Jobs · Engineering · Washington

Security Engineering Manager - Incident Response, AWS

Amazon Web Services (AWS) · Seattle, WA · 4 days ago
EngineeringFull-time

About the role

We are looking for an experienced security leader to join the Cloud Security team. As a security leader, you will own building and managing a team of incident managers and technical leaders, fostering a strong team culture. You and your team will be expected to drive engineering teams to take the right actions in the right time frames to mitigate risks.

Key job responsibilities

  • Build and lead a high-performing team of security engineers, focusing on recruitment, development, and retention of top security talent.
  • Drive operational excellence in incident management processes, establishing and maintaining SLAs, metrics, and quality standards for security response activities.
  • Partner with service teams and stakeholders across AWS to ensure security issues are properly prioritized and remediated according to risk levels and customer impact.
  • Develop and implement strategic initiatives to improve security response capabilities, including automation, process improvements, and scaling mechanisms.
  • Foster a culture of ownership, continuous learning, and psychological safety while maintaining high security standards and operational excellence.
  • Manage cross-organizational relationships and communication channels to ensure effective escalation paths and resolution of complex security challenges.
  • Lead the development and implementation of security frameworks and controls that balance risk mitigation with business objectives and builder experience.
  • Establish and maintain mechanisms for measuring team performance, operational metrics, and security program effectiveness.
  • Guide architectural decisions and technical strategy for security solutions across multiple organizations and services.
  • Mentor and develop future security leaders while creating growth opportunities for team members.

A day in the life

As a Security Manager, your day typically starts with reviewing overnight security incidents and operational metrics during the team's daily standup. You'll spend time in 1:1s with your direct reports, providing guidance on complex security issues and career development. Throughout the day, you'll participate in strategic planning sessions with service teams, review architectural proposals, and work on improving incident response processes. You'll also engage with senior leadership to provide updates on critical security initiatives and handle escalations when necessary. The role requires balancing tactical incident management with long-term strategic planning while ensuring your team maintains high security standards at scale.

About the team

Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.

Why Amazon Security?
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.

Inclusive Team Culture
In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.

Basic Qualifications

  • 5+ years of managing and developing teams experience
  • 5+ years of progressive work within a software security team or related operating environment experience
  • Bachelor's degree in Computer Science, Information Security, or a related field
  • Knowledge of security of web services, video content protection technologies, cryptography, network security protocols and operating system security
  • Experience in managing and developing teams
  • Experience applying threat modeling or other risk identification techniques or equivalent

Preferred Qualifications

  • Knowledge of information security technologies such as security design review, threat modeling, risk analysis, and software testing techniques
  • information security professional certification (SANS GIAC, CISSP etc.)
  • Experience effectively managing a substantial and time-sensitive workload
  • Experience managing remote team members
  • Experience in written and verbal communication with the ability to present complex technical information in a clear and concise manner to executives and non-technical leaders
  • Experience that includes strong analytical skills, attention to detail, and effective communication abilities, or experience working with customers with a passion for delivering exceptional service
  • Knowledge of information security risk-based prioritization
  • Proven ability to drive incidents to a conclusions based on SLA and severity ratings
  • Experience in vulnerability remediation lifecycle
  • Experience with creating meaningful metrics from service ticketing systems

Similar jobs