Consultant, Security, Governance, Risk & Compliance, Amazon Business
At Amazon Business, we obsess over our customers and maintaining their trust.
To earn that trust in an environment as vast and varied as Amazon's requires the applied skills of smart, experienced and innovative security practitioners willing to tackle challenges at dizzying scales.
We are seeking a seasoned Information Security Governance, risk & compliance practitioners focused on preparing for and supporting third-party attestation programs, such as ISO 27001, SOC 2 and other regulatory/industry certifications.
If you enjoy working in a rapidly changing environment in a large, complex, and global organization, this position will provide you with a challenging opportunity.
You should be an experienced technologist and innovative security and compliance generalist who has the ability to understand business, security and privacy processes, effectively communicate with technical teams and business leaders alike, and be able to drive automated and scalable process improvements across the organization.
Key job responsibilitieso Preparing for ISO 27001, SOC2, and other security and privacy regulations/standards, certifications and attestation assessments by identifying applicable controls, assessing compliance gaps and readiness, developing remediation strategies, and driving remediation activities to completiono Assisting certifications and assessments programs by liaising with auditors and Amazon service teams, articulating control implementation and impact, and establishing considerations for applying security, privacy, and compliance concepts to a technical cloud environmento Operating a rhythm of the business for managing changes to the control environment and external standards requirements; in preparing compliance assessment reports, guide control owners in documenting their own control activitieso Helping to drive continuous improvements to the InfoSec organization, the program management process, and control implementation projects in coordination with the service teamso Developing broad domain and technical knowledge in AWS and Amazon corporate InfoSec solutions including the operational processes and controls in place that support InfoSec compliance programso Capturing and tracking information security metrics and goalso Clearly communicating vision, deliverables, and project status to management and key technical and business stakeholderso Delivering recommendations and risk interpretations in a clear, concise and audience-specific formato Establishing credibility and maintaining strong working relationships with groups involved with InfoSec and compliance matters (InfoSec, Legal, Business Development, Internal Audit, Fraud, Physical Security, Developer Community, Networking, Systems, etc.
)We are open to hiring candidates to work out of one of the following locations:
Dallas, TX, USA.
Estimated Salary: $20 to $28 per hour based on qualifications.
To earn that trust in an environment as vast and varied as Amazon's requires the applied skills of smart, experienced and innovative security practitioners willing to tackle challenges at dizzying scales.
We are seeking a seasoned Information Security Governance, risk & compliance practitioners focused on preparing for and supporting third-party attestation programs, such as ISO 27001, SOC 2 and other regulatory/industry certifications.
If you enjoy working in a rapidly changing environment in a large, complex, and global organization, this position will provide you with a challenging opportunity.
You should be an experienced technologist and innovative security and compliance generalist who has the ability to understand business, security and privacy processes, effectively communicate with technical teams and business leaders alike, and be able to drive automated and scalable process improvements across the organization.
Key job responsibilitieso Preparing for ISO 27001, SOC2, and other security and privacy regulations/standards, certifications and attestation assessments by identifying applicable controls, assessing compliance gaps and readiness, developing remediation strategies, and driving remediation activities to completiono Assisting certifications and assessments programs by liaising with auditors and Amazon service teams, articulating control implementation and impact, and establishing considerations for applying security, privacy, and compliance concepts to a technical cloud environmento Operating a rhythm of the business for managing changes to the control environment and external standards requirements; in preparing compliance assessment reports, guide control owners in documenting their own control activitieso Helping to drive continuous improvements to the InfoSec organization, the program management process, and control implementation projects in coordination with the service teamso Developing broad domain and technical knowledge in AWS and Amazon corporate InfoSec solutions including the operational processes and controls in place that support InfoSec compliance programso Capturing and tracking information security metrics and goalso Clearly communicating vision, deliverables, and project status to management and key technical and business stakeholderso Delivering recommendations and risk interpretations in a clear, concise and audience-specific formato Establishing credibility and maintaining strong working relationships with groups involved with InfoSec and compliance matters (InfoSec, Legal, Business Development, Internal Audit, Fraud, Physical Security, Developer Community, Networking, Systems, etc.
)We are open to hiring candidates to work out of one of the following locations:
Dallas, TX, USA.
Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
