Security Compliance Specialist II
: Job Details :


Security Compliance Specialist II

Amazon

Job Location : Arlington,VA, USA

Posted on : 2025-08-12T07:30:45Z

Job Description :

Join Amazon's Security Risk and Compliance (SRC) team as a passionate Security Compliance Specialist, where you'll play a crucial role in preparing for and supporting third-party attestation audits. Your responsibilities will include:

  • Preparing SOC2 reports and managing regulatory/industry certifications.
  • Developing standardized security response protocols for inquiries from Amazon's corporate customers and business partners.
  • Managing daily requests for proof of compliance with security requirements and due diligence questionnaires.
  • Identifying and assessing security controls, collaborating with control owners to remediate findings, and ensuring compliance.

As part of the SRC team, your work will help build customer trust by reaffirming Amazon's commitment to data confidentiality, integrity, and availability. We're looking for a candidate who is not only technically savvy but also an effective communicator who can drive improvements and work seamlessly with technical teams and business leaders.

Your key responsibilities will include:

  • Serving as a subject-matter expert on Amazon security controls.
  • Communicating key risks and program improvement areas to leadership and coordinating initiatives.
  • Preparing for and leading compliance assessments for standards such as SOC2, ISO 27001, and other relevant certifications.
  • Utilizing strong project management skills to lead initiatives and communicate project statuses to stakeholders.

    • At Amazon, security is essential for maintaining customer trust. We foster an inclusive team culture that values diversity of thought and promotes continuous learning. We offer resources for career advancement and prioritize a work-life balance that supports both personal and professional growth.

    Basic Qualifications:

    • Bachelor's Degree in Computer Science, Information Systems, or related fields.
    • 5+ years of experience in security, audits, or compliance.
    • 5+ years of experience with technical assessments and processes.

    Preferred Qualifications:

    • Understanding of cloud computing services.
    • Experience in automating security controls.
    • Familiarity with GRC tools and direct experience in compliance.
    • Industry certifications like CISSP, CISA, or CISM.

    If you are ready to take your career to the next level and are driven by the opportunity to address complex security challenges, we encourage you to apply!

    This position will remain posted until filled. Applicants should apply via our internal or external career site.

    Apply Now!
    Similar Jobs (0)

    -- View More Similar Jobs --