Amazon Web Services (AWS) provides a highly reliable, scalable, and low-cost cloud platform that powers thousands of businesses in over 190 countries. AWS’ Infrastructure Supply Chain & Procurement (ISCaP) organization works to deliver cutting-edge solutions to source, build and maintain our socially responsible data center supply chains. We are a team of highly-motivated, engaged, and responsive professionals who enable the core sustainable infrastructure of AWS. Come join our team and be a part of history as we deliver results for the largest cloud services company on Earth!
We are seeking a Security Engineer to help guide our global Supply Chain Risk Management (SCRM) program. You will lead a team of professionals around the world to help assess and mitigate risks in partner manufacturing and logistics, contribute to new mechanisms for defense and response, and analyze the ever-shifting threat landscape to help us prioritize continuous improvement. You will have the opportunity to work in a supportive, collaboration-filled environment to build and secure the future of the cloud.
In this role, you will be the senior security engineering voice for a distributed, multi-disciplinary team. You will use your experience to develop and continuously improve SCRM practices, direct strategic investments across our supply chain, and administer the complex and ever-changing aspects of our supplier assessment program in every region we do business. You will support the training and execution of site and supplier security assessments, interface with governments and customers around the world, and work with engineering partners to design and build new technical and procedural controls to mitigate supply chain risk throughout the entire lifecycle from initial design to final decommissioning.
In order to inform your recommendations and steer AWS in the right direction, you will be called upon to provide risk assessment and perspective on security controls for hardware manufacturing environments. This could include physical aspects of facilities such as cameras and storage areas, digital aspects of manufacturing networks and systems, software development life cycle (SDLC) and image source control, audit mechanisms that are durable/repeatable, and a wide variety of other security controls. Indicators for success in this role include past experience leading strategic programs, working with technical equipment manufacturing operations, and a solid understanding of supply chain business considerations such as component sourcing, process optimization, logistics and customs, etc.
Work location is Seattle, Austin, or Northern Virginia.