COMPLETE Sr Third Party Security Specialist, Project Kuiper Security - Redmond

Job Description

re you passionate about third party security, risk management, data security, compliance, privacy, and security strategy? Would you like to be a part of the team responsible for building and managing a third party security strategy program for Amazon's fastest growing subsidiary, Project Kuiper? We need exceptionally talented, bright, and driven people. We want someone ready to partner across Project Kuiper's supply chain, business development, technology, and security engineering groups to secure and protect Kuiper data. The right person will lead the management of third party security assessments that focus on Governance, Risk, and Compliance for Kuiper Government Solutions (KGS).

We operate in a hyper-growth environment where priorities shift quickly, so a passion and discipline around security and delivery is critical. You will tackle challenging situations every day and, given the size of this initiative, you will collaborate with various levels across Project Kuiper and Amazon.

Key job responsibilities
* Supporting coordination of identifying, tracking, and remediation of third party risks
* You will help enable Project Kuiper to use secure, compliant third-party suppliers that support our product, internal operations, legal, Application and Architecture security and strategy
* Be responsible for Kuiper Government Solutions third-party risk assessments on: vendor controls, processes, and/or systems to identify the threats and vulnerabilities that lead to risk, developing plans to mitigate against risks, and managing the remediation plan to completion
* Coordinate with vendors and internal stakeholders to gather information needed for periodic security and compliance reviews, validations, and audits
* Respond to internal and external inquiries, security assessments, and other requests related to Third Party Risk Management
* Support the development, update, revision, and/or implementation of security and compliance policies, procedures, practices, and metrics
* Establishes credibility and maintains strong working relationships with groups involved with information security matters (Legal, Internal Audit, Developer Community, Networking, Systems, etc.)
* Strong problem-solving skills. Experience using problem solving and analytical skills to solve business problems and drive process improvements
* Plays a key and influential role working with others, in groups, in cross-functional settings and with diverse stakeholders internally and externally

We are open to hiring candidates to work out of one of the following locations:

Redmond, WA, USA

Basic Qualifications:

* Bachelor’s degree in Computer Science, Information Security, Engineering, or related field or equivalent experience
* Minimum 7+ years of information security compliance audit/assessment experience
* Solid understanding of data privacy and data security principles and best practices
* Strong customer focus, ownership, sense of urgency and drive
* Ability to establish credibility and earn trust with a variety of Stakeholders and Leadership
* Senior level written and verbal communication skills
* Ability to work well, collaborate, and lead within a team environment
* Passion to make things better and resourceful, solutions-based approach to partnership
* Possess an understanding of core information security principles and associated risk management principles
* Have extensive experience with of process improvement, building, and strategic development
* Experience with cross-organizational collaboration and negotiation

Preferred Qualifications:

* Knowledge of Security Compliance frameworks (ISO27001, NIST, PCI DSS, SOX, CCPA)
* Experience implementation data security solutions in a large organization
* Meets/exceeds Amazon’s leadership principles requirements for this role
* Meets/exceeds Amazon’s functional/technical depth and complexity for this role
* Maturity, judgment, negotiation/influence skills, analytical skills, and leadership skills
* Familiarity with web services, multi-tiered systems, complex architectures, workflow and enterprise application integration

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.

Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $68,800/year in our lowest geographic market up to $120,400/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits. Applicants should apply via our internal or external career site.