Amazon Supply Chain Security Engineer Infrastructure Compliance 

United States, Kansas 

399140141

You’ll join a diverse team of software, hardware, and network engineers, supply chain specialists, security experts, operations managers, and other vital roles. You’ll collaborate with people across AWS to help us deliver the highest standards for safety and security while providing seemingly infinite capacity at the lowest possible cost for our customers. And you’ll experience an inclusive culture that welcomes bold ideas and empowers you to own them to completion.This position can be located in Herndon, VA, Minneapolis, MN, or Seatlle, WA.About the team
Diverse Experiences
Amazon values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Why AWS
Work/Life BalanceMentorship and Career Growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.

- Bachelor's degree
- 5+ years experience in a customer facing role and experience with audits or security assessments.
- 5+ years experience with information technology (IT) security principles and methods (e.g., server and network management, firewalls, VPN, multi-factor authentication, encryption) or related technical experience.

- 4+ years experience related to supply chain or manufacturing security.
- 4+ years experience related to security risk mitigation, providing guidance to improve security practices
- Knowledge of one or more international supply chain and security compliance frameworks such as NIST 800- (30, 53, 161, 171, and 88); ISO 27000, 28000, and 20243 series; NERC CIP; FedRAMP; CMMC; TAPA.
- Knowledge of network security architecture concepts including protocols, enforcement and monitoring points, and defense-in-depth.
- Relevant industry certifications such as CISSP, Security+, CEH, or SANS (GSEC, GCIH, GDSA, GSNA, etc.)