Senior Security Tpm

3+ months agoArlington, VA


At Amazon, we are obsessed with earning customer trust. The People Experience and Technology (PXT) Security team enables our PXT business leaders to maintain customer trust by keeping HR systems and their underlying employee, contingent worker, applicant, and candidate data secure.

PXT Security is looking for a passionate, innovative, and results oriented Senior Security Technical Program Manager (TPM) to focus on information security and privacy projects. If you enjoy working in a rapidly changing environment and influencing the strategic direction of a large global organization, this position is for you. In this role, you will help define and implement steps to achieve our long-term security and privacy vision for customer trust, solve our most challenging problems with novel and scalable solutions, and enable our developers to operate more effectively, securely, and safely. You will work with cross-functional teams of technical and non-technical key stakeholders to interpret, communicate, and drive full lifecycle security, privacy, and data deletion/anonymization programs. You will collaborate with legal, business, compliance, product, and engineering teams to identify opportunities to improve Amazon PXT's security and data protection posture and keep our systems and applications secure. You will build tooling, drive process improvements, effectively rally support for your initiatives, and work with engineering teams to develop simple yet innovative solutions to complex technical challenges.

Key Responsibilities include:
• Define, scope, and manage the delivery of security and privacy projects and products from start to finish. This includes collecting business and systems requirements from customers across Amazon, authoring specifications, driving project schedules from design to release, managing launches, reducing risks, and reporting status to senior leadership
• Lead and coordinate design/implementation efforts between internal teams to develop effective solutions, make appropriate trade-offs to manage dependent release schedules, and clearly communicate goals, roles, responsibilities, and desired outcomes to cross-functional stakeholders
• Develop and execute multi-year project plans that impact Amazon's business units and drive excellence across varied security domains, such as data privacy, depersonalization, and secure software development
• Define goals and drive clarity for ambiguous or poorly defined problems, and drive them to resolution
• Break large and complex projects down into manageable pieces, develop functional specifications, ruthlessly prioritize, and deliver projects in a successful and timely manner
• Anticipate bottlenecks, handle business escalations with a data-driven approach, make trade-offs, and balance the business needs against technical constraints
• Show ownership and leadership skills in coordinating projects across multiple teams, driving them to successful conclusion while building strong, lasting relationships with internal and external customers
• Provide both structured and creative thinking in a dynamic, evolving, multi team environment
• Communicate effectively at multiple levels, build trust across the organization, and demonstrate discretion with sensitive information
• Define high quality and exceptional user experiences and effectively prioritize and manage the scope of each launch to deliver key capabilities on time and on budget
• Thrive and succeed in an entrepreneurial environment, and balance competing priorities


• 5+ years of technical program management experience working with security and privacy stakeholders
• 7+ years of experience working directly with engineering teams
• Experience leading security product and services teams to address complex security challenges at scale
• Experience managing projects across cross functional teams, building sustainable processes, and coordinating release schedules
• Have a well-rounded technical background in current technologies, a deep understanding of information security and privacy frameworks, and risk and compliance assessment methodologies
• Deep technical knowledge in multiple security domain areas such as security engineering; application, system and network security; access management; cryptography; data retention and anonymization; and security risk assessment
• Deep knowledge on current security threats, trends, and mitigations


• Bachelor's degree in Computer Science, related field, or relevant work experience
• Innate sense of ownership combined with collaborative approach to overcoming challenges and influencing organizational change
• Deep knowledge of privacy regulations (e.g., GDPR, CCPA) and processes (e.g., Privacy by Design and Default, Privacy Impact Assessments, Data Subject Access and Deletion Requests, Records Retention)
• Experience working with legal and compliance teams
• Experience with program and project management software and techniques
• Skilled in risk management, business risk analysis and making complex business/risk trade-off recommendations and decisions
• Excellent leadership, negotiation, teamwork, and collaboration skills
• Excellent written and verbal communication skills with the ability to present complex technical information in a clear and concise manner to a variety of audiences
• Results oriented, high energy, and self-motivated
• Demonstrate maturity, high judgment, and the ability to influence
• Drive day-to-day problem solving, and implement effective action plans to meet priorities
• Meets/exceeds Amazon's leadership principles requirements for this role
• Meets/exceeds Amazon's functional/technical depth and complexity for this role
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit

Job ID: Amazon-1480298