Amazon Security Assessor II SRC Assurance 

United States, Washington, Seattle 

379232512

Key job responsibilities
- Understands and rationalizes compliance requirements in the healthcare and payments domains. Provides business specific interpretations and supports automation opportunities while working with Dev teams.
- Reviews security controls that are technical in nature, such as access controls, data encryption in transit and at rest, and auditing and logging user activity to assess whether the controls are implemented and operating effectively.- Delivers recommendations and risk interpretations in a clear, concise and audience-specific format- Supports data analysis requests to identify trends and provide valuable insights to the leadership.About the team
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.
Work/Life BalanceTraining and Career Growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.

- Bachelor’s degree in Management Information Systems, Computer Science or relevant field
- 3+ years of relevant industry experience including information assurance, data privacy and compliance in payments or healthcare domains.
- 3+ years of information security governance, audit, risk management or related client service or consulting experience.
- Skilled in risk management, business risk analysis and making complex business/risk trade-off recommendations and decisions.
- Technical knowledge and familiarity with information security standards.

- Masters degree in Management Information Systems, Computer Science or relevant field with 5+ years of relevant industry experience including information assurance, data privacy and compliance in payments or healthcare domains
- Related security control and compliance experience in various frameworks including: HIPAA, HITRUST, PCI DSS, GLBA, ISO, NIST, etc.
- CISSP, CISA, CISM, CIPP, CEH and/or other comparable security controls or audit certifications preferred.
- Experience with service-oriented architectures, web services security and cloud security (preferably AWS cloud services).