Help us protect not only the Amazon Web Services (AWS) cloud computing environment but all of our
customers as well!

As a Principal Security Engineer in AWS Support-Kumo, you will be on the forefront of many security issues for a wide variety of platforms and technologies including cloud services, GenAI, identity and access management, all operating at massive scale. You will have direct impact on the experience of AWS customers and their security efforts through building the next generation of AI powered solutions for AWS Support.

As a Principal Security Engineer in Kumo, you will play a leading role in shaping how we implement Shift Left Security by infusing security practices early in the development workflow - from code and design reviews to testing of applications before release. This role will focus on designing and implementing services, applications, and tools to the highest security standards, preventing insecure application code from ever hitting production. You will have the opportunity to influence the direction of several teams spanning L8 boundaries across Support. You will be responsible for analyzing the security of applications and services, discovering and addressing security issues in the design phase, and quickly reacting to new threat scenarios.

The ideal candidate combines deep technical expertise with exceptional leadership and communication skills. You'll need to clearly articulate complex security risks to both technical and non-technical audiences, effectively harmonize diverse perspectives, and skillfully prioritize risks to guide teams toward secure solutions through influence and collaboration. This role requires a security professional who thrives when partnering closely with product and engineering teams to deliver the most secure customer solutions possible.

Key job responsibilities
1. Bring security expertise into a team of engineers, guiding technical decisions as well as prioritization of features
2. Be a hands-on technical leader, building and testing the products being designed
3. Partner with engineering leaders across Kumo to reduce the friction for builders to develop services that are secure-by-design
4. Drive security decisions across product development workstreams,
5. Developing comprehensive security guidance documentation, including policies, procedures, and best practices, to serve as a reference for the organization.
6. Designing and building security tools tailored to the organization's needs, enhancing the overall security posture.

About the team
AWS Kumo combines the culture of a startup, the innovation and creativity of an R&D Lab, the work-life balance of a mature organization, and provides amazing technical challenges at AWS's scale. Our team provides technology and trusted expertise that intelligently anticipate and resolve AWS customer needs, helping them adopt, optimize, and operate at scale. Kumo’s products, used by AWS customers and the support teams that help them, are vital to ensuring exceptional customer experiences on AWS. Our team owns customer facing applications like Trusted Advisor, Personal Health Dashboard, AWS re:Post, and Support Center and multiple internal tooling systems. We are a highly innovative global organization revolutionizing the way customers engage and seek help from AWS. Support provides a strategic advantage for customers adopting AWS and drives direct revenue to the business.

Basic Qualifications

• 10+ years of industry work with hands-on security engineering experience
• 10+ years of risk assessment and enabling organizations making security decisions experience
• Bachelor's degree in Computer Science or a related field
• Experience communicating technical concepts to a non-technical audience
• Experience with hands-on security engineering
• Experience in risk assessment and enabling organizations to make security decisions
• Experience applying threat modeling or other risk identification techniques or equivalent

Preferred Qualifications

• Knowledge of information security risk-based prioritization
• Knowledge of information security technologies such as security design review, threat modeling, risk analysis, and software testing techniques
• Experience architecting, securing, and operating Amazon Web Services

Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.

Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.

The base salary range for this position is listed below. Your Amazon package will include sign-on payments and restricted stock units (RSUs). Final compensation will be determined based on factors including experience, qualifications, and location. Amazon also offers comprehensive benefits including health insurance (medical, dental, vision, prescription, Basic Life & AD&D insurance and option for Supplemental life plans, EAP, Mental Health Support, Medical Advice Line, Flexible Spending Accounts, Adoption and Surrogacy Reimbursement coverage), 401(k) matching, paid time off, and parental leave. Learn more about our benefits at https://amazon.jobs/en/benefits.

USA, TX, Dallas - 208,300.00 - 281,800.00 USD annually
USA, VA, Arlington - 208,300.00 - 281,800.00 USD annually
USA, WA, Bellevue - 208,300.00 - 281,800.00 USD annually