AWS Security Controls Specialist, AWS Compliance & Security Assurance

AWS Security Controls Specialist, AWS Compliance & Security Assurance

Job :  | Amazon Web Services, Inc.

At Amazon Web Services (AWS), security is our highest priority. The AWS Security Assurance team is responsible for demonstrating the security controls of services offered by AWS. At AWS' scale, we invent new ways to provide the highest level of assurance to our most security conscious customers.

We are looking for a highly motivated security control specialist with IT audit experience to join our team. As part of the team, you will be responsible for supporting the development of a security controls product to serve our external audit function. You will understand the key objectives and goals of customers, regulators, and third‑party audit frameworks and understand AWS controls that strategically address these goals and objectives, and work with builders to document security controls that fulfill AWS compliance requirements.

Additionally, you will be responsible for understanding AWS’ operational processes around controls and be able to clearly articulate and communicate to various stakeholder audiences in a variety of forms.

The successful candidate loves working across many stakeholders and compliance frameworks to design solutions for complex compliance challenges. Our team culture encourages ownership, diversity, inclusion, and innovation. You will work directly with divisions within AWS service to improve AWS’ ability to demonstrate assurances for our internal and external customers.

In this role, you will facilitate open and transparent relationships with AWS internal stakeholders and customers. We seek an experienced industry professional who can understand core compliance frameworks, dive deep into IT processes, communicate to auditors, and drive innovative process changes through multiple organizations and teams.

This position can work out of our AWS office in Arlington, VA, Herndon, VA, Seattle, WA, or New York, NY.

• Understand regulatory and commercial IT requirements and serve as a subject‑matter expert around AWS security controls.
• Write, articulate, and update security controls and/or security policies, standards, and documentation.
• Review evidence needed to illustrate the key controls that exist across the AWS environment.
• Communicate to key stakeholders the operational processes around AWS security practices and how controls are implemented across the environment.
• Communicate to leadership key risks and areas of program improvement, seek diverse opinions, and coordinate improvement efforts.
• Field and address requests in collaboration with external auditors.
• Dive deep into the AWS control environment to develop broad domain and technical understanding of AWS control activities and implementation to articulate compliance to key stakeholders.
• Bridge communication with key stakeholders and AWS technical communities to articulate control implementation.
• Operate a quality rhythm of the business for managing multiple stakeholder expectations simultaneously.

• Bachelor’s degree in Computer Science, Information Systems, Finance, Accounting, or a related field.
• 3+ years of any combination of application security frameworks, identity and access controls, incident response, mobile security, cloud computing and security, AI security, threat intelligence, and penetration testing experience.
• 3+ years of process improvement procedures experience.

• Experience with security equipment such as intrusion detection devices, access control systems, etc.
• Experience in internal audit and risk management or equivalent.
• Experience in one or more of application security frameworks, security code reviews, incident response, security infrastructure, penetration testing, mobile security, cloud security, AI security, identity and access controls.

Amazon offers a comprehensive benefits package including health insurance (medical, dental, vision, prescription, Basic Life & AD&D insurance and supplemental life plans, EAP, mental health support, medical advice line, flexible spending accounts, adoption and surrogacy reimbursement coverage), 401(k) matching, paid time off, and parental leave.

• USA, NY, New York –  –  USD annually
• USA, VA, Arlington –  –  USD annually
• USA, VA, Herndon –  –  USD annually
• USA, WA, Seattle –  –  USD annually

Amazon is an equal‑opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.