Amazon Security Compliance Auditor SCIPS Prototype 

China, Guangdong Province, Luohu District 

325104057

The key responsibilities of the role include conducting comprehensive audits and inspections at third-party supplier locations where Amazon product is stored, tested, serviced and disposed. Security management system audits are carried out according to Amazon's internal standards, encompassing cybersecurity protocols, data protection measures, and physical security controls. This position will monitor compliance with contractual requirements, assess the effectiveness of implementation, and provide general support to the site security personnel at vendor service providers.The role involves auditing digital security measures, including network security, access controls, and data encryption practices. Additionally, the auditor will evaluate physical security measures such as perimeter security, access control systems, surveillance equipment, and emergency response procedures. They will assess the integration of physical and digital security systems to ensure a robust, comprehensive security posture.The auditor will be responsible for developing and implementing audit plans, conducting risk assessments, and providing recommendations for improving physical, digital, and operational security measures. They will also be involved in creating and maintaining security documentation, including audit reports, risk registers, and compliance records.Key job responsibilities
Security Auditing & Compliance:
• Execute comprehensive security audits according to Amazon's standards, encompassing both physical and cyber security controls
• Perform Supply Chain Security audits with focus on data protection, access controls, and secure handling of intellectual property
• Prepare audit documentation, including pre-audit questionnaires, security checklists, and audit plansOperational Security:
• Conduct remote/on-site audits of third-party supplier locations
• Verify prototype device inventory and ready-to-scrap materials through physical and digital tracking systems
• Evaluate security controls including access management systems, CCTV coverage, and network segmentation
• Review incident response procedures and business continuity plans
Documentation & Reporting:
• Generate detailed audit reports highlighting security gaps and compliance issues
• Track and verify completion of corrective actions
• Document security incidents and maintain risk registers
• Identify and propose security improvements across physical and digital domainsSupport & Training:
• Provide guidance on security best practices to manufacturing location personnel
• Assist in security awareness training programs
• Support incident investigations and security projects as needed
• Review and validate security configurations for new manufacturing processes
A day in the life
• Review and process documentation for upcoming audits including security policies, access logs, and recent incident reports
• Conduct remote/onsite audits with supplier facilities, checking physical security measures (CCTV, access controls, secure areas), prototype tracking systems, and data protection controls
• Build and update audit schedules, coordinating with multiple facilities across APAC region
• Review and validate corrective actions from previous audits, ensuring proper implementation
• Update security metrics and prepare reports for management review
• Respond to real-time security deviations or incidents at manufacturing sites
• Guide suppliers on security requirement implementation
• Review inventory reconciliation reports and prototype device tracking
• Follow up with site security managers on pending issues
• Document daily findings, incidents, and concerns
• Coordinate with cross-functional teams on security projects and initiatives
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Work/Life BalanceTraining and Career growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.

- Domestic and international travel required (30-50% of time) with flexibility for urgent requests
- Proficient in Mandarin Chinese and English (written and verbal) for collaboration with APAC regions
- 5+ years experience in security auditing, compliance, or related security operations
- Strong background in prototype and intellectual property protection programs
- Working knowledge of physical security systems (access control, CCTV, intrusion detection)
- Understanding of cybersecurity fundamentals including network security, data protection, and access management
- Experience with security risk assessments and audit methodologies
- Experience with data protection and privacy regulations in APAC region
- Familiarity with industry security standards (ISO 27001, TAPA FSR)

- Bachelor's/Master's degree in Information Security, Supply Chain Management, or related field; or 8+ years experience in security operations, brand protection, or manufacturing security
- Professional security certifications: CISSP, CPP, CFE, CISM, or Lead Auditor certifications
- Experience conducting manufacturing security audits against ISO 27001, TAPA FSR, or other international security standards
- Demonstrated experience in supply chain security operations and investigations
- Experience with physical and cyber security controls in manufacturing environments
- Knowledge of secure destruction protocols for prototypes/tooling/components
- Understanding of security information management systems and access control technologies
- Familiarity with IoT security and connected device vulnerabilities
- Active membership in security organizations (ASIS, TAPA, ISC2)
- Experience working in multinational technology or consumer electronics companies
- Strong presentation and training delivery skills for large audiences
- Additional Asian languages (Vietnamese, Thai, Japanese) highly valued