Senior Compliance Specialist, Government Compliance

At Amazon Web Services (AWS), Security is our highest priority. The AWS Security Assurance team is responsible for diving deep into industry requirements, establishing and maintaining regulatory and authority relationships for security requirements and establish long-term strategies to meet customer and regulatory security assurance needs and requirements. At AWS’ scale, we hire experienced builders to design and operate scalable mechanisms to provide the highest level of assurance to our most regulatory conscious customers.

We are looking for a highly motivated principal industry expert to join our Government Compliance Team. As part of the team, you will own the strategic direction and operation and key part of our US Government Compliance Program (e.g. FedRAMP, DoD). Our team solves complex compliance challenges, dives deep into compliance requirements for both AWS and our customers, improves processes, and drives greater efficiencies in meeting expectations. This role facilitates our ability to grow and scale our internal compliance processes and mechanisms to meet the compliance and regulatory expectations in the US Public Sector Market. You should be an experienced and industry professional who has the ability to understand IT and compliance processes, evaluate opportunities for improvement, and to be able to drive innovative campaigns across organizations and teams.

Key job responsibilities

Evaluating the effectiveness and efficiency of compliance program activities and recommend improvements to improve delivery at scale.

Leading and managing projects and campaigns with excellent project management skills.

Creating operational mechanisms to address recurring escalation patterns and persistent challenges

Simplifying and decomposing security compliance requirements into clear technical specifications and policies

Setting the vision and connecting the vision between technology, business strategies and requirements

Communicating to senior leadership the status and key deliverables of team initiatives, seek diverse opinions and lead improvement efforts. Leading Escalations

Influencing incoming and present regulations, legislation, mandates and standards for the betterment of AWS and our customers and reduce the impact to our internal and external stakeholders

Fielding and addressing requests for team support in collaboration with internal and external stakeholders.

Diving deep into the operations of AWS compliance programs to develop broad domain and technical understanding of regulatory and customer expectations to drive process improvement initiatives.

Bridging communication with both technical engineering and business teams to successfully capture and implement business requirements.

Transforming raw thoughts into clear technical documentation and/or direction.

Operating a quality rhythm of the business for managing compliance expectations.

Using high judgment to distill diverse inputs from large customer segments and stakeholders to set a vision and design the right long-term solutions.

Leading a large, challenging initiative.

About the team

Inclusive Team Culture

Here at AWS, we embrace our differences. We are committed to furthering our culture of inclusion. We have ten employee-led affinity groups, reaching 40,000 employees in over 190 chapters globally. We have innovative benefit offerings, and host annual and ongoing learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences. Amazon’s culture of inclusion is reinforced within our 16 Leadership Principles, which remind team members to seek diverse perspectives, learn and be curious, and earn trust.

Work/Life Balance

Our team puts a high value on work-life balance. It isn’t about how many hours you spend at home or at work; it’s about the flow you establish that brings energy to both parts of your life. We believe striking the right balance between your personal and professional life is critical to life-long happiness and fulfillment. We offer flexibility in working hours and encourage you to find your own balance between your work and personal lives.

Mentorship & Career Growth

Our team is dedicated to supporting new members. We have a broad mix of experience levels and tenures, and we’re building an environment that celebrates knowledge sharing and mentorship. We care about your career growth and strive to assign projects based on what will help each team member develop into a better-rounded professional and enable them to take on more complex tasks in the future.

We are open to hiring candidates to work out of one of the following locations:

Arlington, VA, USA | Austin, TX, USA | New York, NY, USA | Seattle, WA, USA

BASIC QUALIFICATIONS

-Bachelor’s Degree in Cybersecurity or other related fields, or equivalent experience.

-10+ years of experience in project/program management in a technical field.

-5+ years of IT security audit, compliance and/or relevant Federal regulatory experience.

-3+ years of FedRAMP or NIST compliance program assessment experience.

-Demonstrated understanding of cloud computing services/deployment architecture.

PREFERRED QUALIFICATIONS

-Experience working with US Government Compliance Frameworks/Programs including: FedRAMP, DoD SRG, NIST, ISO, FISMA, RMF, OSCAL

-Have a record of delivery of IT process improvement projects with technology processes and/or major tech companies.

-Have experience in cloud technologies.

-Have experience performing 3PAO assessments

-Have experience performing FedRAMP advisory projects

-Have considerable working knowledge of NIST SP 800-53 in relation to cloud technologies.

-Have experience in assessments, authorization and continuous monitoring of cloud services and products

-Have experience in performing technical assessments and documentation of network, operating systems, application security, as well as auditing IT processes.

-Have experience developing a security compliance strategy based on product roadmap.

-Have an understanding of evaluating the design and effectiveness of IT controls.

-A portfolio of writing samples.

-Meets/exceeds Amazon’s leadership principles requirements for this role.

-Meets/exceeds Amazon’s functional/technical depth and complexity for this role.

-Direct experience in identification, management, monitoring and reporting risks/POA&Ms

-Have an industry certification such as CISSP, CISA, and CISM.

#SecurityAssurance #RegOps

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.

Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $127,300/year in our lowest geographic market up to $210,400/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits. Applicants should apply via our internal or external career site.

Job Category
Product Management
Job Type
Full Time/Permanent
Salary
USD 210,400.00 per year
Country
United States
City
Arlington
Career Level
unspecified
Company
Amazon
JOB SOURCE
https://www.amazon.jobs/en/jobs/2417740/senior-compliance-specialist-government-compliance