Amazon Web Services (AWS) is the leading cloud provider, providing virtualised infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises, run their operations and applications on AWS’ multi-tenant infrastructure.

AWS is looking for an exceptional Security Operations Centre (SOC) Manager, to work in a team of technical and non-technical experts, with cyber security management and operations room experience to build the monitoring and incident response team. You will build and develop a team of high performing security engineers and incident responders to support UK customers and their cloud workloads. You will work in a high pace, high visibility environment to execute the team’s mission and continue to raise the security bar for our customers. You will have visibility at senior levels of government agencies, commercial institutions, and AWS including interaction with CISOs, CTOs, their staffs, and AWS senior leadership.
You will be working with a broader team of industry-leading security experts working with UK customers to operate and continuously improve industry-leading security programs and processes. This broader team manages the underlying security programs and processes for personnel security, physical and logical accreditation, education, awareness and training, assurance, and cyber security.

We’re looking for an experienced and self-motivated candidate who can prioritise well and can communicate clearly and compellingly. This Security Operations Centre Manager will have a broad and deep technical knowledge, specifically in the fields of operating system security, network security, cryptography, software security, malware analysis, forensics, security operations, incident response, and emergent security intelligence.

Among other duties, the Security Operations Centre Manager will:
· Manage SOC operations for incident detection and response across a number of locations, building and developing a specialist team
· Build, develop and maintain SOC policies, procedures and processes for security detection and response
· Ensure information and security data is continuously collected, correlated and analysed to detect external and internal threats and vulnerabilities to our services
· Gather evidence, evaluate risk and deliver a plan to respond to contain and remove security threats as quickly and safely as possible
· Define and review key security performance indicators that ensure service delivery and service improvements
· Ensure integration and handover of new security services within the monitoring and detection capability
· Develop and create reports for management updates and escalations
· Optimise tools and processes that prepare the SOC to respond to security threats of the future
· Provide leadership, guidance and technical expertise to deliver a professional service
· Develop, track, and report on key program performance metrics
· Continuously monitor processes and drive improvements in efficiency and quality of our security programs
· Conduct periodic program reviews to ensure compliance with the accreditation/certification requirements in increasingly innovative ways
· Engage with AWS and customer leadership teams on a regular basis

Here at AWS, we embrace our differences. We are committed to furthering our culture of inclusion. We have ten employee-led affinity groups, reaching 40,000 employees in over 190 chapters globally. We have innovative benefit offerings, and we host annual and ongoing learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences. Amazon’s culture of inclusion is reinforced within our 14 Leadership Principles, which remind team members to seek diverse perspectives, learn and be curious, and earn trust.


BASIC QUALIFICATIONS

· Minimum of 5 years’ experience in the security field
· Minimum of 2 years’ experience in monitoring, incident response and security operations management
· Degree or equivalent experience in a related security field (Computer Science, Engineering, Cyber Security, IT Security Management, Security Risk Management)

PREFERRED QUALIFICATIONS

· An entrepreneurial spirit with the ability to drive innovation independently; have a passion to improve at every opportunity
· Effective written and oral communication with multiple levels of leadership involving both business and technical sides of the business
· Ability to able to credibly coordinate between technical teams and business stakeholders
· Demonstrated maturity, judgement, negotiation/influence skills, analytical skills, and leadership skills
· Must be able to define program goals and roadmaps based on customer needs and strategic direction, and ensure that committed projects are delivered on schedule by the relevant team members
· Familiarity with web services, multi-tiered systems, workflow modelling and enterprise application integration
· An intermediate or better level of knowledge of a variety of regulated security programs in multiple fields (personnel security, program security, physical security, and education, awareness, and training)
· Experience with AWS services, especially security-relevant services (ex: CloudTrail, Config, KMS, IAM)
· Intermediate level of understanding of Linux (including security-relevant logging like auditd)
· Experience with industry-standard SIEMs, like Splunk or ELK

By working together on behalf of our customers, we are building the future one innovative product, service, and idea at a time. Are you ready to embrace the challenge? Come build the future with us.

Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify, and build.


Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Consult our Privacy Notice to know more about how we collect, use, and transfer the personal data of our candidates