Find your next role

Description

Lead a team of Security Engineers protecting Amazon's HR and and Legal systems.This is an inherently cross-functional role working across business and technical domains; it requires a strong ability to influence others, partner effectively, and know where to prioritize for strategic impact.

The Corporate Services Security (CPSS) Security for Employee and Legal Systems (SEALS) team protects Amazon's enterprise HR and Legal applications, ensuring they meet the high security standards. You'll elevate our security strategy through broad leadership, cross-functional collaboration, and delivery of high-quality results that push us to continuously improve for our customers. You will set the strategic direction for the entire software development lifecycle while developing and taking your team to the next level. Ideal candidates will have an established background as an application/product security engineering manager with experience spanning threat modeling, architecture reviews, scanning and assessments, and remediation/mitigation approaches. You will understand AI application security threats and embrace AI to scale delivery. You will combine technical leadership with managerial depth, with a proven track record of aligning security with the strategies of the businesses you support and collaborating effectively with builder teams throughout the phases of the SDLC.

Key job responsibilities
- Assess security risks, establish mitigation strategies, and develop technical roadmaps. Partner with PXT and Legal builder teams to understand requirements and integrate security seamlessly into their work. Align with key business stakeholders to ensure that objectives are focused on areas of key concern and change; provide technical oversight for all phases of the software development lifecycle.
- Partner with peers, partners, customers and stakeholders to prioritize and drive implementation of security-related technical and process controls to remediate risks identified during engagements. Communicate updates to senior security and business leadership on a regular cadence.
- Hire, develop, and mentor security engineers, and manage the day-to-day activities of the team. Create the organization of the future by driving a culture of inclusion where team members are encouraged to take risks and push limits to challenge organizational security assumptions.
- Drive security initiative planning, outcomes and improvements: Participate in wider leadership across CPSS and Amazon Security functions. Establish roadmap/strategic direction for the team
- Implement success metrics, reporting, and processes that measure program outcomes and effectiveness.


A day in the life
- Owning and driving large-scale programs and campaigns for awareness of policy or adoption of new security mechanisms
- Using automation to scale security mechanisms across the business and minimize friction around security controls
- Conducting threat modeling sessions, architecture reviews, and security assessments with PXT and Legal builder teams throughout the SSDLC
- Diving deep into the control landscape and operations of corporate services with builder teams
- Owning security escalation action items and informing Senior Leadership on short, medium, and long-term recommendations to triage escalations and mitigate risks
- Bar raising deliverables and mentoring team members and builders


About the team
SEALS (Security for Legal and Employee Services) supports Amazon's People eXperience & Technology (PXT) and Legal teams. We are the dedicated Business Security team responsible for protecting the critical systems that power Amazon's workforce and legal operations. Our mission is to ensure these enterprise business applications meet the high security standards required to maintain and enhance customer trust.