Application Security Manager, Corporate Services Security

Amazon Corporate Services Security is looking for a highly skilled, experienced, and motivated Application Security Engineering Manager to lead and scale an application security team. You and your team will be responsible for (a) developing automation and tooling to identify, manage and monitor application security risks at scale, (b) integrating security requirements into products and processes, (c) proactively performing security assessments to detect and prevent security vulnerabilities, (d) conducting trainings to raise developer awareness of security best practices, (e) performing security testing before release, and (f) partnering closely with our development teams to produce innovative and secure solutions.

As a security leader, you will (a) innovate and solve security challenges at a massive scale, (b) participate in Amazon People Tech Security strategy and direction, road-map planning, and project execution scheduling, (c) hire, build and manage team of security engineers, and (d) foster strong team culture.

A successful candidate will be a deeply curious individual who brings technical and leadership expertise and ability to work within a fast-paced startup culture in a large company that has broad business impact. This is a unique opportunity to get in on the ground floor and scale innovative solutions as a security leader.

As a manager on our team, you will recruit and lead a team of top-notch application security engineers to solve interesting security challenges that arise when Amazon invents new technologies. You’ll help them develop their skills and their careers as you tackle those challenges and contribute to Amazon’s overall security strategy.

Responsibilities:

- Team management, growth, and organization
- Professional development of team members
- Project management
- Deliver security metrics and projections
- Drive security initiatives and security tool development
- Recruiting
- Drive process improvement
- Perform application security reviews to identify security issues and risks, and develop mitigation plans
- Advise and consult with internal customers on risk assessment, threat modeling, code review, and vulnerability remediation
- Provide expert advice to internal customers on developing secure architectures
- Develop and deliver security training and outreach to internal development teams
- Review and update security guidance documentation
- Participate in security escalations support

About the team
Inclusive Team Culture

Here at Amazon, we embrace our differences. We are committed to furthering our culture of inclusion. We have ten employee-led affinity groups, reaching 40,000 employees in over 190 chapters globally. We have innovative benefit offerings, and host annual and ongoing learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences. Amazon’s culture of inclusion is reinforced within our 16 Leadership Principles, which remind team members to seek diverse perspectives, learn and be curious, and earn trust.

Work/Life Balance

We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve in the cloud.

Mentorship & Career Growth

We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.

We are open to hiring candidates to work out of one of the following locations:

London, GBR

Basic Qualifications

- 5+ years of experience leading, managing & developing high performance engineering teams.
- 5+ years of progressive experience within a software security team or similar operating environment.
- BA/BS in computer science, information security, related discipline, or equivalent work experience.
- Detailed knowledge of application security vulnerabilities and remediation techniques.

Preferred Qualifications

- Significant experience and detailed technical knowledge in multiple areas of: security engineering, cryptography, and application security. Strong scripting skills in one or more of the common languages (e.g., Perl, Python, Ruby, shell scripting).
- Experience with threat modeling or other risk identification techniques.
- Ability to deliver high quality solutions while working in a fast-paced environment. Strong project management experience desired for working on cross-functional projects.
- Experience with building software solutions (managing development teams, writing code)
- Demonstrated track record of project delivery with evolving requirements with excellent written and verbal technical communication with an ability to present complex technical information in a clear and concise manner to a variety of audiences.
- Excellent leadership and teamwork skills, results oriented, high energy, self-motivated.

Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice (https://www.amazon.jobs/en/privacy_page) to know more about how we collect, use and transfer the personal data of our candidates.

Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need an adjustment during the application and hiring process, including support for the interview or onboarding process, please contact the Applicant-Candidate Accommodation Team (ACAT), Monday through Friday from 7:00 am GMT - 4:00 pm GMT. If calling directly from the United Kingdom, please dial +44 800 086 9884 (tel:+448000869884). If calling from Ireland, please dial +353 1800 851 489 (tel:+3531800851489).