In this role, you'll have visibility across Amazon's technology landscape, conducting security audits and assessments that directly impact customer trust and Amazon's core operations. You'll work with new technologies and complex systems while collaborating with teams across Amazon to evaluate and enhance security controls.
Strategic Impact:
- Drive enterprise-wide risk remediation by identifying systemic security vulnerabilities, building consensus across business units, and orchestrating comprehensive solutions
- Partner with Directors and VPs to align security action item initiatives with identified risk
- Identify improvements to Amazon's security architecture and controls framework
Key job responsibilities
- Define and execute security assessment strategies that scale across Amazon's services
- Conduct hands-on technical security assessments, including architecture analysis, code inspection, and control testing
- Lead architectural security reviews of Amazon's most critical systems, partnering with Principal Engineers and senior technical leaders
- Drive consensus among senior stakeholders on security findings and remediation approaches
- Develop and optimize enterprise-wide security testing methodologies and mechanisms
- Identify strategic opportunities to improve Amazon's security posture at scale
- Influence organization priorities and technology direction through data-driven recommendations
- Mentor Technical Program Managers and technical teams on security best practices
A day in the life
As a Senior Technical Program Manager in our team, you'll find yourself:
- Leading strategic discussions with Principal Engineers, Directors, and VPs to improve security architecture and controls across Amazon
- Driving complex security programs that span multiple organizations and technical domains
- Conducting deep architectural reviews of Amazon's most critical systems and infrastructure
- Developing scalable security assessment methodologies and mechanisms
- Writing executive-level communications that influence security strategy and investment decisions
- Building consensus among senior stakeholders on complex security challenges
- Managing multiple concurrent programs while maintaining high standards of technical excellence
- Mentoring Technical Program Managers and technical teams on security best practices and assessment methodologies
About the team
We are Amazon's Internal Audit Security team - a unique organization that operates under the direction of Amazon's Audit Committee of the Board of Directors. Our mission is clear: we execute independent assessments of Amazon's security controls and provide security expertise to help protect Amazon's most critical assets.
What makes our team special:
- We have broad visibility across Amazon's technology landscape and security controls
- We partner with security engineers to conduct comprehensive technical assessments
- We operate independently to provide objective security assurance
- Our work directly impacts customer trust and Amazon's core operations
- We influence security improvements across all of Amazon's businesses globally
Basic Qualifications
- Bachelor's degree in engineering, computer science or equivalent
- 7+ years of working directly with engineering teams experience
- 5+ years of technical product or program management experience
- Experience managing programs across cross functional teams, building processes and coordinating release schedules
- Deep expertise conducting security assessments, architecture reviews, and control testing
- Strong track record managing large-scale technical programs across multiple organizations
- Advanced knowledge of security domains (application security, cloud security, identity management)
- Experience building consensus among senior technical leaders and driving architectural decisions
- Excellent analytical and technical judgment skills with proven ability to influence strategy
Preferred Qualifications
- 5+ years of project management disciplines including scope, schedule, budget, quality, along with risk and critical path management experience- Experience defining KPI's/SLA's used to drive multi-million dollar businesses and reporting to senior leadership
- Experience driving security programs at enterprise scale
- Deep knowledge of cloud security architecture, preferably AWS
- Expertise with security frameworks (e.g., NIST, ISO 27001, CIS) and their practical application
- Strong technical background with hands-on experience in software development or security engineering
- Track record of mentoring teams and driving organizational improvements
- Advanced security certifications (e.g., OSCP, CISSP, CISM, AWS Security Specialty)
- Experience presenting to and influencing Director and VP-level stakeholders
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.
Los Angeles County applicants: Job duties for this position include: work safely and cooperatively with other employees, supervisors, and staff; adhere to standards of excellence despite stressful conditions; communicate effectively and respectfully with employees, supervisors, and staff to ensure exceptional customer service; and follow all federal, state, and local laws and Company policies. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness and professionalism, and safeguard business operations and the Company’s reputation. Pursuant to the Los Angeles County Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.
Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.
Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $133,900/year in our lowest geographic market up to $231,400/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits. This position will remain posted until filled. Applicants should apply via our internal or external career site.
United States
