Amazon processes millions of payment transactions daily across 100+ global partners, serving hundreds of millions of customers, sellers, and vendors. Every one of those transactions depends on trust, and Payments Security (PaySec) exists to earn and keep it. We are the dedicated security organization for Amazon"s payments ecosystem: Consumer Payments, Financial Services, International Emerging Stores Payments, Gift Cards, India Payments, and Amazon Pay.
PaySec operates across the full security lifecycle. Our Product Security engineers embed directly with payments builder teams to shift security left into the development process. Our Security Solutions Delivery team builds the tooling, automation, and data platforms that scale security across the portfolio. Our Security Operations function runs threat detection, threat intelligence, and incident response for payments-critical infrastructure. Together, these teams protect one of the highest-value attack surfaces in e-commerce.
We are looking for a Director to lead this organization. You will own the security strategy for Amazon"s entire payments domain, set the multi-year vision, and build the team and mechanisms to execute it. You will operate at the intersection of security engineering, business strategy, and organizational leadership, partnering with payments GMs, Amazon"s CISO organization, and VP-level stakeholders to make security a business accelerator rather than a gate.
Key job responsibilities
You will lead an organization of 75+ security engineers, software engineers, data engineers, and technical program managers across the US and India. Your scope includes:
A day in the life
You are a security leader who has built and scaled security programs, not just inherited them. You combine deep technical credibility with the organizational instincts to know when to build custom solutions and when to adopt platform capabilities. You communicate security risk in business terms and can hold your own in a room of payments engineers debating protocol-level details.
You have strong opinions about how modern security organizations should operate: embedded with builders, automated by default, measured by outcomes rather than activity. You are energized by ambiguity and comfortable setting direction when the path is unclear.