Amazon Security Industry Specialist II Risk & Compliance 

United States, Texas, Austin 

985940425

Key job responsibilities- Communicate to leadership key risks and areas of program improvement, as well as seek diverse opinions and coordinate improvement efforts.
- Develop broad domain and technical understanding of Industry requirements and regulatory expectations to drive process improvement initiatives
- Preparing for SOC2, SIG, ISO 27001, US Government regulations/standards, and other certifications and assessments by identifying applicable controls, assessing control readiness for third-party assessments, recommending appropriate remediation strategies, and tracking remediation activities to completion.
- Leading and managing projects and campaigns with excellent project management skills.- Delivering recommendations and risk interpretations in a clear, concise and audience-specific format.Work/Life BalanceTraining and Career Growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.

- Bachelor’s Degree in Computer Science, Information Systems Management, Mathematics, Accounting/Auditing, or other related fields
- 5+ years experience in security, audits, customer trust, control assessments, or risk assessments.
- 5+ years experience assessing complex technical processes

- Demonstrated understanding of cloud computing services/architecture
- Experience with monitoring and automating security controls.
- Experience with using GRC tooling
- Direct experience in working with security and business teams on controls design to address regulatory compliance requirements
- Experience in technical security design, compliance consulting, or advisory work in support of a highly technical DevOps and cloud environment.
- Experience in developing unified frameworks that include more than one of the following: ISO, NIST, PCI, HIPAA, GLBA, GDPR, NYDFS, etc.
- Have an industry certification such as CISSP, CISA, and CISM.