Senior Information Security Engineer

As the Senior Information Security Engineer for Bezos Academy, you will be responsible for helping implement the organization's information security strategy. Working with leaders from across the organization, you will help mature our information security practices, using industry-leading methods designed for our modern SaaS/PaaS environment. You will have a comprehensive experience with information security principles, application security best practices, and data privacy regulations. You will be able to balance technical expertise with strategic thinking to protect our organization's systems and data and maintain the trust of our stakeholders

You will be part of a small team that operates at all levels, from strategic design to operations support. Your broad experience across multiple technologies and your tenacious appetite for learning and discovery will be foundational to your success. Your customer-centric approach to your work will be paramount. Above all, you are deeply inspired by our mission to support early childhood education in under-resourced communities.

LOCATION

• Flexible in the United States; Seattle, WA preferred
• Relocation support is available for this role for those willing to move to Seattle, WA.

COMPENSATION & BENEFITS

• The full salary range for this position, across all United States geographies, is $137,000 – $273,000 per year. The upper portion of the salary range is typically reserved for employees who have been in the role for multiple years and have demonstrated strong performance over time. Starting salary will vary by location, qualifications, and prior experience; during the interview process, candidates will learn the starting salary range applicable for their location.
• This role includes 15 paid days of vacation, 4 days of paid personal time off, 7 paid days of sick (care) time, 9 paid holidays, 5 paid days off for an organization-wide winter break, and additional time off if required by applicable law. Benefits for this role include medical, dental, and vision insurance, life insurance, disability insurance, a 401(k) plan with a 4% employer contribution match, paid parental leave, an employer-matched flexible spending account for dependent care, and more. Please see here for details.

MINIMUM QUALIFICATIONS

• Eight or more years of experience in information security architecture, engineering, and systems integration, with a strong focus on cloud security, application security, and data privacy
• Extensive knowledge of and experience with information security frameworks and data protection regulations (e.g., NIST, ISO, COPPA, FERPA, CCPA, CPRA, etc.)
• Up to date on direct-to-consumer applications to ensure regulatory compliance and data privacy protection
• Proficiency in security tools and technologies including SIEM/SOAR (e.g. Sentinel, Splunk, etc.), EDR/XDR (e.g. CrowdStrike, Defender, etc.), SWG (Cisco Umbrella, Zscaler, etc.), and application security testing platforms (e.g., Checkmarx, Veracode, etc.)
• Strong understanding of and experience with Development, Security, and Operations (DevSecOps) integration, secure coding practices, threat modeling, and security code reviews
• Excellent problem-solving, analytical, and communication skills along with exemplary organizational skills and detail orientation

PREFERRED QUALIFICATIONS

• Experience with cloud-based automated system deployment, configuration management, device management, and application deployment systems for Mac and Windows (e.g., Jamf, Intune)
• Experience leading technical projects including research, planning, implementation, and ongoing support
• Proficient in communicating with technical and non-technical stakeholders, including creating customer-facing documentation
• Hands-on experience with scripting to automate tasks using languages such as PowerShell or Python
• Experience developing and delivering information security training and awareness programs to educate staff on information security best practices and promote a culture of security
• Experience with cloud security (e.g., AWS and Azure) and securing emerging technologies (e.g., Generative AI, LLMs, etc.)

Bezos Academy participates in E-Verify and will provide the federal government with employee Form I-9 Information to confirm authorization to work in the U.S. Bezos Academy only uses E-Verify once a candidate has accepted a job offer and completed the Form I-9. If E-Verify cannot confirm that an employee is authorized to work, Bezos Academy will give the employee written instructions and an opportunity to contact the Department of Homeland Security (DHS) or Social Security Administration (SSA) so the employee can begin to resolve the issue before any adverse employment action is taken. For more information about your right to work, please see the Notice of Right to Work.

We are committed to providing reasonable accommodations to individuals with disabilities. If you are in need of an accommodation to participate in the application process, please reach out totalent@bezosacademy.org . We will work with you to ensure you have a fair opportunity to apply for our open positions.

Accepted file types: pdf, doc, docx, txt, rtf

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

Employment

Title *

Select...

Start date year *

End date month * Select...

End date year *

Current role

Education

School Select...

Degree Select...

Select...

End date month Select...

End date year

Are you legally authorized to work in the United States for Bezos Academy? * Select...

Note: If hired, a Form I-9, Employment Eligibility Verification, must be completed at the start of employment.

Do you now, or will you in the future, require sponsorship for employment visa status (e.g., H-1B visa status, etc.) to work legally for our company in the United States? * Select...

