Manager, Commercial Compliance, Security
Amazon.com
As part of the Santos Supply Chain Security, Compliance, Privacy and Trust team, you will build the bridges between security, technology, operations, and compliance by working directly with our Santos service teams, corporate security teams, third-party assessors and auditors, and internal stakeholders. You will join industry-leading security professionals and practitioners in supporting B2B customers to ensure that our systems are designed, operated, maintained, and protected in accordance with leading industry standards, including ISO 27001, SOC 2 Types 1 & 2, etc.
Key job responsibilities
* Manage and scale a team of commercial compliance specialists to achieve, maintain, and renew certifications.
* Dive deep into the controls environment to develop technical understanding of control implementation, and articulate compliance implications to internal and external audit functions.
* Set strategic direction, improve documentation, track progress, coordinate improvement efforts, and monitor process improvement effectiveness.
* Operate a rhythm of the business for managing changes to the control environment and external industry standards requirements; in preparing compliance assessment reports, guide control owners in documenting their own control activities and confirm readiness of controls for audit.
* Develop broad domain and technical knowledge in AWS and Amazon corporate security solutions including the operational processes and controls in place that support compliance programs.
* Monitor, evaluate, and continuously improve the business by being a trusted advisor, facilitator and creative problem solver. Develop and share program/project process frameworks, tools, and best practices that can be adopted throughout the organization.
* Drive remediation and continuous improvements to the security organization, the program management process and control implementation projects in coordination with the service teams. This includes resolution of audit findings and the execution of projects originated from internal assessments.
* Manage audit engagements and liaise with ISO/SOC 2/etc. auditors and Amazon service teams, articulate control implementation and impact, and establish considerations for applying security, privacy, and compliance concepts to a technical cloud environment.
* Apply a working knowledge of global information security and privacy regulation and policy to articulate customer and control impact and drive alignment to Amazon business-level controls.
* Effectively communicate compliance program results, including assessment status, workflow, remediation, and reporting, to a broad audience including technical peers and senior / executive leaders across participating Amazon organizations.
About the team
Buy with Prime Supply Chain Security is looking for a highly motivated IT Compliance Program Manager to join our Security, Compliance, Privacy, & Trust (SCPT) team to lead and scale a compliance team pursuing leading commercial audits and certifications (ISO 27001, SOC 2 series, etc.). You will join industry-leading security professionals to ensure that the business team complies with industry leading, globally recognized security and privacy standards.
Key job responsibilities
* Manage and scale a team of commercial compliance specialists to achieve, maintain, and renew certifications.
* Dive deep into the controls environment to develop technical understanding of control implementation, and articulate compliance implications to internal and external audit functions.
* Set strategic direction, improve documentation, track progress, coordinate improvement efforts, and monitor process improvement effectiveness.
* Operate a rhythm of the business for managing changes to the control environment and external industry standards requirements; in preparing compliance assessment reports, guide control owners in documenting their own control activities and confirm readiness of controls for audit.
* Develop broad domain and technical knowledge in AWS and Amazon corporate security solutions including the operational processes and controls in place that support compliance programs.
* Monitor, evaluate, and continuously improve the business by being a trusted advisor, facilitator and creative problem solver. Develop and share program/project process frameworks, tools, and best practices that can be adopted throughout the organization.
* Drive remediation and continuous improvements to the security organization, the program management process and control implementation projects in coordination with the service teams. This includes resolution of audit findings and the execution of projects originated from internal assessments.
* Manage audit engagements and liaise with ISO/SOC 2/etc. auditors and Amazon service teams, articulate control implementation and impact, and establish considerations for applying security, privacy, and compliance concepts to a technical cloud environment.
* Apply a working knowledge of global information security and privacy regulation and policy to articulate customer and control impact and drive alignment to Amazon business-level controls.
* Effectively communicate compliance program results, including assessment status, workflow, remediation, and reporting, to a broad audience including technical peers and senior / executive leaders across participating Amazon organizations.
About the team
Buy with Prime Supply Chain Security is looking for a highly motivated IT Compliance Program Manager to join our Security, Compliance, Privacy, & Trust (SCPT) team to lead and scale a compliance team pursuing leading commercial audits and certifications (ISO 27001, SOC 2 series, etc.). You will join industry-leading security professionals to ensure that the business team complies with industry leading, globally recognized security and privacy standards.
Confirm your E-mail: Send Email
All Jobs from Amazon.com