We are looking for a highly motivated security control specialist with IT audit experience to join our team. As part of the team, you will be responsible for supporting developing a security controls product to serve our external audit function. You will understand the key objectives and goals of customers, regulators, and third-party audit frameworks and understand AWS controls that strategically address these goals and objectives, and work with builders to document security controls that fulfills AWS compliance requirements. Additionally, you will be responsible for understanding AWS' operational processes around controls and be able to clearly articulate and communicate to various stakeholder audiences in a variety of forms.

The successful candidate is one who loves working across many stakeholders and compliance frameworks to design solutions for complex compliance challenges. We have a team culture that encourages ownership, diversity, inclusion, and innovation. Our team members and management alike take a high degree of ownership for their program vision and execution of ideas. Our team members balance their unique perspective with those of the diverse perspectives of the team and its stakeholders. You will work directly with divisions within AWS service to improve AWS' ability to demonstrate assurances for our internal and external customers.

In this role, you will facilitate open and transparent relationships with AWS internal stakeholders and customers. We seek an experienced and industry professional who can understand core compliance frameworks, dive deep into IT processes, communicate to auditors, and to be able to drive innovative process changes through multiple organizations and teams.

This position can work out of our AWS office in Arlington, VA, Herndon, VA, Seattle, WA, or New York, NY.

Key job responsibilities

This position will be responsible for the following activities:
• Understand regulatory and commercial IT requirements and serve as a subject-matter expert around AWS security controls
• Write, articulate, and update security controls and/or security policies and standards and documentation.
• Review evidence needed to illustrate the key controls that exist across the AWS environment
• Communicate to key stakeholders the operational processes around AWS security practices and how controls are implemented across the environment.
• Communicate to leadership key risks and areas of program improvement, as well as seek diverse opinions and coordinate improvement efforts.
• Fielding and addressing requests in collaboration with external auditors.
• Dive deep into the AWS control environment to develop broad domain and technical understanding of AWS control activities and implementation to articulate compliance to key stakeholders.
• Bridge communication with key stakeholders and AWS technical communities to articulate control implementation.
• Operate a quality rhythm of the business for managing multiple stakeholder expectations simultaneously.

BASIC QUALIFICATIONS

- Bachelor's degree in Computer Science, Information Systems, Finance, Accounting, or a related field

- 3+ years of any combination of the following: application security frameworks, identity and access controls, incident response, mobile security, cloud computing and security, AI security, threat intelligence, and penetration testing experience

- 3+ years of process improvement procedures experience

PREFERRED QUALIFICATIONS

- Experience with security equipment such as intrusion detection devices, access control systems, etc.

- Experience in internal audit and risk management or equivalent

- Experience in one or more of the following: application security frameworks, security code reviews, incident response, security infrastructure, penetration testing, mobile security, cloud security, AI security, identity and access controls

The base salary range for this position is listed below. Your Amazon package will include sign-on payments and restricted stock units (RSUs). Final compensation will be determined based on factors including experience, qualifications, and location. Amazon also offers comprehensive benefits including health insurance (medical, dental, vision, prescription, Basic Life & AD&D insurance and option for Supplemental life plans, EAP, Mental Health Support, Medical Advice Line, Flexible Spending Accounts, Adoption and Surrogacy Reimbursement coverage), 401(k) matching, paid time off, and parental leave. Learn more about our benefits at https://amazon.jobs/en/benefits.

USA, NY, New York - 112,200.00 - 196,300.00 USD annually

USA, VA, Arlington - 102,000.00 - 178,400.00 USD annually

USA, VA, Herndon - 102,000.00 - 178,400.00 USD annually

USA, WA, Seattle - 102,000.00 - 178,400.00 USD annually