Amazon Vulnerability Management and Remediation (VMR) is looking for a Principal Security Engineer to join our Vulnerability Management Response Team. VMR is responsible for the discovery, assessment, triage, and remediation of vulnerabilities across Amazon. We are data-driven, set big goals, and are always challenging ourselves and each other to identify better solutions and take on new challenges. Our team offers the unique opportunity to work with leading industry security experts and engage across Amazon teams and leadership.As a Security Engineer in VMR Response, you will play a hands-on role in the proactive identification and remediation of security issues at Amazon. You will be part of a global-scale vulnerability response service supporting a diverse technical ecosystem. Your teammates are an international group of security engineers, software developers, and technical program managers dedicated to continuously raising the security bar.Key job responsibilities* You will own the technical implementation of vulnerability response automation.* You will define the bar for security guidance, executing technical integration with our major tooling partners.* You will create automated data insights and decrease the builder burden to respond to risk.* You are a trusted part of the technical leadership of VMR and DIR.* As a key influencer in security strategy, you bring business, technical, and industry context to security solutions.* You are able to design, deliver, and drive solutions for significantly complex security and risk problems across orgs.* Your CBK expertise is both broad and deep and you are able to apply it across technical domains (e.g., software, data persistence, device, network, etc.).* You have extensive knowledge of vulnerabilities, environmental factors, elements that impact contextual severity, and exploitation factors.* You address intrinsically complex and opaque security problems (e.g., deliver context-based analysis to support triage).* You are able to assimilate details and seek diverse perspectives that challenge your own assumptions.* You propose projects that may require the work of several teams to implement, dividing responsibilities so each team can work independently and the solution comes together into an integrated whole.* You are adept at building consensus to influence business and technology direction across orgs.* As a hands-on technical leader, you identify endemic vulnerability management problems, defining technologies and architectures to mitigate them.* You set the standard for excellence in VMR and mitigate security risks and threats with innovative concepts.* You use your expertise in security and solid business judgment to influence security strategy and are able to achieve alignment with engineering teams.* You amplify your impact by leading security design reviews for (internal/external) products, critical features, system architectures, and/or services. You probe assumptions, illuminate pitfalls, and foster understanding, and drive the reduction of shared security problems.* You are able to decompose complex issues into simple, scalable solutions.* You are flexible, adapting your approach to apply the right security technologies to architectures.* You educate, keeping VMR and the Amazon engineering community up to date on advanced threats and trends.* You may present at external conferences or principal-engineer community events while making yourself available for global security-outreach efforts.* You collaborate with other engineers and help educate customers.* You help managers guide the career growth of their team members by mentoring, and acting as an advisor in Security Engineer career development and promotion discussions.* You may contribute to intellectual property.We are open to hiring candidates to work out of one of the following locations:Aus