The Global Services, Security (GSS) team, a part of Amazon Web Services, leverages the expertise and ingenuity of our builders to establish scalable security solutions for both internal and external customers that drive business outcomes. Our goal of securing the world’s workloads and building a brighter future for humanity requires us to focus on reliable delivery of bar raising security outcomes and investment in security mechanisms and automation on behalf of our customers.
The AWS Security Assurance Services team works with our largest enterprise customers to operationalize the shared responsibility model as they migrate to the cloud. Are you a Security, Governance, Risk, and Compliance leader who can build a team that addresses the challenges of migrating systems and workloads to the cloud? Are you skilled at helping executives address their enterprise risk management requirements using highly scalable computing architectures?
The AWS Security Assurance Service team, within GSS, is seeking a talented Practice Manager to help the expansion of the Security Assurance practice and educate our customers on how our product-led, people-powered services help operate their business securely on AWS while also demonstrating assurance that compliance objectives can be achieved. This is an exciting opportunity to contribute at the intersection of cloud, cyber security, and compliance. You will have the opportunity to work with multiple lines of business and learn from (and contribute to) a variety of security and compliance use cases.
This is a customer facing role where success is measured by developing a high performing team of consultants who help enable our customers in moving their workloads and regulated data into the cloud by addressing specific risk, regulatory, and compliance requirements. You will be expected to also work in a Business Development capacity, assisting our AWS sellers to position the value and applicability of your team into customer projects and long-term relationships.
We are looking for an innovative security and compliance leader who enjoys establishing strategy and then drives consensus across the team to achieve a vision.
Key job responsibilities
Expertise – Builds teams that deliver on innovative governance, risk, compliance and security objectives
Solutions - Builds a team that can define security, compliance and risk management approaches to customers that help the customer understand how to move sensitive workloads onto the cloud faster.
Delivery – Engagements will require working to resolve security assurance questions and to understand how to manage risk and achieve security and compliance objectives while operating in the AWS Cloud through deep dive discussions, strategic presentations/recommendations, and hands on demonstrations of automating compliance in the AWS environment.
Insights - Lead efforts with AWS engineering, support, and business teams to convey partner and customer feedback as input to AWS technology roadmaps.
Ability to travel to customer sites as needed.
Relationships – Build long-lasting customer relationships with strategic stakeholders, supporting the Business Development and Customer Success efforts of AWS Security Assurance Services.
About the team
AWS Global Services includes experts from across AWS who help our customers design, build, operate, and secure their cloud environments. Customers innovate with AWS Professional Services, upskill with AWS Training and Certification, optimize with AWS Support and Managed Services, and meet objectives with AWS Security Assurance Services. Our expertise and emerging technologies include AWS Partners, AWS Sovereign Cloud, AWS International Product, and the Generative AI Innovation Center. You’ll join a diverse team of technical experts in dozens of countries who help customers achieve more with the AWS cloud.
5+ years’ experience in leading teams within IT security, compliance and risk management, data privacy, or security controls.
3+ years’ experience advising customers on architectures meeting NIST-based industry standards such as NIST 800-53, FedRAMP, NIST 800-171, and CMMC.
3+ years’ experience with enterprise risk management methods
3+ years’ experience assessing the security posture and producing evidence of control effectiveness in cloud environments
Bachelor’s degree in computer science, Information Systems Management, Information Security or equivalent experience required.
Experience in performing security assessments and information system audits of network, operating systems, application security, as well as auditing IT processes.
Experience with Agile, CI/CD, DevOps approach and how they impact risk management and compliance.
Audit certification such as Certified Information System Auditor (CISA)CMMC certification such as CMMC CCP
Demonstrated ability to think strategically about business, product, and technical challenges.
Use of attack and threat modeling techniques to inform enterprise risk
Master’s degree in computer science, Information Systems Management, Information Security or equivalent experience.
Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice (https://www.amazon.jobs/en/privacy_page) to know more about how we collect, use and transfer the personal data of our candidates.
m/w/d
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.
