Senior Technical Program Manager, Vulnerability Management and Remediation

Embark on a Mission to Fortify Amazon's Defenses as a Senior Technical Program Manager with the Vulnerability Management & Remediation Operations team

Amazon Security is seeking an experienced and innovative Senior Technical Program Manager specialising in cybersecurity to join our Vulnerability Management and Remediation Operations (VMRO) team in Sydney, Australia. The VMRO team is a global team that is responsible for assessing, detecting, and driving the remediation of vulnerabilities across the Amazon ecosystem. As a Senior Technical Program Manager you will have solid technical expertise in security operations and program management to join us in building and maturing our VMR Operations programs. In this role, you will be responsible for driving the strategic, technical, and engineering direction of VMR's Vulnerability, Campaign and Issue Operations Management Programs, which enables builders and drives remediation actions across Amazon. You will leverage relationships with engineers across Stores Security, business teams, and leaders throughout Amazon to prioritise deliverables, escalate roadblocks, and improve operational processes. You will build trust with Principal Engineers and Principal TPMs and executive leaders by leveraging your technical expertise to understand technical challenges, design improved solutions, and hold a high program bar. Finally, you will use your information security expertise to champion and drive risk-based decisions across complex, multi-disciplinary programs to ensure Amazon properly manages security risk.

If you're excited about the opportunity to make a significant impact on the security of one of the world's largest and most complex technology ecosystems from our Sydney office, we'd love to hear from you

Key job responsibilities

• Support vulnerability host and OS detection campaigns by working closely with Campaign Owners to launch and continuously improve the quality of campaigns across Amazon.
• Assess and negotiate with customers to drive down security risk by engaging with teams to remediate critical security vulnerabilities in their environments.
• Leveraging your technical expertise to understand technical challenges, design improved solutions, and hold a high program bar responsible for program reporting and maintaining metrics and providing insights.
• Manage the operational health of the VMRO team by building and reporting SLA and KPI metrics to leadership and identifying improvements, and building programs to deliver these improvements.
• Work with internal stakeholders to improve campaign health and work with customers to drive remediation of security vulnerabilities across Amazon.
• Work closely with security engineers to maintain operational stability and inform priorities for innovative development efforts to drive high impact improvements to operational processes across Vulnerability Operations, Campaigns and Issue Health Management.
• Being part of a global operational team, this role also requires flexibility of schedule and the ability and willingness to work outside of normal daytime business hours.

• Bachelor's degree in Computer Science, Computer Engineering, Software Engineering, Cybersecurity or related technical degree or equivalent; Masters degree; or 5+ years equivalent technology experience; or 5+ years of technical program management experience working directly with security and software engineering teams
• Experience managing programs across cross functional teams, building knowledge and processes
• Experience defining operational KPI's/SLA's and reporting to senior leadership by building dashboards with business intelligence tools such as Amazon QuickSight, RedShift, etc
• Experience writing SQL queries and deep diving complex datasets

• 3+ years of experience in fields such a Security Operations, technology audit, or security vulnerability lifecycle
• High level communication and data presentation skills that allow you to clearly, compellingly, and effectively influence audiences internally and externally, across organizational boundaries
• Experience building and evaluating system-level technical design and providing customer requirements to engineering teams
• Experience building and operating Vulnerability Management, Threat Intelligence, Incident Response, or other security programs with hundreds of stakeholders and executive leadership visibility

Acknowledgement of country:

In the spirit of reconciliation Amazon acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples today.

IDE statement:

Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.

Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.