Principal Security Engineer, AWS Kumo

Help us protect not only the Amazon Web Services (AWS) cloud computing environment but all of our
customers as well!

As a Principal Security Engineer in AWS Support-Kumo you will be on the forefront of many security issues for a wide variety of platforms and technologies including cloud services GenAI identity and access management all operating at massive scale. You will have direct impact on the experience of AWS customers and their security efforts through building the next generation of AI powered solutions for AWS Support.

As a Principal Security Engineer in Kumo you will play a leading role in shaping how we implement Shift Left Security by infusing security practices early in the development workflow - from code and design reviews to testing of applications before release. This role will focus on designing and implementing services applications and tools to the highest security standards preventing insecure application code from ever hitting production. You will have the opportunity to influence the direction of several teams spanning L8 boundaries across Support. You will be responsible for analyzing the security of applications and services discovering and addressing security issues in the design phase and quickly reacting to new threat scenarios.

The ideal candidate combines deep technical expertise with exceptional leadership and communication skills. Youll need to clearly articulate complex security risks to both technical and non-technical audiences effectively harmonize diverse perspectives and skillfully prioritize risks to guide teams toward secure solutions through influence and collaboration. This role requires a security professional who thrives when partnering closely with product and engineering teams to deliver the most secure customer solutions possible.


Key job responsibilities
1. Bring security expertise into a team of engineers guiding technical decisions as well as prioritization of features
2. Be a hands-on technical leader building and testing the products being designed
3. Partner with engineering leaders across Kumo to reduce the friction for builders to develop services that are secure-by-design
4. Drive security decisions across product development workstreams
5. Developing comprehensive security guidance documentation including policies procedures and best practices to serve as a reference for the organization.
6. Designing and building security tools tailored to the organizations needs enhancing the overall security posture.


About the team
AWS Kumo combines the culture of a startup the innovation and creativity of an R&D Lab the work-life balance of a mature organization and provides amazing technical challenges at AWSs scale. Our team provides technology and trusted expertise that intelligently anticipate and resolve AWS customer needs helping them adopt optimize and operate at scale. Kumos products used by AWS customers and the support teams that help them are vital to ensuring exceptional customer experiences on AWS. Our team owns customer facing applications like Trusted Advisor Personal Health Dashboard AWS re:Post and Support Center and multiple internal tooling systems. We are a highly innovative global organization revolutionizing the way customers engage and seek help from AWS. Support provides a strategic advantage for customers adopting AWS and drives direct revenue to the business.

- 10 years of industry work with hands-on security engineering experience
- 10 years of risk assessment and enabling organizations making security decisions experience
- Bachelors degree in Computer Science or a related field
- Experience communicating technical concepts to a non-technical audience
- Experience with hands-on security engineering
- Experience in risk assessment and enabling organizations to make security decisions
- Experience applying threat modeling or other risk identification techniques or equivalent

- Knowledge of information security risk-based prioritization
- Knowledge of information security technologies such as security design review threat modeling risk analysis and software testing techniques
- Experience architecting securing and operating Amazon Web Services

Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status disability or other legally protected status.

Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process including support for the interview or onboarding process please visit for more information. If the country/region youre applying in isnt listed please contact your Recruiting Partner.

The base salary range for this position is listed below. Your Amazon package will include sign-on payments and restricted stock units (RSUs). Final compensation will be determined based on factors including experience qualifications and location. Amazon also offers comprehensive benefits including health insurance (medical dental vision prescription Basic Life & AD&D insurance and option for Supplemental life plans EAP Mental Health Support Medical Advice Line Flexible Spending Accounts Adoption and Surrogacy Reimbursement coverage) 401(k) matching paid time off and parental leave. Learn more about our benefits at TX Dallas - 208300.00 - 281800.00 USD annually
USA VA Arlington - 208300.00 - 281800.00 USD annually
USA WA Bellevue - 208300.00 - 281800.00 USD annually