I am...

Summary Information About the Role

Devices and Services Trust and Privacy (DSTP) is responsible for maintaining and raising the trust bar for Amazon customers across a diverse set of 30+ Devices and Services (D&S). DSTP offers horizontal services for builders to ensure trust, privacy, and accessibility is built into our products and services. We also build customer-facing capabilities that provide customers with control and transparency and reducing privacy risk, while enabling partner teams to innovate with appropriate guardrails for content moderation, privacy, accessibility, and trust.

​

The DSTP team is looking for a passionate Security and Privacy Incident Response Engineer who can lead the response to privacy and data protection issues across Devices & Services. You must thrive in dynamic/ambiguous situations, and think like both an attacker and defender, while working through the entire incident response lifecycle. You’ll be working in a global team environment where clear and accurate communication and collaboration on privacy and data protection issues is critical.

​

In this role, you will apply your creative and critical problem-solving skills to quickly contain incidents and then work with cross-functional teams to remediate the root cause. You must have a passion for engineering solutions to complex privacy and data governance challenges and recognize and fill gaps in capabilities. Above all, you should be passionate about privacy, information security, the ever-changing threat landscape, and privacy/security automation and tooling.

​

Company Overview

This role is a part of Trust Fundamentals’ Privacy GRC team within DSTP, which includes developing a set of processes, tools, and compliance mechanisms to improve leadership decision making and performance through an integrated view of how well D&S manages its unique set of privacy risks.

​

Our GRC team values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.

​

Our team is dedicated to supporting new members. We have a broad mix of experience levels and tenures and are building an environment that celebrates knowledge sharing and mentorship. We care about your career growth and strive to assign projects based on what will help each team member develop into a better-rounded professional and enable them to take on more complex tasks in the future.

• Manage escalated privacy and trust risk events/cases from start to finish; write detailed case notes, reports, summaries, short and long-term recommendations, and trade-off analyses for all audiences, including senior leadership.
• Interact with and influence other teams (e.g., service teams, engineering, product, legal); identify experts and stakeholders on other teams to support decisions on containing incidents or mitigating privacy and trust risks; build consensus and recommendations based on analysis of the nature of potential violations to Privacy Policies, Promises, or Legal/Regulatory requirements.
• Own successful delivery of large, impactful, and highly cross-functional program initiatives while simultaneously tracking a set of smaller projects. Demonstrate comfort with handling technical investigations and analysis, and provide actionable recommendations to senior leadership audience with minimal supervision.
• Develop deep knowledge of global privacy and data governance obligations, processes, best practices, and solutions utilized by Amazon. Utilize this knowledge to provide recommendations and consultation to improve DSTP processes and tooling and reduce risk through control automation and enhancements.
• Establish metrics and regular reporting/escalation mechanisms for measuring results, progress, and gaps in performance and compliance.
• Communicate plans, status, and critical issues clearly and effectively.
• Support deep dive assessments and ad-hoc data analysis requests.

Required Qualifications

​

• Bachelor's degree in computer science or equivalent
• 5+ years of any combination of the following: threat modeling experience, secure coding, identity management and authentication, software development, cryptography, system administration and network security experience
• CCSP (Certified Cloud Security Professional) or CEH (Certified Ethical Hacker) or CFR (CyberSec First Responder) or Cloud+ or CySA+ (CompTIA Cybersecurity Analyst) or GCED (GIAC Certified Enterprise Defender) or GICSP (Global Industrial Cyber Security Professional) or PenTest+

​

Preferred Qualifications

​

• Experience applying threat modeling or other risk identification techniques or equivalent
• 3+ years of programming in Python, Ruby, Go, Swift, Java, .Net, C++ or similar object-oriented language experience
• Experience in Security and Privacy Incident Response and proficiency in at least one of the following domains: Malware Analysis / Reverse Engineering; Digital Forensics; Security and Privacy Tool Development & Automation; Programming/Scripting; Data Protection; Identity and Access Management.

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.

​

Los Angeles County applicants: Job duties for this position include: work safely and cooperatively with other employees, supervisors, and staff; adhere to standards of excellence despite stressful conditions; communicate effectively and respectfully with employees, supervisors, and staff to ensure exceptional customer service; and follow all federal, state, and local laws and Company policies. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness and professionalism, and safeguard business operations and the Company’s reputation. Pursuant to the Los Angeles County Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

​

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

​

Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $136,000/year in our lowest geographic market up to $212,800/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits. This position will remain posted until filled. Applicants should apply via our internal or external career site.

