• AWS Global Audit Programs, Senior Manager

    Location US-WA-Seattle
    Posted Date 2 days ago(6/20/2018 11:17 AM)
    Job ID
    597812
    Company
    Amazon.com Services, Inc.
  • Job Description

    Amazon Web Services (AWS) is seeking an experienced security and audit executive to lead our global certification and compliance programs with the objective of enabling customers of all size and complexity to confidently move sensitive workloads to AWS. This leader will own our audit engagement teams and will balance a large audit and assurance portfolio, demonstrating compliance against multiple frameworks by evidencing IT processes, controls, and product security features to meet those requirements. This leader drives meaningful efficiencies and automation into the assurance programs and in the engagement with the AWS service teams.

    This leader will also head up the customer outreach and engagement with the AWS Sales teams on emerging markets, new certifications and other mechanisms to meet our global customer transparency needs. This leader will also need to be able to effectively engage with large, multi-national customers who are moving regulated workloads to AWS, assisting them in their risk management and vendor validation efforts while also safeguarding the privacy and security of AWS and our customers. This leader must have a proven track record of being effective at building trust with risk averse customers and in helping them work through complex security and risk issues. This leader will also be a key stakeholder and participant in global strategic influence initiatives, consult internally and externally on security and assurance topics, and regularly engage with senior leadership at AWS and Amazon.

    This candidate must be a technically experienced and innovative security/compliance professional who has the ability to understand complex IT processes and technologies and be able to drive innovative process changes through multiple organizations and teams. The AWS Security Assurance Senior Manager position is based out of Seattle, WA.

    Key Responsibilities

    This position will be responsible for the following activities:
    - Lead the executive engagement with the various external audit teams and own the certification programs. This includes improving documentation, tracking progress and performance, ensuring all audit objectives are met, coordinating all audit improvement efforts, monitoring process improvement effectiveness, and regularly communicating and presenting to leadership teams.
    - Drive the efforts to improve the control environment, guide control owners in managing their control activities and confirm readiness of controls for audit and/or certification. This includes the resolution of audit findings and the execution of projects originated from internal assessments. Also assist with linking policy, standard operating procedures, controls, monitoring, and reporting with the goal of improving operations, compliance policies, and risk management.
    - Evaluate emerging markets and associated new certifications. Engage in global strategic influence initiatives as needed.
    - Engage with large, multi-national customers who are moving regulated workloads to AWS, assisting them in their risk management and vendor validation efforts

    Basic Qualifications

    • Bachelor's Degree in Computer Science, Information Systems Management, Mathematics, Accounting or other related fields
    • Minimum 8 years of experience in a security or compliance role in support of a highly technical environment
    • Have working experience of one or more of the following: SOC 1/2, ISO 27001, PCI, FedRAMP, C5, or other compliance related certifications
    • Demonstrated experience in performing technical assessments and audits of network, operating systems, application security, and IT processes
    • Have a proven track record of positive engagement with auditors, regulators, and/or other types of security and compliance stakeholders; experience in working directly with senior government officials
    • Have excellent written and verbal communication skills with the ability to present complex technical information in a clear and concise manner to a variety of audiences

    Preferred Qualifications

    • Have a solid work ethic based on a strong desire to exceed expectations; hands-on experience working successfully in a very fast-paced, results-oriented environment
    • Have a sound understanding of cloud computing services/deployment architecture
    • Demonstrate innovative compliance approaches in non-traditional IT environments
    • Have experience defining compliance roadmaps based on regulator, assessor or customer requirements and compliance documentation
    • Have experience with designing metrics, measurements, and automated triggers for measuring operational efficiencies
    • Have industry-specific compliance/regulatory experience (e.g. financial services, public sector, telecommunications, healthcare/life sciences, etc.)
    • Meets/exceeds Amazon’s leadership principles requirements for this role
    • Meets/exceeds Amazon’s functional/technical depth and complexity for this role
    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share this job