Senior Security Engineer, AI Application Security, Leo Security
Amazon · Redmond, WA · 2 wk ago
Quality AssuranceFull-time
About the role
The Leo Security team owns the security of product and operations of Amazon Leo end-to-end. We provide the necessary infrastructure and mechanisms to ensure the security of our satellite constellation and to protect the integrity and confidentiality of our customer data. Our team drives the research & development, deployment and operation of several mission-critical security systems and mechanisms.
Responsibilities
- Serve as the organization's AI security subject matter expert.
- Drive AI tool approval reviews, lead security reviews for AI-integrated systems, and make policy decisions on AI adoption.
- Represent security in cross-Amazon AI security working groups and drive cross-team alignment on AI policy direction.
- Mentor and backstop AI leads across teams on AI consultations and reviews.
- Define and drive implementation of proactive security controls for AI applications including GenAI-powered tools, agentic systems, and LLM-integrated services.
- Guide teams towards solutions that are secure by default; if secure-by-default solutions don't exist, invent and propose them.
- Develop and implement security controls for the AI software development lifecycle, ensuring builders build secure AI applications by default.
- Assess and drive mitigation of AI-specific security risks including prompt injection, model abuse, data exfiltration, unauthorized tool invocation, and autonomy boundary violations at scale.
- Establish environment-specific security bar, threat models, and defense priorities for AI systems.
- Construct security frameworks, rubrics, and runbooks for AI-related problem domains that enable others to apply your work in a repeatable way.
- Collaborate with builder teams to assess technical debt and risk in AI systems.
- Provide strategic direction that addresses vulnerabilities and fortifies our products.
- Lead the burn down of long-term AI security risk.
- Drive adoption of AI security guardrails, testing frameworks, and monitoring across the organization.
- Collaborate with business leaders to define AI security priorities.
- Support leaders by acting as a trusted advisor and providing direction that makes security easy.
- Help leaders measure their org's security execution.
- Work with builder teams to understand their build processes and ensure they use appropriate security linting, static analysis, and AI-specific testing tools.
- Instill a security culture in builder teams.
- Mentor builders who aspire to become security advocates and security engineers via 1-1 sessions and office hours.
- Assist Red Teams in identifying AI security testing priorities.
- Scope penetration tests for AI systems and help deep-dive on these engagements.
- Support security incident investigations related to AI systems, including prompt injection attacks, model misuse, and data exfiltration attempts.
- Investigate emerging AI security issues, root cause them, and devise mechanisms to prevent them.
- Propose a security vision for AI that delivers security and protects our customers.
- Leverage support from automation teams that find discoverable vulnerabilities.
- Advocate for the creation and deployment of new testing tools and detection mechanisms.
- And last of all—hack some really cool bleeding edge tech!
Qualifications
- 5+ years of any combination of the following: application security frameworks, identity and access controls, incident response, mobile security, cloud computing and security, AI security, threat intelligence, and penetration testing experience.
- Demonstrated experience security-reviewing or architecting at least three of: AWS-hosted inference (Bedrock, IAM scoping, KMS, region/partition constraints), agentic systems (autonomy boundaries, prompt injection, tool-use mediation), MCP servers (data access patterns, registration/compliance, agentic MCP risk), model hosting infrastructure, 3P AI tool security review (data flow analysis, ingress/egress control, ECI/ITAR scoping).
- 3+ years of hands-on AI/ML security work (security reviews of AI-integrated systems, threat modeling for AI tools, exposure to common AI architectures such as inference platforms, agentic systems, MCP/tool-use, and 3P AI tools).
- Experience driving formal security reviews (ASR or equivalent) of complex AI systems through to certification, with comfort in risk-based review prioritization.
- Knowledge of common AI security risks (prompt injection, data poisoning, model extraction, insecure tool use, autonomy boundary violations).
- Demonstrated experience driving security policy decisions in cross-team or cross-org working group settings, comfortable navigating consensus among technical and non-technical stakeholders.
- 5+ years of experience communicating complex technical concepts to non-technical audiences, with strong written and verbal skills and the ability to work effectively across internal and external organizations.