Sr. Manager, Red Team, Defensive Security, Corporate Services Security (CPSS)
US, Virtual
Full Time Senior-level / Expert USD 187K - 324K
Amazon.com
Free shipping on millions of items. Get the best of Shopping and Entertainment with Prime. Enjoy low prices and great deals on the largest selection of everyday essentials and other products, including fashion, home, beauty, electronics, Alexa...
Come lead our Threat Emulation team! We're seeking a highly experienced cybersecurity professional to lead an offensive security team simulating real-world threat scenarios.
As part of the role, you’ll dive into our customer’s spaces to identify how we can best emulate our adversaries and validate the security posture around our customer’s critical assets. You’ll partner with your peer Defensive Security teams to ingest targeted threat intelligence reporting to drive threat emulation and detection. You’ll analyze security activities and events to identify areas where we can pressure test Amazon's detection security controls supporting our systems and human-centered processes. You’ll mentor and guide your team of highly successful Security Engineers throughout their projects and careers.
Key job responsibilities
This is an inherently cross-functional role working across business and technical domains; it requires a strong ability to influence others, partner effectively, and know where to prioritize for strategic impact. You'll be responsible for developing strategic campaigns targeting Amazon's corporate systems that emulate threat actor Tactics, Techniques, and Procedures (TTP). As part of your campaigns, you'll lead your team to design, develop, and implement both off-the-shelf and custom offensive security tooling in order to be successful. You'll collaborate with peer Defensive Security and Product Security teams to drive strategic risk remediation of identified findings and support remediation strategies.
About the team
Corporate Services Security (CPSS) Defensive Security organization develops both detective and preventive security controls, conducts adversary emulation, builds defensive security tooling, and partners with key stakeholders for strategic risk remediation.
- Bachelor's degree or equivalent practical experience
- 10+ years of experience with security engineering, identity management and authentication, and threat modeling experience
- Experience with AWS products and services
- Excellent written and verbal communication skills
- Threat hunting and/or detection engineering with experience in automation and orchestration
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.
Los Angeles County applicants: Job duties for this position include: work safely and cooperatively with other employees, supervisors, and staff; adhere to standards of excellence despite stressful conditions; communicate effectively and respectfully with employees, supervisors, and staff to ensure exceptional customer service; and follow all federal, state, and local laws and Company policies. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness and professionalism, and safeguard business operations and the Company’s reputation. Pursuant to the Los Angeles County Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.
Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.
Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $187,500/year in our lowest geographic market up to $324,100/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits. This position will remain posted until filled. Applicants should apply via our internal or external career site.
As part of the role, you’ll dive into our customer’s spaces to identify how we can best emulate our adversaries and validate the security posture around our customer’s critical assets. You’ll partner with your peer Defensive Security teams to ingest targeted threat intelligence reporting to drive threat emulation and detection. You’ll analyze security activities and events to identify areas where we can pressure test Amazon's detection security controls supporting our systems and human-centered processes. You’ll mentor and guide your team of highly successful Security Engineers throughout their projects and careers.
Key job responsibilities
This is an inherently cross-functional role working across business and technical domains; it requires a strong ability to influence others, partner effectively, and know where to prioritize for strategic impact. You'll be responsible for developing strategic campaigns targeting Amazon's corporate systems that emulate threat actor Tactics, Techniques, and Procedures (TTP). As part of your campaigns, you'll lead your team to design, develop, and implement both off-the-shelf and custom offensive security tooling in order to be successful. You'll collaborate with peer Defensive Security and Product Security teams to drive strategic risk remediation of identified findings and support remediation strategies.
About the team
Corporate Services Security (CPSS) Defensive Security organization develops both detective and preventive security controls, conducts adversary emulation, builds defensive security tooling, and partners with key stakeholders for strategic risk remediation.
Basic Qualifications
- Bachelor's degree or equivalent practical experience
- 10+ years of experience with security engineering, identity management and authentication, and threat modeling experience
Preferred Qualifications
- Strong judgement in assessing and prioritizing technical risk- Experience with AWS products and services
- Excellent written and verbal communication skills
- Threat hunting and/or detection engineering with experience in automation and orchestration
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.
Los Angeles County applicants: Job duties for this position include: work safely and cooperatively with other employees, supervisors, and staff; adhere to standards of excellence despite stressful conditions; communicate effectively and respectfully with employees, supervisors, and staff to ensure exceptional customer service; and follow all federal, state, and local laws and Company policies. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness and professionalism, and safeguard business operations and the Company’s reputation. Pursuant to the Los Angeles County Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.
Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.
Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $187,500/year in our lowest geographic market up to $324,100/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits. This position will remain posted until filled. Applicants should apply via our internal or external career site.
Job stats:
0
0
0
Categories:
Leadership Jobs
PenTesting Jobs
Tags: Automation AWS Offensive security Product security Red team Threat intelligence
Perks/benefits: Equity / stock options Team events
Regions:
Remote/Anywhere
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information Security Specialist jobsSenior Cloud Security Engineer jobsInformation System Security Officer jobsSenior Security Analyst jobsSenior Cybersecurity Engineer jobsSystems Administrator jobsInformation Security Manager jobsSystems Engineer jobsSenior Information Security Analyst jobsSenior Network Security Engineer jobsIT Security Engineer jobsCyber Security Specialist jobsIT Security Analyst jobsChief Information Security Officer jobsSecurity Specialist jobsSecurity Consultant jobsInformation System Security Officer (ISSO) jobsInformation Systems Security Engineer jobsSenior Information Security Engineer jobsSenior Cyber Security Engineer jobsSenior Product Security Engineer jobsCyber Threat Intelligence Analyst jobsCyber Security Architect jobsThreat Intelligence Analyst jobsSenior Software Engineer jobs
Java jobsEncryption jobsEDR jobsBash jobsTS/SCI jobsIDS jobsIPS jobsThreat detection jobsSQL jobsTerraform jobsSDLC jobsSplunk jobsMalware jobsTop Secret jobsFinance jobsDocker jobsForensics jobsSOC 2 jobsRMF jobsActive Directory jobsCompTIA jobsIntrusion detection jobsITIL jobsOWASP jobsGIAC jobs
DoDD 8570 jobsVPN jobsAnsible jobsHIPAA jobsOSCP jobsIT infrastructure jobsData Analytics jobsTCP/IP jobsUNIX jobsCCSP jobsCRISC jobsSAP jobsBanking jobsSANS jobsSOAR jobsSOX jobsJavaScript jobsMITRE ATT&CK jobsSecurity strategy jobsClearance Required jobsMachine Learning jobsZero Trust jobsDNS jobsJira jobsPolygraph jobs