Fast Facts

Join Bezos Academy as a Senior Information Security Engineer where you will implement and mature the organization's information security strategy in a SaaS/PaaS environment, ensuring data privacy and application security.

Responsibilities: Implement and improve information security practices, focusing on cloud security and data privacy while collaborating with cross-functional teams.

Skills: Expertise in information security frameworks, cloud security, security tools (SIEM, EDR), DevSecOps, and excellent analytical and communication skills.

Qualifications: Minimum of eight years in information security architecture with knowledge of regulations such as NIST and CCPA; preferred experience in cloud deployments and technical project leadership.

Location: Seattle, Washington, United States, with relocation support available.

Compensation: $157000 - $251000 / Annually

As the Senior Information Security Engineer for Bezos Academy, you will be responsible for helping implement the organization's information security strategy. Working with leaders from across the organization, you will help mature our information security practices, using industry-leading methods designed for our modern SaaS/PaaS environment. You will have a comprehensive experience with information security principles, application security best practices, and data privacy regulations. You will be able to balance technical expertise with strategic thinking to protect our organization's systems and data and maintain the trust of our stakeholders

You will be part of a small team that operates at all levels, from strategic design to operations support. Your broad experience across multiple technologies and your tenacious appetite for learning and discovery will be foundational to your success. Your customer-centric approach to your work will be paramount. Above all, you are deeply inspired by our mission to support early childhood education in under-resourced communities.

LOCATION

• Seattle, WA
• Relocation support is available for this role for those willing to move to Seattle, WA.

COMPENSATION & BENEFITS

• The full salary range for this position in Seattle, WA is $157,000 – $251,000 per year. The upper third of the salary range is typically reserved for employees who have been in the role for multiple years and have demonstrated strong performance over time. Starting salary will vary by qualifications and prior experience. 
• This role includes 15 paid days of vacation, 4 days of paid personal time off, 7 paid days of sick (care) time, 9 paid holidays, 5 paid days off for an organization-wide winter break, and additional time off if required by applicable law. Benefits for this role include medical, dental, and vision insurance, life insurance, disability insurance, a 401(k) plan with a 4% employer contribution match, paid parental leave, an employer-matched flexible spending account for dependent care, and more. Please see here for details.

MINIMUM QUALIFICATIONS

• Eight or more years of experience in information security architecture, engineering, and systems integration, with a strong focus on cloud security, application security, and data privacy
• Extensive knowledge of and experience with information security frameworks and data protection regulations (e.g., NIST, ISO, COPPA, FERPA, CCPA, CPRA, etc.)
• Up to date on direct-to-consumer applications to ensure regulatory compliance and data privacy protection
• Proficiency in security tools and technologies including SIEM/SOAR (e.g. Sentinel, Splunk, etc.), EDR/XDR (e.g. CrowdStrike, Defender, etc.), SWG (Cisco Umbrella, Zscaler, etc.), and application security testing platforms (e.g., Checkmarx, Veracode, etc.)
• Strong understanding of and experience with Development, Security, and Operations (DevSecOps) integration, secure coding practices, threat modeling, and security code reviews
• Excellent problem-solving, analytical, and communication skills along with exemplary organizational skills and detail orientation

PREFERRED QUALIFICATIONS

• Experience with cloud-based automated system deployment, configuration management, device management, and application deployment systems for Mac and Windows (e.g., Jamf, Intune)
• Experience leading technical projects including research, planning, implementation, and ongoing support
• Proficient in communicating with technical and non-technical stakeholders, including creating customer-facing documentation
• Hands-on experience with scripting to automate tasks using languages such as PowerShell or Python
• Experience developing and delivering information security training and awareness programs to educate staff on information security best practices and promote a culture of security
• Experience with cloud security (e.g., AWS and Azure) and securing emerging technologies (e.g., Generative AI, LLMs, etc.)

Please click here for a full job description. 

Bezos Academy participates in E-Verify and will provide the federal government with employee Form I-9 Information to confirm authorization to work in the U.S. Bezos Academy only uses E-Verify once a candidate has accepted a job offer and completed the Form I-9. If E-Verify cannot confirm that an employee is authorized to work, Bezos Academy will give the employee written instructions and an opportunity to contact the Department of Homeland Security (DHS) or Social Security Administration (SSA) so the employee can begin to resolve the issue before any adverse employment action is taken. For more information about your right to work, please see the Notice of Right to Work.