Senior Manager, AWS Corp Security Response

Job ID: 2875825 | Amazon Web Services, Inc.

Amazon Web Services (AWS) is seeking an experienced and self-motivated Senior Security Engineering Manager to join our AWS Corporate Security Response team (CorpSec). Reporting to the Global Corporate Security Response Lead, you will work as the Corp Response US Senior Lead, which is a manager of managers role, with the leaders of the US East and US West sites reporting to you. You may also act as the AWS CorpSec Response global secondary leader when required. This role is a senior leader in a team of talented and high-performing security professionals responsible for detecting, analyzing, and responding to information security threats across Amazon, as part of a global, follow-the-sun corporate security response team.

The successful candidate will have a good mix of leadership skills and experience, deep technical knowledge, and a demonstrated background in information security. We value broad and deep technical knowledge, specifically in the fields of incident response, detection, malware analysis, digital forensics, operating system security, network security, cryptography, software security, security operations and tooling, and emergent security intelligence. The Security Engineers in the teams that you will be leading perform as both Security Incident Response Engineers, and also as the owners and builders of the tooling and capabilities that they use for response. As such, proven experience in leading security response functions and also security tooling and automation delivery and operationalization is highly preferred.

1. Security Responsibilities
   1. Lead and coordinate the activities of the AWS Security Corporate Security Response teams located across North America to ensure timely and effective response to security issues.
   2. Lead security incident response processes, identify and measure critical security operations metrics and continually improve the efficiency and effectiveness of the Corporate Security Response team.
   3. Lead the development and operations of continually improving security automation, detection, tooling, and capabilities.
   4. Partner with key stakeholders and partner teams across Amazon Security as well as Amazon Corporate IT teams to identify and implement process changes, improvements, and efficiencies; ensure solid security practices.
   5. Monitor information security threat intelligence resources and maintain situational awareness of security events relevant to Amazon and its subsidiaries.
   6. Ensure continuity of operations for security events through effective communications between the global nodes of AWS Security Operations.
   7. Work with your peers to assist the Global Corporate Security Response Lead in defining the overall corporate security response strategy for Amazon.
2. Performance Management Responsibilities
   1. Create a positive work environment and provide a goal-driven framework for information security success in which team members may achieve organizational and individual performance objectives.
   2. Act as a manager of managers, providing mentoring, guidance, and oversight of their front-line leadership of the teams that report up through you.
   3. Own all facets of performance, hiring, and career management for the team.
   4. Provide technical and soft skill coaching to maintain a well-rounded, innovative, and operational organization.
   5. Establish training programs for your directs.
   6. Supervise day-to-day activities of the team, providing management escalation support as required.
   7. Track and report on key initiatives being delivered by the team.

• Bachelor's degree in Computer Science, related field or relevant work experience.
• 10+ years of industry experience with a proven track record of hands-on security response experience.
• 10+ years managing and building teams (including coaching and mentoring).
• Strong and proven ability to communicate technical concepts to a non-technical audience and stakeholders.

• Master’s degree.
• 7+ years of experience with information security technologies such as continuous security monitoring, EDR, anti-malware controls, intrusion detection/prevention, forensics, detection, access control, SOAR, SIEM & CSIRT-focused systems.
• 7+ years of progressive experience within a Security Operations Center or similar operating environment, coordinating responses to security incidents.
• Subject matter expertise in incident response, malware analysis, digital forensics, operating system security, network security, cryptography, software security, security operations, and/or emergent security intelligence.
• Information security professional certifications encouraged (SANS GIAC, CISSP etc.).
• Experience leading the development of security tooling, infrastructure, and processes.
• Excellent written communication skills, with a focus on translating technically complex issues into simple, easy to understand concepts.
• Strong information security risk-based prioritization abilities.

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.

Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit here for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.

Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $187,500/year in our lowest geographic market up to $324,100/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit here. This position will remain posted until filled. Applicants should apply via our internal or external career site.