We are seeking a highly motivated and experienced full stack software engineer to join our Keeper development team. The ideal candidate will be a positive and collaborative team player with a strong background in full stack development and excellent communication skills. This is a 100% remote position.

​

Keeper’s cybersecurity software is trusted by millions of people and thousands of organizations, globally. Keeper is published in 21 languages and is sold in over 120 countries. Join one of the fastest-growing cybersecurity companies and be responsible for expanding and architecting Keeper's integration in the AWS cloud with the latest technology and tools!

​

About Keeper

​

Keeper Security is transforming cybersecurity for people and organizations around the world. Keeper’s affordable and easy-to-use solutions are built on a foundation of zero-trust and zero-knowledge security to protect every user on every device. Our award-winning, zero-trust, privileged access management platform deploys in minutes and seamlessly integrates with any tech stack and identity application to provide visibility, security, control, reporting and compliance across an entire enterprise. Trusted by millions of individuals and thousands of organizations, Keeper is an innovator of best-in-class password management, secrets management, privileged access, secure remote access and encrypted messaging. Learn more at KeeperSecurity.com.

​

About the Role

​

As an Integration Engineer, you will be joining an elite team of technical powerhouses within our Keeper Dev team. Play a pivotal role designing, developing and maintaining integrations with Keeper's technical partners, such as Next-Gen SIEM solutions, identity providers (IdPs), robotic process automation (RPA) tools and IT Service Management (ITSM) products. You will work closely with cross-functional teams to deliver robust, scalable, and high performance solutions that meet our business needs.

• Create technical integrations between Keeper and 3rd party providers, such as Next-gen SIEM solutions
• Build requirements and work with product management and CTO to establish a roadmap
• Work directly with partners such as Microsoft, AWS and SIEM solution providers to establish test environments, build the integration and publish the integration from start to finish
• Collaborate closely with UI designers, product managers, and quality assurance engineers to deliver high-quality features
• Participate in code reviews to maintain code quality and provide constructive feedback
• Investigate and resolve complex technical issues, providing timely solutions

Required Qualifications

• 5+ years of professional experience in full stack software development
• Bachelor’s or Master’s degree in Computer Science or equivalent discipline or equivalent experience
• Proficiency in Java, Javascript, ReactJS, MySQL and related frameworks
• Strong knowledge of Microsoft Azure and Amazon AWS environments
• Experience with SIEM products such as Azure Sentinel
• Deep understanding of software architecture principles and design patterns
• Excellent documentation and communication skills
• Familiarity with Agile/Scrum development methodologies
• Due to this role’s involvement in GovCloud, all applicants must be a US Person.

​

Preferred Qualifications

NA

• Medical, Dental & Vision (inclusive of domestic partnerships)
• Employer Paid Life Insurance & Employee/Spouse/Child Supplemental life
• Voluntary Short/Long Term Disability Insurance
• 401K (Roth/Traditional)
• A generous PTO plan that celebrates your commitment and seniority (including paid Bereavement/Jury Duty, etc)
• Above market annual bonuses

​

Keeper Security, Inc. is an equal opportunity employer and participant in the U.S. Federal E-Verify program. We celebrate diversity and are committed to creating an inclusive environment for all employees.

​

Classification: Exempt

Description

Bring your IT career and talents to CDW, where you can have a greater impact, be inspired by our mission and excited about your career and future. A Fortune 200 leader, we’re the driven professionals and technology experts companies turn to most to solve their IT challenges.

​

The CDW Field CISO provides thought leadership in IT Security transformation while aligning security strategies with core business initiatives and processes to better leverage resources and infrastructure in achieving quantifiably tangible results. The Field CISO provides consultative leadership across the full range of technical aptitudes. The Field CISO candidate must demonstrate the ability to assess a client’s business drivers for a given initiative and translate them into qualifiable, quantifiable and tactical solutions. This person identifies and qualifies business development across the organization while evangelizing sales and building a pipeline of both short-term and longer-term opportunities. The Field CISO provides recommendations pertaining to key objectives in which cutting edge technical solutions solve a given challenge. This person illustrates the alignment (or misalignment) between strategic goals and key business decisions regarding products and services; partners and suppliers; organizational requirements and capabilities; and key business and IT initiatives. The Field CISO works to develop an integrated view of the business by making technical recommendations pertaining to information gleaned from client engagements as well as solve problems by analyzing requirements and evaluating alternatives.

