating responses to security incidents
• Automation experience using scripting or programming languages (Go, Python, Ruby, Shell, Perl, etc.)
• Experience with threat modeling and penetration testing in cloud, host, network, and application
• Experiences in Business Continuity Plan (BCP): Overall business continuity plan including strategies, implementation, game days, and total cost estimation. Can explain well on the differences between Business continuity plan (BCP), High Availability (HA), Backup & Restore, Disaster Recovery (DR), Archive.
• Knowledge in security engineering, system and network security, security protocols, cryptography, and application security (e.g. Firewalls, IDS/IPS systems, DDOS prevention, etc.)
• Have excellent written and verbal communication skills with the ability to present complex technical information in a clear and concise manner to a variety of audiences
• Have a passion for exploring art of the possible and building cloud solutions for diverse and challenging customers. Enjoy keeping technical knowledge up to date.
  

Preferred Qualifications

• Minimum 2 years of experience in analyzing threat actor tactics, techniques, and procedures.
• Minimum 2 years of experience in performing and/or participating in technical assessments in direct support of a major compliance effort (e.g. SOC1, SOC 2, HITRUST, HIPAA, PCI DSS, ISO 27001, GDPR)
• Relevant security certification(s) such as CISSP, CEH, GIAC, CISA, CISM, SECURITY+, OSCP, etc.
• A strong grasp of Information Security and implemented processes to review IT infrastructure
• AWS Professional Certification, and/or AWS Security Specialty Certification
• Ability to work with customers to resolve complex security problems and achieve security, resilience and compliance outcomes on the AWS platform through deep dive discussions, strategic presentations/recommendations, and hands on demonstrations in the AWS environment.
  

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, disability, age, or other legally protected status. For individuals with disabilities who would like to request an interpreter or any support on-site, please inform our team. #AWSGCR
Company - Amazon Web Services Taiwan Ltd
Job ID: A1572612