Security Manager, Vulnerability Management and Remediation Operations

The Vulnerability Management and Remediation Operations (VMR Operations) organization is looking for a Security Manager with deep technical expertise in security operations and program management to lead our Austin-based team.

Amazon develops products and services that transform the way customers live. Across teams and geographies, we strive to delight customers and earn their trust. Members of the Stores Security team are guardians of that trust. From drones to grocery stores and everything in between, our mission is to assess risk, classify data and systems, detect potential intrusion, and respond quickly to security events across Amazon’s critical business functions, including Retail, Customer Service, Worldwide Operations, Consumer Payments, Physical Stores, and Healthcare.

Within Stores Security, the VMR Operations organization is responsible for all aspects of creating, managing, and remediating security issues across Amazon. Additionally, VMR Operations is responsible running Amazon’s Vulnerability Management lifecycle including vulnerability intake, assessment, discovery, and remediation.




Key job responsibilities
- You will be driving the day-to-day operations of your team across multiple vulnerability management functions, including vulnerability assessments and detection development.

- You will partner with your peers in Seattle, Sydney, and London to continuously improve our operational mechanisms.

- You will partner with builders and leaders across Amazon to ensure proper mitigation and remediation of security issues.

- You will leverage relationships with engineers across Stores Security, business teams, and leaders throughout Amazon prioritize deliverables, escalate roadblocks, and improve organizational processes.

- You will build trust with Principal Engineers and executive leaders by leveraging your technical expertise to understand technical challenges, design improved solutions, and hold a high program bar.

- You will use your information security expertise to champion and drive risk-based decisions across complex, multi-disciplinary programs to ensure Amazon properly manages security risk.

About the team
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.

Why Amazon Security
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.

Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.

Inclusive Team Culture
In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.

Training and Career Growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.

Basic Qualifications

- Bachelor’s Degree in Computer Science, Information Security, Information Technology, or equivalent work experience
- Minimum of five (5) years of experience in threat intelligence, vulnerability management, or other related discipline
- Minimum of two (2) years of engineering or people leadership experience

Preferred Qualifications

- Experience building and operating Vulnerability Management, Threat Intelligence, Incident Response, or other security programs with hundreds of stakeholders and executive leadership visibility
- Excellent communication and data presentation skills that allow you to clearly, compellingly, and effectively influence audiences internally and externally, across organizational boundaries
- Experience performing risk assessments of vulnerabilities and evaluating compensating and mitigating controls in large, complex infrastructures
- Experience hiring, mentoring, and leading Security Engineers and Technical Program Managers
- Relevant industry certifications (ISC2, ISACA, SANS/GIAC, CompTIA, Microsoft, Linux, AWS)

Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.

Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.