​

Who we are:

CDW is a leading technology solutions provider to business, government, education and healthcare organizations across the globe. Our fingerprints can be found on technology in workplaces of more than 250,000 companies; from fresh-faced start-ups to international conglomerates. With the breadth of products and services we offer, there is no request too big or too small.

​

What you can expect from us: Culture, coworkers, careers.

CDW is not only the People Who Get IT but the People who get People. Our relationships are fueled by our deep expertise and grounded in the CDW Way. Our empowering leadership makes things happen and inspires their teams to do the same. From the teammates beside us to the leaders who guide us, we move forward together. At CDW, you’ll work with people who inspire you. People with positive, success-driven attitudes who you will learn from and forge strong relationships with. Bring your best true self—and your best ideas—to CDW. Because diverse perspectives bring forth better problem solving—and better solutions for our customers on a rapidly evolving technology landscape.

• Act as a consultative strategist to the CISO, VP Cyber Security, Information Security Director, VP of Infrastructure, Chief Risk Offices and other key leadership.
• Provide consultative support of related opportunities across all geographies.
• Be a key technical advisor consulting on leading edge technologies and possess deep technical knowledge in the following pillars of technology: Zero Trust, SASE, ZTNA, EDR/MDR, Identity and Access Management, MicroSegmentation, Cloud technologies and security principals (AWS, Azure, GCP).
• Deliver presentations to clients, potential clients, colleagues, and management which focus on business outcomes and the relationship to risks and security solutions.
• Reports on the client needs, problems, interests, current market states, competitive activities, and potential for new products/services.
• Provides knowledgeable insight on competitive offerings, products, applications, services, market conditions, competitive activities, advertising, and promotional trends through the reading of pertinent literature and consulting with marketing and technical services.
• Demonstrate strategic time management and multitasking skills.
• Effectively accelerates opportunity pipeline with predictable business results that exceed revenue targets.
• Build and deliver technical documentation outlining: opportunity, discovered data, and recommendations.
• Identify and focus on priorities while appropriately setting expectations with client, colleagues and management.
• Ability to provide thought leadership based on customer requirements and restrictions.
• Attendance at Industry and CDW conferences, presenting on CISO-level topics of interest.
• Excellent communication skills through creative writing, technical writing and oral interactions.
• Strong client service and interpersonal skills.
• Provide a high degree of collaboration with sales personnel. Involve appropriate resources to ensure the successful outcome of engagements and subsequent projects.
• Develop intellectual property (e.g., whitepapers, deliverable templates, solutions, case studies, etc.).
• Provide feedback to management groups regarding trends and opportunities.
• Participate in project definition, scope, objectives, risks and approach.
• Work closely with CDW engineers to formalize solutions that were discovered in CISO lead workshops.

Education and/or Experience Qualifications

• Bachelor’s degree in business or computer/technical related field or equivalent experience.
• Deep technical knowledge in the following pillars of technology: Zero Trust, SASE, ZTNA, EDR/MDR, Identity and Access Management, MicroSegmentation, Cloud technologies and security principals (AWS, Azure, GCP)
• Ten or more years’ experience in assessing business drivers and translating them into qualifiable, quantifiable and tactical solutions.
• Five or more years’ experience establishing strategic direction.
• This position may require the ability to travel on average of 50%.

​

Required Qualifications

• High degree of organization and attention to detail.
• Exceptional technical and non-technical communications skills.
• Broad knowledge of IT infrastructure, applications, operating systems, high availability and IT communications.
• Demonstrated ability to communicate, lead, build teams, work independently, and recommend business strategies.
• Exceptional meeting facilitation skills.
• Excellent creative writing, technical writing, and documentation skills.
• Strong business skills.
• Exceptional leadership and team skills.
• Ability to work in fast-paced, high-pressure environments.
• Demonstrates skills in collaboration with virtual teams, cross-functional groups and is able to solve complex problems.
• Experience providing project oversight, management, technical leadership or engineer mentoring.
• Ability to understand, remember, and apply oral and/or written instructions or other information. Ability to organize thoughts and ideas into understandable terminology. Ability to multi-task, organize and prioritize. Ability to apply common sense in performing job. Ability to understand and follow basic instructions and guidelines. Ability to travel as needed.

​

Preferred Qualifications

• Prior security executive experience (VP Security / CISO) in industry.
• Prior consulting experience.

Equal Opportunity Employer, including disability and protected veteran status

Benefits overview: https://cdw.benefit-info.com/