Security Engineering Manager, AWS Security Testing

Security Engineering Manager, AWS Security Testing

Job ID: 2788106 | Amazon Development Center U.S., Inc.

Help us protect not only the Amazon Web Services (AWS) cloud computing environment but all of our customers as well! Since 2006, our great team at AWS has been enabling our customers to bring great ideas to life in ways that aren’t possible in traditional IT environments. With AWS you can flexibly harness compute, storage, security, and other services from across the globe as your business demands them.

AWS Security is on the cutting edge of many security issues for a wide variety of platforms and technologies including cloud services, Internet of things (IoT), identity and access management, mobile devices, virtualization and custom hardware, all operating at massive scale. Similarly, our highly collaborative team is committed to each team member’s growth as our business grows.

We are looking for a Pentest Security Engineer Manager to lead one of our holistic testing teams and help validate that our services, applications, and websites are secured against the latest threats. You will be responsible for managing a team of security engineers conducting penetration tests, threat emulation tests, evolving the security assurance process, manage third party vendors, and creating metrics to demonstrate your team’s performance. You will help set the direction for a team of security professionals that is responsible for all AWS products and services. This role combines long term strategic planning to raise the bar on security across the enterprise with the excitement and challenge of quickly reacting to new threat scenarios.

As a security engineering manager at Amazon, you will be expected to speak authoritatively on behalf of your team and your technical knowledge should demonstrate both depth and breadth. You will be responsible for your team’s organizational structure and how that team works within the context of the larger AWS Security team. Leveraging the strengths of individual team members, delegating tasks appropriately and managing delivery of long term projects will all be critical tasks for this role. A Technical Manager III has deep knowledge in their domain and is a sought after thought leader across the organization. They have both management and technical expertise and actively participate in the organization’s planning processes.

Managers in this role must define metrics to quickly and accurately present the team’s performance and variance against its goals. They must also participate in and/or coordinate segments of cross-AWS initiatives, communicating status and results effectively across the division. A Technical Manager III is expected to seek out stretch assignments for your current team and foster their professional career development.

Key job responsibilities

1. Team management, growth, and organization
2. Professional development of team members
3. Project management
4. Metrics and projections
5. Driving security initiatives
6. Recruiting
7. Process Improvement

A day in the life
In this role you'll lead a team of engineers and TPMs, you'll build their careers and help solve complex security problems. You'll help identify trends in the findings your team generates and will work with partners to remove these bug classes at source. You'll participate in hiring, development, training, and team leadership. You'll own a part of the team and will be encouraged to grow your ownership and role.

BASIC QUALIFICATIONS

- A Bachelor’s degree in Computer Science, Cybersecurity, Information Security, degree in similar technical field, or equivalent professional experience can be used in lieu of a degree.
- Minimum of 5 years of experience in Security Engineering management
- Minimum of 5 years of experience in security testing (Penetration testing, Vulnerability testing, Red teaming, bug hunting, CTF experience, or related field).
- Experience in Application Security Engineering
- Excellent written and verbal communication skills

PREFERRED QUALIFICATIONS

- Experience building complex systems
- Experience working in a cloud environment
- Offensive security experience

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.