AWS Proactive Security is looking for a Security TPM to support Amazon’s Physical Stores Technology business in order to establish processes to ensure our stores, devices, applications, services, and systems are designed and implemented to the highest security standards and resilient to the modern threats. You will also help with security audits, risk analysis, vulnerability management and security/compliance assessments across all elements of Amazon Physical Stores Technologies.
You will tackle challenging, novel situations every day and, given the size of this initiative, you will have the opportunity to work with multiple technical teams at Amazon in different locations. You should be comfortable with a high degree of ambiguity and relish the idea of solving problems that haven’t been solved at scale before. Along the way, we guarantee that you will learn a ton, have fun and make a positive impact on millions of people.
Key job responsibilities
In this role, you will use a blend of technical knowledge, security fundamentals, and program management to solve security-related challenges that are often not well-defined, working across several organizations to develop our team’s programs and strategies. You will use your great communication skills to effectively communicate with and influence customers, engineers, senior leaders, and other stakeholders. Additionally, as a Sr Security TPM on our team, you will:
- Drive the decision-making process at various levels to ensure that we are meeting requirements, satisfying regulatory and compliance requirements, simplifying business processes, and overall raising the security bar for our customers;
- Define and manage security compliance program (such as PCI, SOC, ISO) for Amazon Physical Stores Technologies which includes scope identification and validation, annual assessments, external attestations, and continuous monitoring and guidance on evolving compliance requirements;
- Identify and drive technical and business projects to improve security risk posture of Amazon Physical Store Technologies;
- Lead risk management and risk reduction initiatives to reduce technical and security risks to our business;
- Drive investigations into security processes and identify opportunities for automation to drive efficiency;
- Track and report the team’s progress using metrics that capture impact and value.
About the team
Inclusive Team Culture
Here at AWS, we embrace our differences. We are committed to furthering our culture of inclusion. We have ten employee-led affinity groups, reaching 40,000 employees in over 190 chapters globally. We have innovative benefit offerings, and host annual and ongoing learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences. Amazon’s culture of inclusion is reinforced within our 16 Leadership Principles, which remind team members to seek diverse perspectives, learn and be curious, and earn trust.
Work/Life Balance
Our team puts a high value on work-life balance. It isn’t about how many hours you spend at home or at work; it’s about the flow you establish that brings energy to both parts of your life. We believe striking the right balance between your personal and professional life is critical to life-long happiness and fulfillment. We offer flexibility in working hours and encourage you to find your own balance between your work and personal lives.
Mentorship & Career Growth
Our team is dedicated to supporting new members. We have a broad mix of experience levels and tenures, and we’re building an environment that celebrates knowledge sharing and mentorship. We care about your career growth and strive to assign projects based on what will help each team member develop into a better-rounded professional and enable them to take on more complex tasks in the future.
BASIC QUALIFICATIONS
- BS degree in a technical discipline or equivalent experience in an IT-related field.
- 6+ years of technical experience in project/program management with a proven ability to work effectively across organizations.
- 5+ years of traditional security and cybersecurity experience such as – security solution implementations, risk management, payment security, payment compliance, compliance management and remediation.
- 5+ years of information security governance and implementation.
- 3+ years of experience in leading and driving compliance programs such as PCI DSS.
PREFERRED QUALIFICATIONS
- Comfort and experience with cross-organizational communication; excellent written and verbal communication skills.
- Demonstrated experience driving overall strategy and teams across organizations.
- Solid foundation in service-oriented and web-service technologies to be able to understand service inter-dependencies and drive towards technical solutions for multi-tiered systems.
- Strong understanding of security & privacy controls and frameworks such as NIST, ISO etc.
- Experience driving security and privacy reviews, establishing security goals and strategy for the organization.
- Security certifications such as CISSP, CISM, AWS Security certifications are encouraged.
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.
Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $119,000/year in our lowest geographic market up to $231,400/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits. Applicants should apply via our internal or external career site.