Principal Security TPM, AGS Security Engineering

About the role

This new team is the security engineering function for AWS Global Sales (AGS), helping the field engage customers securely and keeping the business secure. You'll work closely with AWS Account Teams and the field's security community, AGS leaders, and partner teams across AWS security, tooling, and legal. It's a senior team with a broad mandate and a high bar, and the work protects the customer trust the business depends on. Diverse Experiences AWS values diverse experiences. Even if you do not

Requirements

• own the field's security and governance frameworks (customer builds, prototyping, public content), building on the aws security standards and codifying them into the steering docs, skills, mcps, and agents the field builds with
• grow the field's security reviewer community, recruiting, training, and accrediting reviewers and keeping their judgment calibrated as technology and threats evolve, so security judgment spreads and reviews stay consistent
• own field security training on the responsibilities and frameworks the field operates within, partnering with security engineers and aws security on content and field enablement on delivery
• measure ags against aws-wide security standards and run the business security review that gives leadership a regular, prioritized read on risk, partnering with leaders to close gaps and enabling leaders to run their own
• partner with the business through post-incident follow-through, helping it articulate what happened, representing it to aws security leadership, and supporting it in closing the action items it owns
• own the ags field's security roadmap, balancing near-term wins against long-term shifts in how the field builds, so the security bar keeps pace
• own the governance mechanism for security exceptions and escalations, keeping decisions consistent and documented, and holding the line when stakeholders challenge the process
• some travel required (up to 25%)

Additional Information

AWS Global Sales drives adoption of the AWS cloud worldwide, enabling customers of all sizes to innovate and expand in the cloud. Our team empowers every customer to grow by providing tailored service, unmatched technology, and unwavering support. We dive deep to understand each customer's unique challenges, then craft innovative solutions that accelerate their success. This customer-first approach is how we built the world's most adopted cloud. Join us and help us grow. AWS is building a new security engineering team for the AWS Global Sales (AGS) organization, and we're looking for a Principal Technical Program Manager to help define it from day one. Customers are moving fast, especially into generative AI and agentic architectures, and the way our field works with them is changing just as quickly. This team is the dedicated function that helps the business and our customers build and innovate fast and securely. As a Principal Technical Program Manager, you'll own the security and governance frameworks the AGS field organization runs on, and the mechanisms that surface, reduce, and manage risk across it. Measuring how AGS performs against AWS-wide security standards, you'll find where risk concentrates and partner with AGS leaders to close gaps. You'll build and manage the programs that keep the field's security reviewer community active, calibrated, and current. The cross-functional coordination you run with AWS security organizations, Legal, and segment business leaders accelerates the business while holding a high security bar. Much of this work runs ahead of established practice. You'll shape how the field secures emerging engagement types. Across the organization, you'll invent new ways to discover, reduce, and manage risk at scale. The surface is broad, spanning a field engagement program that helps account teams build for customers at scale, prototyping engagements, public content security reviews, internal field tooling, and AGS-wide security training and campaigns. The customers behind this work span every size, industry, and region, with varying compliance requirements and every kind of technology stack. This is a ground-floor role with a global remit where you'll help define how we work. Key job responsibilities - Own the field's security and governance frameworks (customer builds, prototyping, public content), building on the AWS Security standards and codifying them into the steering docs, skills, MCPs, and agents the field builds with - Grow the field's security reviewer community, recruiting, training, and accrediting reviewers and keeping their judgment calibrated as technology and threats evolve, so security judgment spreads and reviews stay consistent - Own field security training on the responsibilities and frameworks the field operates within, partnering with security engineers and AWS Security on content and Field Enablement on delivery - Measure AGS against AWS-wide security standards and run the business security review that gives leadership a regular, prioritized read on risk, partnering with leaders to close gaps and enabling leaders to run their own - Partner with the business through post-incident follow-through, helping it articulate what happened, representing it to AWS Security leadership, and supporting it in closing the action items it owns - Own the AGS field's security roadmap, balancing near-term wins against long-term shifts in how the field builds, so the security bar keeps pace - Own the governance mechanism for security exceptions and escalations, keeping decisions consistent and documented, and holding the line when stakeholders challenge the process - Some travel required (up to 25%) A day in the life In the morning, you might turn a recurring field security question into a standard that ships straight into the steering docs and agents the field builds with, so the next wave of teams can act on it themselves instead of escalating. After the team has worked an issue with Security Operations, you take the follow-through, helping the business articulate what happened, representing it to AWS Security leadership, and supporting it in closing the action items it owns. In the afternoon, you sharpen the reviewer community's recertification with security engineers so reviews stay consistent as technology shifts. Across the week you measure the field against AWS-wide standards, find where risk concentrates, and bring them to leadership to prioritize and close.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at Amazon Web Services, Inc.? Share your experience