Amazon Manager Audit Services 

Spain, Community of Madrid, Madrid 

653423416

Key job responsibilities
As part of the team, you will work with customers and regulators to demonstrate Amazon security controls applicable to local requirements. You will join our team in helping customers understand how our infrastructure is designed, operated, maintained, and protected in accordance with global regulated industry standards. In this role, you will be responsible for the following activities:- Develop understanding of regulated industry compliance requirements and communicate how we control activities to meet global regulatory obligations.- Implement continuous improvements to the security organization and the program management process. Share program/project process frameworks, tools, and best practices that can be adopted throughout the organization.
Work/Life Balance
Mentorship & Career Growth

- Bachelors, Masters or Diploma in Computer Science, Information Systems Management, Mathematics, Accounting/Auditing, Cybersecurity or other related fields.
- 5+ years experience in performing and/or participating in IT audits and assessments of highly technical cloud-based environments.
- 5+ years working in highly regulated industries (e.g. financial services, healthcare, and energy, telecommunications), including direct work with European audits and frameworks such as DORA.
- Auditors who have experience conducting IT audits based on ISAE 3402. Experience auditing COBIT, ITIL, and IT-Grundschutz as well.
- 1 or more industry-recognized security, cloud, or audit professional certifications (e.g., CISA, CISM, CISSP, CCSP, Amazon Cloud Security Practitioner
- Business-level fluency in English is required for this role. Successful applicants must have the legal right to work in Spain.

- Experience in technical security design, compliance consulting, or advisory work in support of a highly technical environment. Solid technical background with demonstrable understanding of cloud services/deployment architecture (ideally Amazon cloud services offering).
- Deep understanding of regulatory guidance, FCA guidance FG16/5 (Guidance for firms outsourcing to the ‘cloud’ and other third-party IT services), EBA Recommendations on Outsourcing to Cloud Providers, C5 requirements of the Federal Office of Information Security of Germany and other applicable standards and requirements.
- A record of delivery of IT process improvement projects with technology processes and/or major tech companies along with generating automated metrics to measure effectiveness and consistency.
- Experience in IT program or project management, IT auditing, and/or control framework development and implementation.
- Experience building certification roadmaps based on customer requirements, compliance documentation, and ensuring that committed assessments are delivered on schedule.
- A detailed understanding of evaluating the design and effectiveness of IT controls and experience working with auditors/regulators for these types of assessments.
- Experience with Governance, Risk, and Compliance tools and technology.
- Strong bias for action with ability to prioritize, multi-task, and meet deadlines.
- Strong verbal and written communications skills are a must, as well as the ability to work effectively across internal and external organizations.