Back to Search
Mid-Level
Security Engineer, AWS Security
Confirmed live in the last 24 hours
Amazon Support Services Pty Ltd
Melbourne, VIC, AUS
On-site
Posted April 7, 2026
Job Description
Applicants must be Australian citizens and hold or be eligible to obtain an Australian Government Security Clearance, with the ability to successfully complete an Organisational Suitability Assessment. For more information regarding security clearances please visit (https://www.agsva.gov.au/)
Amazon Web Services (AWS) is the leading cloud service provider, providing virtualised infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises to large government customers, run their operations and applications on AWS’ highly secure infrastructure.
AWS Security is looking for a Security Systems Engineer to play a pivotal role in ensuring the security and integrity of our systems and infrastructure. You will work closely with our security team to implement and maintain robust security measures that adhere to Australian Government security requirements, including the Protective Security Policy Framework (PSPF) and the Information Security Manual (ISM).
Key job responsibilities
Key responsibilities may include:
• Performing security event monitoring, incident management and response.
• Develop, tune, and maintain SIEM detections, dashboards, and correlation rules
• Conduct proactive threat hunting and analysis to identify suspicious behaviour
• Investigate, respond and be the escalation point for security alerts and incidents
• Support the integration and optimisation of security data sources within SIEM platforms
• Contribute to continuous improvement of SOC processes and automation initiatives including authoring SOC SOP’s and runbooks.
• Apply frameworks such as MITRE ATT&CK and NIST in concert with the ISM and PSPF to guide security operations.
• Perform on-call duties as required, out of business hours.
Applicants must be Australian citizens and hold or be eligible to obtain an Australian Government Security Clearance with the ability to successfully complete an Organisational Suitability Assessment. More information regarding security clearances can be found at https://www.agsva.gov.au/
A day in the life
A typical day for a Security Engineer may involve
Responding to new detections: Monitor security alerts in real-time, investigate suspicious activities by analysing logs and network traffic, determine if incidents are legitimate threats or false positives, and coordinate immediate response actions including containment and remediation when threats are confirmed.
Write security detections: Develop and implement custom detection rules based on emerging threat intelligence, tune existing security signatures to reduce false positives while maintaining coverage, and create automated alerts for specific attack patterns or indicators of compromise relevant to the organization's environment.
Threat hunt: Proactively search through network logs, endpoint data, and system activities for signs of advanced persistent threats that may have evaded automated detection systems, using threat intelligence feeds and behavioural analysis to identify potential security breaches before they cause significant damage.
Work with service teams on security issues: Collaborate with IT, network, and application teams to remediate identified vulnerabilities, coordinate security patches and system hardening efforts, provide security guidance during incident response, and ensure proper implementation of security controls across all infrastructure components.
Generate metrics and dashboards: Create and maintain security performance indicators including incident response times, threat detection rates, and system availability metrics, develop executive-level reports summarizing security posture and trends, and build real-time dashboards for continuous monitoring of security operations effectiveness.
About the team
Diverse Experiences
AWS values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.
Why Amazon Security
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
The team is comprised of security professionals with a cross section of na
Amazon Web Services (AWS) is the leading cloud service provider, providing virtualised infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises to large government customers, run their operations and applications on AWS’ highly secure infrastructure.
AWS Security is looking for a Security Systems Engineer to play a pivotal role in ensuring the security and integrity of our systems and infrastructure. You will work closely with our security team to implement and maintain robust security measures that adhere to Australian Government security requirements, including the Protective Security Policy Framework (PSPF) and the Information Security Manual (ISM).
Key job responsibilities
Key responsibilities may include:
• Performing security event monitoring, incident management and response.
• Develop, tune, and maintain SIEM detections, dashboards, and correlation rules
• Conduct proactive threat hunting and analysis to identify suspicious behaviour
• Investigate, respond and be the escalation point for security alerts and incidents
• Support the integration and optimisation of security data sources within SIEM platforms
• Contribute to continuous improvement of SOC processes and automation initiatives including authoring SOC SOP’s and runbooks.
• Apply frameworks such as MITRE ATT&CK and NIST in concert with the ISM and PSPF to guide security operations.
• Perform on-call duties as required, out of business hours.
Applicants must be Australian citizens and hold or be eligible to obtain an Australian Government Security Clearance with the ability to successfully complete an Organisational Suitability Assessment. More information regarding security clearances can be found at https://www.agsva.gov.au/
A day in the life
A typical day for a Security Engineer may involve
Responding to new detections: Monitor security alerts in real-time, investigate suspicious activities by analysing logs and network traffic, determine if incidents are legitimate threats or false positives, and coordinate immediate response actions including containment and remediation when threats are confirmed.
Write security detections: Develop and implement custom detection rules based on emerging threat intelligence, tune existing security signatures to reduce false positives while maintaining coverage, and create automated alerts for specific attack patterns or indicators of compromise relevant to the organization's environment.
Threat hunt: Proactively search through network logs, endpoint data, and system activities for signs of advanced persistent threats that may have evaded automated detection systems, using threat intelligence feeds and behavioural analysis to identify potential security breaches before they cause significant damage.
Work with service teams on security issues: Collaborate with IT, network, and application teams to remediate identified vulnerabilities, coordinate security patches and system hardening efforts, provide security guidance during incident response, and ensure proper implementation of security controls across all infrastructure components.
Generate metrics and dashboards: Create and maintain security performance indicators including incident response times, threat detection rates, and system availability metrics, develop executive-level reports summarizing security posture and trends, and build real-time dashboards for continuous monitoring of security operations effectiveness.
About the team
Diverse Experiences
AWS values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.
Why Amazon Security
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
The team is comprised of security professionals with a cross section of na
gorustawsaiiosdataproduct
Similar Jobs
Anduril Industries
Lead Product Quality Engineer - Edge Compute and Comms
SeniorCosta Mesa, Californ...
Anduril Industries
Senior Technical Security Application Engineer, Secured Spaces
SeniorCosta Mesa, Californ...
Financial Times
Cyber Security Engineer
Mid-LevelLondon
Anduril Industries
Senior SEIT Engineer
SeniorLondon, England, Uni...
Anthropic
IT Support Engineer
Mid-LevelSan Francisco, CA | ...$230,000 USD
Anduril Industries
Senior SEIT Engineer, Atlantic Net
SeniorLondon, England, Uni...