Amazon Web Services, Inc.
Project/Program/Product Management--Non-Tech, Security Industry Specialist, amazon security
SecurityIndustrySpecialist,AWSSecurity&RiskCompliance
Neural analysis suggests this role is
optimal for Mid+ candidates.
“Security Industry Specialist, AWS Security & Risk Compliance at Amazon Web Services, Inc.. Skills: Security compliance, Risk assessment, Audit. Support risk evaluations of security compliance findings. Determine when to remediate, negotiate with auditors, or”
Industry & Context.
Root cause analysis
What They're Looking For.
Must Have
Bachelor's degree in Auditing, Information Systems Management, Computer Science, Cyber Security, or other related fields, 5+ years of experience in security compliance, audit, or governance roles, Experience performing and/or participating in technical assessments in direct support of a major compliance effort, Experience in risk assessment and enabling organizations to make security decisions, Experience in working directly with government officials and regulatory bodies
Nice to Have
CISSP, CISA, CISM or other security certification, Experience with AWS, Azure, or Google Cloud technology, Experience in security or compliance consulting or advisory work in support of a highly technical environment
What You'll Do.
Support risk evaluations of security compliance findings
Determine when to remediate
negotiate with auditors
Provide compliance risk assessments and status updates
Communicate risk posture and remediation progress
Contribute to the maintenance and execution of the
escalation thresholds
and tracking outcomes
Support theme analysis for compliance framework and process
Identify patterns across recurring findings
Contribute to interventions that address root causes
Participate in cross-team initiatives to resolve compliance gaps
and compliance perspectives
Translate audit findings and regulatory obligations into actionable
Contribute to remediation method intelligence
Build repeatable playbooks for managing auditor expectations
Maintain structured records of management responses and mitigation
Support triage systems and risk assessment frameworks
Contribute to metrics and reporting
Optimize cross-team processes for efficiency
Identify opportunities to improve how compliance risk evaluations
How You'll Work.
Team & Collaboration
Partnership with audit program managers; Work across teams; Cross-team initiatives; Work with Security Engineers; Work with Technical Program Managers
Communication Scope
Clearly communicating risk posture
Full Job Description
At AWS, Security is priority zero. As part of the Amazon Web Services (AWS) Security team, we are looking for a Security Industry Specialist who is passionate about how AWS identifies, evaluates, and resolves security compliance risk. As part of the Risk and Compliance Remediation (RCR) team within AWS Compliance Security Assurance, you'll support compliance risk evaluations, contribute to remediation strategies, and help eliminate security compliance risks before they reach auditors, customers, or regulators. This role requires proficiency in common security compliance frameworks (e.g., SOC, PCI, ISO, NIST) and audit standards, along with the ability to translate regulatory requirements into actionable risk mitigation steps. You'll work across teams to support remediation priorities, contribute to risk acceptance processes, and provide compliance risk assessments to peers and managers. Key job responsibilities · Support risk evaluations of security compliance findings in partnership with audit program managers, leveraging existing mechanisms and frameworks to determine when to remediate, negotiate with auditors, or recommend risk acceptance · Provide compliance risk assessments and status updates to peers and managers, clearly communicating risk posture and remediation progress · Contribute to the maintenance and execution of the risk acceptance framework, documenting rationale, escalation thresholds, and tracking outcomes over time utilizing established processes · Support theme analysis for compliance framework and process root causes, identifying patterns across recurring findings and contributing to interventions that address root causes across AWS services · Participate in cross-team initiatives to resolve compliance gaps that generate repeated audit findings, working with Security Engineers and Technical Program Managers to synthesize technical, operational, and compliance perspectives · Leverage your proficiency in common security compliance regimes to trans
Applying for this Security Industry Specialist, AWS Security & Risk Compliance role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
ANONYMOUS · UNFILTERED
What do employees actually say about Amazon Web Services, Inc.?
Real rants from real employees. Read before you apply.