SCRM Sr Security Tech Prog Mgr
- Austin, TX
Amazon has created some of the most game-changing technologies in the world. From the introduction of the Kindle, to Fulfillment by Amazon, we have consistently driven change from the front of the pack. In cloud computing, Amazon Web Services (AWS) provides a highly reliable, scalable, and low-cost cloud infrastructure platform that powers thousands of businesses in over 190 countries. AWS' Infrastructure Supply Chain & Procurement (ISCaP) organization works to deliver cutting-edge solutions that invent and simply how we source, build and sustain our data center supply chains. We are a team of highly-motivated, engaged, and responsive professionals who support the core infrastructure of Amazon business. Come join our team and be a part of history as we deliver results for the largest cloud services company on Earth!
We are seeking a Senior Security Technical Program Manager to help guide the Supplier Security Assessment functions of our overall Supply Chain Risk Management (SCRM) program. You will work with a team of professionals around the world to help assess and mitigate risks in partner manufacturing and logistics, contribute to new mechanisms for defense and response, and analyze the ever-shifting threat landscape to help us prioritize continuous improvement. You will have the opportunity to work in a supportive, collaboration-filled environment to build and secure the future of the cloud.
In this role you will be a critical strategic voice, supporting technical engineering efforts and priorities for all aspects of third party supplier governance. Your efforts will help AWS maintain visibility and control across our entire supply chain, and positively influence the complex and ever-changing aspects of our SCRM program in every region we do business. You will build programs and tools to conduct site and supplier security assessments, interface with governments and customers around the world, and work with our supply chain partners to improve security controls that impact people all over the world.
In order to inform your recommendations and steer AWS in the right direction, you will be called upon to provide an experienced perspective on security controls and supply chain practices for hardware manufacturing environments. This could include knowledge about financial and compliance standards, trade and export controls, physical security controls such as cameras and storage areas, digital aspects of manufacturing networks and systems, software development life cycle (SDLC) and image source control, and a wide variety of other security controls. Indicators for success in this role include past experience leading strategic programs, working with technical equipment manufacturing operations, and a solid understanding of supply chain business considerations such as component sourcing, process optimization, logistics and customs, etc. A Senior Security Technical Program Manager is expected to seek out and clearly communicate relevant data to support complex business decisions, and drive the right recommendations in a compelling and effective way. They create plans that have objective, measurable success criteria and clearly communicate progress and outcomes. They anticipate the gaps between teams, processes, and system architectures to help their organization produce the best possible results for our customers.
Work location is Seattle, Austin, or Northern Virginia.
• BS degree in any field related to hardware manufacturing or industrial process control, or equivalent professional experience
• 6+ years of experience in Technical Program Management, driving engineering projects from concept to delivery
• 4+ years in product/service definition, or manufacturing operations, or supply chain management, or security architecture.
• 3+ years of data analytics (business intelligence, security metrics, data pipeline, scale, and performance)
• Experience preparing technical specifications and customer communications
• Experience in two or more of the following:
Threat modeling, security risk analysis, or security compliance assessment/auditing
International supply chain and security compliance frameworks such as FIPS 140-2, NIST 800-(30, 53, 161, 171, and 88), ISO 27000, 28000, and 20243 series, NERC CIP, ICD 731, FedRAMP, CMMC, TAPA
Manufacturing systems, process control, or international shipment logistics and regulations
Security configuration and defense for enterprise server and network infrastructure, or Industrial Control Systems
• Experience in metrics definition and automated report generation (e.g. SQL, Tableau, Power BI)
• Experience using program management tools (e.g. MSFT Project /Visual Studio, Jira, Confluence, Slack)
• Knowledge of international labor, safety, and environmental standards and industry alliances
• Knowledge of AWS cloud services and concepts such as S3, EC2, Kinesis, and VPC
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us
Back to top