Security assurance specialist, aws compliance and security assurance emea - amazon web services

Do you have a passion for applying the most advanced technologies and automation in traditionally manual processes? Do you have experience in finding innovative solutions to scale security controls across diverse teams and technologies? Do you have ideas about influencing the future of security assurance?

At Amazon, Security is our highest priority. Join a creative team at Security Assurance dedicated to demonstrating the security controls of the services we offer here. You will help demonstrate security controls applicable to local requirements and explain how our infrastructure is designed, operated, maintained, and protected in accordance with global regulated industry standards. You will collaborate with customers and regulators to demonstrate Amazon"s security controls and help customers understand how our infrastructure meets regulatory expectations. You will work across multiple organizations to inspire, lead, and transform our audit and compliance programs through innovative process engineering, engaging technical and non‑technical stakeholders.

The successful candidate demonstrates strength in audit principles, a solid technical background, and the ability to communicate clearly with customers while driving innovative process changes across teams. You should enjoy working with many stakeholders, including internal and external customers, to design solutions for complex compliance challenges and be passionate about cloud security and solving real business problems.

We have a team culture that encourages ownership, diversity, inclusion, and innovation. Team members and management are expected to take ownership of their program vision and execution, balancing their perspective with those of diverse stakeholders. You will have opportunities to work directly with senior leadership within Amazon to improve our ability to demonstrate assurance for regulated customers.

You should be a technically experienced and innovative security, compliance, and audit professional who can understand IT processes, communicate clearly with customers, and drive innovative process changes across organizations and teams.

• Dive deep into the Amazon control environment to develop broad domain and technical understanding of security activities and control implementations, articulating compliance implications to customers and internal/external audit functions.
• Develop understanding of regulated industry compliance requirements and communicate how we control activities to meet global regulatory obligations.
• Liaise with customers, regulators, and auditors;
  articulate control implementation and describe considerations for applying security and compliance concepts to monitor, evaluate, and continuously improve the organization as a trusted advisor and problem solver.
• Implement continuous improvements to the security organization and the program management process;
  share program/project process frameworks, tools, and best practices that can be adopted throughout the organization.
• Apply working knowledge of global information security regulation and policy to articulate customer and control impact and drive alignment to Amazon controls.

Diversity and inclusion are valued. We encourage candidates to apply even if they do not meet all listed qualifications. If your career is just starting or includes alternative experiences, don’t let it stop you from applying.

At AWS, security is central to maintaining customer trust and delivering delightful experiences. We offer opportunities to accelerate careers across cloud, devices, retail, entertainment, healthcare, operations, and physical stores.

Amazon embraces differences and fosters a culture of inclusion. We have employee-led affinity groups and ongoing learning experiences. Our leadership principles encourage seeking diverse perspectives, learning, curiosity, and earning trust.

We value work-life balance and offer flexibility in working hours to help you find your own balance between work and personal life.

We support new members with a culture of knowledge sharing and mentorship. We assign projects to help team members grow and take on more complex tasks in the future.

• Experience in working directly with government officials and regulatory bodies
• Bachelor\ 's degree or equivalent in Computer Science, Engineering, Information Systems Management, Information Security or related fields
• 5+ years of experience in IT audits based on ISAE 3401, COBIT, ITIL, IT-Grundschutz, and assessments of highly technical cloud environments
• 3+ years’ experience building risk programs and strategies up to date on related industry trends
• 5+ years in highly regulated industries (e.G., financial services, healthcare, energy, telecommunications), including direct work with European audits and frameworks such as DORA

• 1+ industry-recognized security, cloud, or audit certifications (e.G., CISA, CISM, CISSP, CCSP, Amazon Cloud Security Practitioner)
• Experience in technical security design, cloud services/deployment architecture, compliance consulting, or advisory work in a highly technical environment
• Deep understanding of regulatory guidance and applicable standards (e.G., FCA FG16/5, DORA, C5, and other relevant requirements)
• Experience delivering IT process improvement projects with automated metrics
• Experience building certification roadmaps based on customer requirements and ensuring timely delivery of assessments
• Understanding of evaluating IT controls and working with auditors/regulators for assessments

Amazon is an equal opportunities employer. We value a diverse workforce and base hiring decisions on experience and skills. For privacy information, please refer to our Privacy Notice. If you require a workplace accommodation during the application or interview process, please contact the Recruiting Partner. This position is with AWS EMEA SARL (Spain Branch).