AWS Application Security Technical Program Manager


Toronto, Ontario, Canada

Full time

Quality Management / Quality Assurance / Testing

May 4


Job summary

Since early 2006, Amazon Web Services (AWS) has provided companies of all sizes with an infrastructure web services platform in the cloud. With AWS you can requisition compute power, storage, and other services thereby gaining access to a suite of elastic IT infrastructure services as your business demands them.

AWS customers can take advantage of’s global computing infrastructure which is the backbone of’s multi-billion dollar retail business. AWS provides scalable, reliable, and secure distributed computing infrastructure that has been honed for over a decade. For more information on Amazon Web Services please visit:

The AWS IT Security team is responsible for the security and availability of all cloud and mobile products and services offered by AWS. This includes cloud services such as EC2 and S3 as well as consumer offerings like Amazon Appstore and Cloud Drive. Our team works with development teams to design and build secure solutions, participate in and coordinate penetration testing activities, and generally solve security challenges at massive scale.

AWS Security is looking for a Technical Program Manager (TPM) to help ensure that our services, applications, and websites are designed and implemented to the highest security standards. You will be responsible for analyzing the security of applications and services, discovering and addressing security issues and quickly reacting to new threat scenarios. This position will provide you with a challenging opportunity.

You will work with cutting edge technology and be a part of the AWS Application Security team. You should have strong problem-solving skills, excellent communication skills, an understanding of modern Internet threats, the ability to influence people from customers to managers by creating a win-win solutions, and the desire to be an individual contributor to securing Amazon's next generation technology.

Joining the Amazon Web Services Application Security team provides the unique challenge and opportunity to build and review systems at the cutting edge of the cloud to identify threats against AWS and our customers. You will draw upon exemplary technical architecture skills, application security knowledge, project management, critical thinking, problem solving skills, and a passion for securing interconnected software systems. You should be open to new challenges, extremely good at multi-tasking, innovative, creative, self-directed and a great team player.

You will drive continuous process improvement, and collaborate effectively with aggressive cross-functional business and software development teams to solve problems and implement new solutions. You will interact with a broad cross section of the Amazon organization spanning a wide range of technologies and engaging with external vendors and internal teams. In Amazon Web Services, Technical Program Managers juggle multiple projects with tight timeframes and deadlines.

You must be able to:

* Work with multiple engineering teams to carry out Application Security Reviews.

* Provide expert advice and consultancy to internal customers on risk assessment, threat modeling and fixing vulnerabilities.

* Define information security controls and patterns that support risk assessments and support the development of secure architectures. This will involve understanding service interdependencies and driving towards secure technical solutions for multi-tiered systems.

* Collaborate with engineering teams to drive the product roadmaps, by providing security requirements that help to map security controls / patterns to product features.

* Address bottlenecks, provide escalation management, anticipate and make tradeoffs and balance the business needs versus technical constraints.

* Partner with multiple teams across multiple locations with varying sets of priorities to ensure a timely delivery of the secure solution.

* Clarify and drive project commitments as well as establish and maintain clear chains of accountability.

* Lead internal process improvement projects, including the development and implementation of internal tools.

* Security training and outreach to internal development teams

* Security guidance documentation

* Security tool development

* Security metrics delivery and improvements

* Assistance with recruiting activities and administrative work


* Bachelor's Degree in Computer Science or related field. In lieu of degree, additional years of experience may be substituted.

* Minimum of 3 years of professional experience in managing technical programs or projects including security architecture, design, or implementation

* 2+ years of experience designing and implementing Application secure architecture and reference architectures.


* Experience communicating technical concepts to a non-technical audience.

* Prior working experience in a Software Development Team.

* Experience working with stakeholders across many functions.* Experience interpreting and communicating analytics

* Understanding of exploit protection and other advanced attacks containment is desirable

* An understanding of network and web related protocols (such as, TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)

* An understanding of Web Services

* Experience with multiple programming languages (such as, Java, C++, Ruby, Python, Perl, etc.)

* Demonstrable teamwork skills and resourcefulness

* Possess self-drive to keep moving things forward even in the face of ambiguity and imperfect knowledge (avoid “analysis paralysis”)

* Strong sense of ownership, urgency, and drive

* Sharp analytical abilities and proven design skills

* Strong written and verbal communication skills.

* Security architecture experience within a professional services firm or similar environment

* Meets/exceeds Amazon’s leadership principles requirements for this role

* Meets/exceeds Amazon’s functional/technical depth and complexity for this role

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, disability, age, or other legally protected status. If you would like to request an accommodation, please notify your Recruiter

Apply for this position Back to job

You must be logged in to to apply to this job.


Your application has been successfully submitted.

Please fix the errors below and resubmit.

Something went wrong. Please try again later or contact us.

Personal Information


View resume



Work hard, Have fun, Make History