Skip to main content

Security Engineer, Amazon Leo Security Controls and Assurance

Amazon Leo is Amazon’s low Earth orbit satellite broadband network. Its mission is to deliver fast, reliable internet to customers and communities around the world, and we’ve designed the system with the capacity, flexibility, and performance to serve a wide range of customers, from individual households to schools, hospitals, businesses, government agencies, and other organizations operating in locations without reliable connectivity.

Export Control : This position requires that the candidate selected be a U.S. in order to comply with U.S. government-imposed requirements related to the nature of the work and/or where it will be performed.

We have a team culture that encourages ownership, , , and innovation. You will have an opportunity to work across the entire Leo organization implementing and managing various controls along side Leo Security. Leo security owns policy and definition of controls, and this role owns the coordination, development, implementation, and change management of controls as well as managing defects and improvements.

Key job responsibilities
- Design, implement, and maintain security controls for SCADA systems, industrial control systems (ICS), and other operational technology (OT) environments across manufacturing sites

- Conduct security assessments, vulnerability analyses, and risk evaluations of OT/ICS environments, including SCADA platforms, PLCs, HMIs, and historian systems

- Develop and enforce network segmentation strategies (e.g., Purdue Model, ISA/IEC 62443) to isolate OT environments from corporate IT networks

- Identify, triage, and remediate security vulnerabilities and misconfigurations in manufacturing control systems while minimizing operational disruption

- Collaborate with manufacturing engineering, operations, and IT teams to embed security best practices into OT system design, procurement, and lifecycle management

- Implement and manage security monitoring and anomaly detection capabilities for OT/ICS environments, including integration with SIEM and log aggregation pipelines

- Develop and maintain incident response playbooks and procedures specific to OT/ICS environments

- Support compliance efforts aligned with relevant frameworks including NIST SP 800-82, ISA/IEC 62443, CMMC, and NERC CIP (where applicable)

- Produce clear, accurate security documentation including threat models, network diagrams, compliance artifacts, and runbooks

About the team
The Amazon Leo Security Controls and Assurance team owns a variety of security fields for regulated productivity environments including security architecture, incident response, threat hunting, compliance, and security tool management.