Has a government agency or past employer ever made findings that you engaged in any form of child abuse or neglect? * Select...

If yes, please list the government agency or employer that made the findings, the date the findings were made, and the facts and circumstances surrounding the incident.

How did you hear about this role? * Select...

If you heard about this role from a Bezos Academy employee or recruiter, please list their full name:

How many years of professional (non-internship) experience do you have in information security architecture, engineering, and systems integration, with a strong focus on cloud security, application security, and data privacy? * Select...

Tell us more about your experience in information security. *

A) I have extensive knowledge of and experience with information security frameworks and data protection regulations (e.g., NIST, ISO, COPPA, FERPA, CCPA, CPRA, etc.)

B) I am proficient in security tools and technologies including SIEM/SOAR (e.g. Sentinel, Splunk, etc.), EDR/XDR (e.g. CrowdStrike, Defender, etc.), SWG (Cisco Umbrella, Zscaler, etc.), and application security testing platforms (e.g. Checkmarx, Veracode, etc.)

C) I have a strong understanding of and experience with DevSecOps, secure coding practices, threat modeling, and security code reviews

D) I do not yet have experience in any of these areas, but I am willing to learn

Tell us more about your specialized experience (choose all that apply) *

A) I have experience with cloud-based automated system deployment, configuration management, device management, and application deployment systems for Mac and Windows (e.g., Jamf, Intune)

B) I have experience leading technical projects including research, planning, implementation, training, and ongoing support

C) I have hands-on experience with scripting to automate tasks using languages such as PowerShell or Python

D) I do not yet have experience in any of these areas, but I am willing to learn

Which of the following describes your location preferences? * Select...

This position can be located anywhere in the country, however, it is optimal to be located within one hour's standard drive of multiple Bezos Academy schools and preferably in Seattle, near our headquarters. See our website for school locations in multiple states. Bezos Academy also offers generous and comprehensive relocation support for those willing to relocate to Seattle for this role.

Describe an experience where you led end-to-end security responsibilities for a project or organization. This can be either an application security or information security example. Include details about the technology stack involved and a complex, cross-functional challenge you helped solve. *

Please ensure your paragraph follows grammatical conventions.

I confirm my understanding of the following: *

By checking this box, I confirm my understanding of the above statement.

Information provided in support of this application, including but not limited to my resume or curriculum vitae and the above information, is true and correct. I understand that false statements or material omissions of any kind during the hiring process may result in denial of employment or discharge.

I affirm that I am personally submitting this application. I understand that, barring any accommodations granted by Bezos Academy, the submission of applications by third parties, including recruitment agencies and candidate placement services, is strictly prohibited. I acknowledge that any submission made on my behalf by an unauthorized third party may lead to the rejection of my application or subsequent termination of employment.

I consent to receive automated text and voice messages (including job marketing messages) from or on behalf of the company to my mobile phone number about work-related matters. Message and data rates may apply. Consent is not condition of employment or any purchase. I will notify the company if my mobile phone number changes.

I understand and agree that if I am employed, I will be employed on an at-will basis. As an at-will employee, I understand and agree that either the company or I can terminate our employment relationship, at any time for any reason, with or without advance notice and with or without cause.

I understand that nothing contained in this employment application or interview process is intended to create an employment contract and that no representation or promise regarding the duration or the termination of employment is authorized or binding unless contained in a written document signed by the President of Day 1 Academies, doing business as Bezos Academy.

For government reporting purposes, we ask candidates to respond to the below self-identification survey.Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiringprocess or thereafter. Any information that you do provide will be recorded and maintained in aconfidential file.

As set forth in Bezos Academy’s Equal Employment Opportunity policy,we do not discriminate on the basis of any protected group status under any applicable law.

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection.As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measurethe effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categoriesis as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.

Select...

Form CC-305

Page 1 of 1

OMB Control Number 1250-0005

Expires 04/30/2026

We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years.

Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp .

A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability. Disabilities include, but are not limited to:

• Alcohol or other substance use disorder (not currently using drugs illegally)
• Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDS
• Blind or low vision
• Cancer (past or present)
• Cardiovascular or heart disease
• Celiac disease
• Cerebral palsy
• Deaf or serious difficulty hearing
• Diabetes
• Disfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disorders
• Epilepsy or other seizure disorder
• Gastrointestinal disorders, for example, Crohn's Disease, irritable bowel syndrome
• Intellectual or developmental disability
• Mental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSD
• Missing limbs or partially missing limbs
• Mobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supports
• Nervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS)
• Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilities
• Partial or complete paralysis (any cause)
• Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysema
• Short stature (dwarfism)
• Traumatic brain injury

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.