You have hundreds of thousands of hosts, hundreds of millions of lines of code, billions of online transactions, and one of the most visited sites on the Internet. Now go secure it. At Amazon, we obsess over our customers, and ensuring our customers' trust is our first priority. To earn that trust in an environment as vast and varied as Amazon's and an online world where threats grow ever more sophisticated requires building a world-class information security team to tackle never-before-seen challenges at dizzying scales. You will not just be using cutting-edge security technologies here in Amazon; you will be inventing them.
Amazon's Information Security team is seeking a Technical Program Manager with a security background to join the newly established bug bounty program - Amazon VRP (Vulnerability Reporting Program). You will work cross-functionally to manage the lifecycle of bug bounty programs from inception to launch, drive internal processes to support the remediation of vulnerabilities, and influence the Amazon technology ecosystem to pursue security best practices.
* Plan and manage the lifecycle of the Amazon vulnerability reporting program, including public and private bug bounties, along with related company-wide initiatives * Drive internal processes for prioritization and resolution of vulnerability findings * Build and maintain relationships with security researchers and white-hat hackers working with Amazon * Coordinate across Information Security to understand and support the tooling roadmap for the VRP team * Manage external vendor relationships * Evangelize security culture to the internal business units * Communicate with SVPs, VPs, Directors and domain managers to prioritize and execute remediation plans
Amazon is a company operating a marketplace for consumers, sellers, and content creators.