AWS Security Controls Specialist, AWS Compliance & Security Assurance

AWS Security Controls Specialist, AWS Compliance & Security Assurance

Job :  | Amazon Web Services, Inc.

At Amazon Web Services (AWS), security is our highest priority. The AWS Security Assurance team demonstrates the security controls of services offered by AWS, inventing new ways to provide the highest level of assurance to our most security conscious customers.

We are seeking a highly motivated security control specialist with IT audit experience to join our team. In this role, you will support the development of a security controls product for our external audit function, understand key objectives of customers, regulators, and third‑party audit frameworks, and work with builders to document security controls that meet AWS compliance requirements. You will also understand AWS operational processes around controls and clearly articulate and communicate those processes to various stakeholder audiences.

The successful candidate loves cross‑stakeholder collaboration, understands core compliance frameworks, dives deep into IT processes, communicates to auditors, and drives innovative process changes across multiple organizations and teams.

• Understand regulatory and commercial IT requirements and serve as a subject‑matter expert on AWS security controls.
• Write, articulate, and update security controls, security policies, standards, and related documentation.
• Review evidence needed to illustrate key controls that exist across the AWS environment.
• Communicate operational processes around AWS security practices and control implementation to key stakeholders.
• Communicate to leadership key risks and areas of program improvement, seek diverse opinions, and coordinate improvement efforts.
• Field and address requests in collaboration with external auditors.
• Dive deep into the AWS control environment to develop a broad domain and technical understanding of control activities and articulate compliance to stakeholders.
• Bridge communication with key stakeholders and AWS technical communities to articulate control implementation.
• Operate a quality rhythm for managing multiple stakeholder expectations simultaneously.

• Bachelor’s degree in Computer Science, Information Systems, Finance, Accounting, or related field.
• 3+ years of experience in any combination of application security frameworks, identity and access controls, incident response, mobile security, cloud computing and security, AI security, threat intelligence, or penetration testing.
• 3+ years of process improvement procedures experience.

• Experience with security equipment such as intrusion detection devices, access control systems, etc.
• Experience in internal audit and risk management or equivalent.
• Experience in one or more of the following: application security frameworks, security code reviews, incident response, security infrastructure, penetration testing, mobile security, cloud security, AI security, identity and access controls.

Amazon offers a comprehensive benefits package including health insurance (medical, dental, vision, prescription, basic life & AD&D), 401(k) matching, paid time off, and parental leave.

Arlington, VA;
Herndon, VA;
Seattle, WA;
New York, NY.

Amazon is an equal‑opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.

USA, NY, New York –  –  USD annually
USA, VA, Arlington –  –  USD annually
USA, VA, Herndon –  –  USD annually
USA, WA, Seattle –  –  USD annually

May 4, 2026 (Updated about 2 hours ago)