Our mission: To be Earth's most customer-centric company.
At Amazon, we are obsessed with customer trust. Information Security enables Amazon business leaders to securely develop and operate to maintain Customer Trust by guarding the confidentiality and integrity of Amazon and customer data. We assess risk, classify data and systems, detect potential intrusion, and render useless the value of data that may be leaked.
Key job responsibilities
This role is for a security specialist who will work with contracts, legal, developers, program managers, and security engineers to develop expertise in our compliance obligations, security controls, and human access management program. The successful candidate will work across our engineering teams to identify ways to continually enhance the program by introducing preventative capabilities, process improvements, and automation. The security specialist is also responsible for driving organizational wide campaigns to implement security changes as well as writing business justification narratives.
You will love this job if you are passionate about the security at scale in a diverse environment and you want to solve real business problems. You will have the opportunity to engage with systems that are at the cutting edge of technology. You will work directly with CDO service teams, infrastructure and administrative teams to identify opportunities to improve our security posture. You will define security controls, drive process improvements and work with service owners to develop innovative solutions to complex technical challenges. You can prioritize well, communicate clearly, and have a consistent track record of delivery.
A day in the life
o Drive security excellence across multiple security domains, such as access control, vulnerability management and secure software development.
o Demonstrate the ability to provide both structured and creative thinking in a dynamic, multi team-based environment.
o Aim at identifying and eliminating security risks for Amazon and its partner teams.
o Demonstrate the ability to communicate effectively at multiple levels of management.
o Be comfortable working in a fast-paced, ever-changing environment.
o Be comfortable with hands-on day-to-day problem solving, implementing quick and effective action plans to meet short term priorities.
About the team
Joining the Information Security team provides the unique challenge and opportunity to solve security issues across a diverse set of global businesses. The ideal candidate will draw upon exemplary project management capabilities, critical thinking, problem-solving skills, and a passion for creating reliable, maintainable, and secure solutions. The candidate should be open to new challenges, proficient at multi-tasking, innovative, self-directed, and a great team player. Candidates should drive continuous process improvement and collaborate effectively with cross-functional business and security teams to solve problems and implement solutions.
This position may be located in Seattle WA, Austin TX or Arlington VA.
o Bachelor’s Degree in Computer Science, Information Systems Management, Mathematics, Accounting/Auditing, other related fields, or equivalent experience.
o 3+ years of experience in security, software engineering, compliance, or process management work in in support of a highly technical environment.
o 3+ years of experience with implementation of security controls and driving rollout of controls.
o 3+ years of project management experience and demonstrated knowledge of program management best practices
o 3+ years of experience in managing complex projects or programs at scale.
o Familiarity with cloud security and compliance controls and frameworks
o Demonstrate innovative security approaches in non-traditional IT environments
o Have excellent written and verbal communication skills with the ability to present complex technical information in a clear and concise manner to a variety of audiences
o Excellent communication skills and the ability to work well in a team
o Strong customer focus, ownership, sense of urgency and drive
o Familiarity with web services, multi-tiered systems, complex architectures, workflow modeling and enterprise application integration
o Passion to make things better and resourceful, solutions-based approach to partnership
o Security-related certifications (i.e. CISSP, CISA)
o Possess an understanding of core information security principles and associated risk management principles
o Experience with cross-organizational collaboration and negotiation
o Meets/exceeds Amazon’s leadership principles requirements for this role
o Meets/exceeds Amazon’s functional/technical depth and complexity for this role
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.