Security and Privacy Risk Management Specialist, Kuiper Security
Amazon.com
Project Kuiper is an Amazon initiative to increase global broadband access through a constellation of over 3,000 Low Earth Orbit (LEO) satellites. Its mission is to bring fast, affordable broadband to unserved and underserved communities worldwide. At Project Kuiper, we are obsessed with customer trust and are seeking an individual contributor who is creative, and passionate about delivering Governance, Risk and Compliance solutions to meet Kuiper's regulatory and external assurance needs. In this role, you will work collaboratively with various business and security teams across Amazon to identify compliance needs, assess the maturity of processes and controls, design, build, and execute high-impact security or compliance programs and liaise with external auditors to ensure successful audit executions.
This role is open for Sunnyvale, CA, and Redmond, WA locations.
The Security Compliance Specialist in Project Kuiper's Security team will drive regulatory and certification compliance requirements for our world-class cyber and information security throughout Kuiper's technology, systems, and infrastructure. This role is at the forefront of delivering highly secure space and terrestrial broadband telecommunication services for consumer, enterprise, telecom, transportation and government customers around the world.
The ideal candidate is technically experienced and innovative security, risk, compliance, and audit professional who has the ability to understand systems, security, and privacy processes, communicate to customers, and to be able to drive innovative process changes through multiple organizations and teams. You have implemented NIST control frameworks, reviewed control activities, evidence collection, and liaised with auditors.
Export Control Requirement:
Due to applicable export control laws and regulations, candidates must be a U.S. citizen or national, U.S. permanent resident (i.e., current Green Card holder), or lawfully admitted into the U.S. as a refugee or granted asylum.
Key job responsibilities
- Play a leadership role in Kuiper Security and work closely with the Kuiper business and product community, setting direction for security of key assets, data, and business processes; serving as a subject matter expert resource for security engineers, security champions, and business leaders inside and outside of our organization
- Proactively assess, identify and develop recommendations regarding data protection, insider threat, data sharing, identity and access management, and third party risk issues and vulnerabilities by working with multiple stakeholder teams, including Privacy, Legal, HR, IT, etc
- Lead and execute internal security and data usage assessments, investigations and security audits, while also supporting enterprise wide information security and cyber risk assessments with technical and non-technical teams
- Contribute to the development of business risk, insider threat, and third party risk management strategic control requirements and roadmaps
- Contribute to new, and provide feedback on existing security standards and control requirements, GRC policy exceptions and risk issue management process
- Develop and maintain relevant security risk metrics to promote transparency across the organization; measures, monitors and reports on information security risks to management
- Provide guidance on risk, compliance, and policy to technical and non-technical internal customers, including security training and outreach to internal teams and external supply chain partners
- Apply your security and business knowledge to drive secure and pragmatic improvements broadly to Kuiper people, process, and assets, while making technical trade-offs between short versus long term security and business goals
- Strong organizational and communication skills, with a demonstrated ability to work in a multi-tasking dynamic environment while maintaining a high level of ownership and accountability is a must
About the team
Why Amazon Security?
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
This role is open for Sunnyvale, CA, and Redmond, WA locations.
The Security Compliance Specialist in Project Kuiper's Security team will drive regulatory and certification compliance requirements for our world-class cyber and information security throughout Kuiper's technology, systems, and infrastructure. This role is at the forefront of delivering highly secure space and terrestrial broadband telecommunication services for consumer, enterprise, telecom, transportation and government customers around the world.
The ideal candidate is technically experienced and innovative security, risk, compliance, and audit professional who has the ability to understand systems, security, and privacy processes, communicate to customers, and to be able to drive innovative process changes through multiple organizations and teams. You have implemented NIST control frameworks, reviewed control activities, evidence collection, and liaised with auditors.
Export Control Requirement:
Due to applicable export control laws and regulations, candidates must be a U.S. citizen or national, U.S. permanent resident (i.e., current Green Card holder), or lawfully admitted into the U.S. as a refugee or granted asylum.
Key job responsibilities
- Play a leadership role in Kuiper Security and work closely with the Kuiper business and product community, setting direction for security of key assets, data, and business processes; serving as a subject matter expert resource for security engineers, security champions, and business leaders inside and outside of our organization
- Proactively assess, identify and develop recommendations regarding data protection, insider threat, data sharing, identity and access management, and third party risk issues and vulnerabilities by working with multiple stakeholder teams, including Privacy, Legal, HR, IT, etc
- Lead and execute internal security and data usage assessments, investigations and security audits, while also supporting enterprise wide information security and cyber risk assessments with technical and non-technical teams
- Contribute to the development of business risk, insider threat, and third party risk management strategic control requirements and roadmaps
- Contribute to new, and provide feedback on existing security standards and control requirements, GRC policy exceptions and risk issue management process
- Develop and maintain relevant security risk metrics to promote transparency across the organization; measures, monitors and reports on information security risks to management
- Provide guidance on risk, compliance, and policy to technical and non-technical internal customers, including security training and outreach to internal teams and external supply chain partners
- Apply your security and business knowledge to drive secure and pragmatic improvements broadly to Kuiper people, process, and assets, while making technical trade-offs between short versus long term security and business goals
- Strong organizational and communication skills, with a demonstrated ability to work in a multi-tasking dynamic environment while maintaining a high level of ownership and accountability is a must
About the team
Why Amazon Security?
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
Por favor confirme su dirección de correo electrónico: Send Email