Amazon Sr Security Industry Specialist Amazon Business 

United States, Texas, Dallas 

937039901

We are seeking a Security Industry Specialists from diverse backgrounds, who are creative problem solvers and passionate about delivering solutions that improve both user experience and security while meeting internal and external standards and compliance requirements.In this role, you will work across many stakeholders to design solutions that meet global industry standards and regulatory requirements. As part of the team, you will identify industry requirements, evaluate compliance requests, and deliver results that demonstrate the effectiveness of Amazon's internal security controls. You’ll apply your creative problem-solving skills and work with service teams and partner security teams to provide assurance to customers, as well as, design, build, and execute high-impact security or compliance programs.
Key job responsibilities
You will be responsible for a set of long-term security outcomes. Your day-to-day job responsibilities will include:
- Building ISO 27001, SOC2, and other security and privacy certifications and attestation programs, identifying applicable security controls, assessing compliance gaps and readiness, developing remediation strategies, and driving remediation activities to completion;- Delivering recommendations and risk interpretations in a clear, concise and audience-specific format
- Communicating to leadership key risks and areas of program improvement, as well as, seek diverse opinions and coordinate improvement efforts;
- Working closely with engineering, compliance, security, and Legal teams to meet compliance and regulatory requirements and design compliance solutions;

- Bachelor’s Degree in Computer Science, Information Systems Management, Cyber Security, Mathematics, Accounting/Auditing, or other related fields
- 5+ years of experience in security, audits, customer trust, control assessments, or risk assessments in support of a highly technical and global environment
- 5+ years of experience in performing implementation and technical audits/assessments in direct support of a major compliance effort (e.g., ISO 27001, SOC 2, or NIST 800 series frameworks)
- CISSP, CISA, CISM, CIA or other comparable security controls or audit certifications
- Deep technical background with experience in common IT infrastructure and services/ applications
- Experience building certification roadmaps and compliance documentation

Pursuant to the Los Angeles Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.