At Amazon, we are obsessed with earning customer trust. The PeopleTech Security team enables our People eXperience and Technology (PXT) business teams to maintain customer trust by keeping HR systems and their underlying employee, contingent worker, applicant, and candidate data secure.
PeopleTech Security is looking for a passionate, organized, and results-oriented Risk Manager to execute on a security and privacy data minimization program. If you enjoy working in a rapidly changing environment and influencing the strategic direction, this position is for you. In this role, you will engage cross-functional teams of stakeholders to execute a security compliance program, including data lifecycle management, anonymization, and automated classification. You will collaborate with the business, privacy, engineering teams, product, and legal to drive risk assessments, escalations, mitigation strategies and identify opportunities to keep our applications secure. You will make scalable risk decisions that enable our development teams to operate effectively, securely, and safely. You will drive process improvements, effectively rally support for your initiatives, and help your stakeholders make risk-based, two-way door decisions that meet security requirements.
Key Responsibilities include:
– Balancing business and compliance needs against technical constraints, helping stakeholders make appropriate tradeoffs, and clearly communicating goals, roles, responsibilities, tasks, and desired outcomes to cross-functional teams
– Breaking large and complex technology builds down into manageable pieces, ruthlessly prioritizing, and delivering results in a successful and timely manner
– Analyzing controls against regulatory obligations and working with stakeholders to identify and remediate the root causes of issues
– Documenting and tracking cross-functional calls and reporting metrics to leadership
– Communicating effectively at multiple levels, building trusting relationships across organizations, and demonstrating discretion with sensitive information
We are open to hiring candidates to work out of one of the following locations:
Seattle, WA, USA
BASIC QUALIFICATIONS
– Bachelor’s Degree
– 3+ years of experience in a compliance or risk management role working with legal and compliance teams
– Information Security and Privacy experience
PREFERRED QUALIFICATIONS
– 3+ years of experience working directly with engineering teams and other security and privacy stakeholders
– Experience managing compliance technology projects across teams, and building sustainable processes
– Experience in risk management, business risk analysis, and making complex business/risk trade-off recommendations and decisions
– Skilled in driving day-to-day problem solving, and implementing effective action plans to meet priorities
– Experience working cross-functionally with tech and non-tech teams
– Knowledge of security domain areas such as security engineering; application, system and network security; access management; data retention and anonymization; security risk assessment; and current security threats, trends, and mitigations
– Knowledge of privacy regulations (e.g., GDPR, CCPA) and processes (e.g., Privacy by Design and Default, Privacy Impact Assessments, Data Subject Access and Deletion Requests, Records Retention)
– Experience with program and project management techniques and tools
– Experience with risk-based analysis of products, vendors, compliance requirements, and significant operational changes
– Demonstrates collaborative approach to overcoming challenges and influencing organizational change
– Comfortable managing through ambiguity with strong bias for action
– Self-motivated with the ability to multitask in a fast-paced, technical environment
– Demonstrates high judgment, and the ability to influence
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.
Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $91,800/year in our lowest geographic market up to $185,000/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits. Applicants should apply via our internal or external career site.