remote
Technical Program Manager, Bug Bounty - Amazon.com
Product Manager
Technical Program Manager who drives cross‑functional security programs, streamlines bug bounty processes, and partners with engineering and security teams to quickly remediate externally reported vulnerabilities using AWS and modern bug bounty platforms.
About the role
Key Responsibilities
- Lead end‑to‑end bug bounty initiatives, coordinating engineering, security, and business stakeholders to accelerate vulnerability identification and remediation.
- Design, implement, and continuously improve processes for triaging, prioritizing, and tracking externally reported security findings.
- Partner with internal security teams to define remediation timelines, risk assessments, and post‑mortem analyses.
- Remove operational roadblocks by providing researchers with appropriate access, tooling, and guidance throughout the disclosure lifecycle.
- Develop metrics, dashboards, and reporting mechanisms to measure program effectiveness and drive data‑informed decisions.
Requirements
- 5+ years of program or project management experience in a security‑focused environment.
- Strong understanding of application security, vulnerability management, and bug bounty platforms (e.g., HackerOne, Bugcrowd).
- Proven ability to influence and align cross‑functional teams without direct authority.
- Experience working with AWS services and cloud‑native security controls.
- Excellent communication skills, with the ability to translate technical concepts for diverse audiences.