Security Engineering Manager, Stores AppSec
About the role
We are looking for an experienced security leader to join the Application Security team. As a security leader, you will manage multiple teams of security engineers, fostering a strong team culture and driving progress towards strategic goals.
Responsibilities
- Lead, manage, and develop a team of Security Engineers and Technical Program Managers responsible for Application Security (AppSec) of Amazon services.
- Your team has an emphasis on fast paced, highly visible engagements.
- You will be comfortable with a high level of ambiguity, exercising strong ownership, and be able to make high judgement decisions focusing on what is best for Amazon's Customers.
- You should thrive in navigating complex stakeholder engagements a skill integral to the teams success.
- You will lead the strategic direction and evolution of Application Security review team/s, including setting goals and establishing priorities.
- You will set the direction for the team by driving strategic initiatives, influencing leadership, key stakeholders, and partnering with teams throughout Amazon.
- You will develop a healthy and collaborative culture and enable the team to deliver results.
- You will lead effective teamwork, communication, collaboration and commitment across multiple disparate groups with competing priorities.
- You will drive improvements to internal program and process.
- You will write and deliver high-quality documents for technical and non-technical audiences.
- You will drive the adoption of security processes, automation, and tooling to improve operational efficiency.
Requirements
5+ years of managing and developing teams experience
5+ years of progressive work within a software security team or related operating environment experience
Bachelor's degree in Computer Science, Information Security, or a related field
Knowledge of security of web services, video content protection technologies, cryptography, network security protocols and operating system security
Experience applying threat modeling or other risk identification techniques or equivalent
Information security professional certification (SANS GIAC, CISSP etc.)
Master's degree in Computer Science or a related field
Knowledge of information security technologies such as security design review, threat modeling, risk analysis, and software testing techniques
Experience managing remote team members
Qualifications
- Bachelor's degree in Computer Science, Information Security, or a related field
- 5+ years of managing and developing teams experience
- 5+ years of progressive work within a software security team or related operating environment experience
- Knowledge of security of web services, video content protection technologies, cryptography, network security protocols and operating system security
- Experience applying threat modeling or other risk identification techniques or equivalent
- Information security professional certification (SANS GIAC, CISSP etc.)
- Master's degree in Computer Science or a related field
- Knowledge of information security technologies such as security design review, threat modeling, risk analysis, and software testing techniques
- Experience managing remote team members