IT Compliance Specialist, Multi-Channel Fulfillment

IT Compliance Specialist, Multi-Channel Fulfillment

07 Nov 2024
Washington, Seattle-tacoma, 98101 Seattle-tacoma USA

IT Compliance Specialist, Multi-Channel Fulfillment

DescriptionDo you have experience obtaining and maintaining commercial IT compliance certifications for your organization? Have you worked for a third-party auditor performing IT audits and assessments? Do you see regulatory compliance as a business enabler? Buy with Prime and Multi-Channel Fulfillment (MCF) are looking for a highly motivated Compliance Specialist to join our Security, Compliance, Privacy, & Trust (SCPT) team to support commercial compliance self-assessments, coordinate remediation efforts with service teams, and manage third-party assessment organizations assessments for commercial accreditations (e.g. ISO 27001, SOC 2). You will join industry-leading security professionals to ensure that our services are in compliance with global security and privacy requirements.Key job responsibilities Dive deep into product control environments to develop a technical understanding of control implementation and articulate compliance implications to internal and external audit functions. Improve documentation, coordinate improvement efforts, and monitor control effectiveness. Use organizational mechanisms for managing changes to the control environment and external industry standards requirements; document organizational control activities and confirm readiness of controls for audit. Develop broad domain and technical knowledge in AWS and Amazon corporate security solutions that support information security control effectiveness. Communicate and drive remediation and continuous improvements to the security organization, the program management process and control implementation projects in coordination with the service teams. This includes resolution of audit findings and the execution of projects originated from internal assessments. Collect evidence in support of audit engagements and the relationship with the ISO/SOC2 auditors and Amazon service teams, articulate control implementation and impact, and establish considerations for applying security, privacy, and compliance concepts to a technical cloud environment. Apply a working knowledge of commercial information security and privacy regulation and policy to articulate customer and control impact and drive alignment to controls.A day in the lifeAs part of the SCPT team, you will build bridges between security, technology, operations, and compliance by working directly with our in-scope service teams, infrastructure teams, corporate security teams, and third-party assessors.About the teamHere at Amazon, we embrace our differences. We are committed to furthering our culture of inclusion. We have ten employee-led affinity groups, reaching 40,000 employees in over 190 chapters globally. We have innovative benefit offerings, and we host annual and ongoing learning experiences, including our Conversations on Race and Ethnicity (CORE) and Amazon (gender diversity) conferences. Amazon’s culture of inclusion is reinforced within our 16 Leadership Principles, which remind team members to seek diverse perspectives, learn and be curious, and earn trust.Basic Qualifications 5+ years of experience in security or commercial compliance work in support of highly technical, complex cloud services environment(s) or experience as an IT auditor in direct support of ISO and SOC examinations (focus on ISO 27001, ISO 9001, and SOC 2) Bachelor's Degree in Information Systems Management, Computer Science, Informatics, or other related fields. Certified Information Systems Auditor (CISA) or Certified Information Systems Manager (CISM) Experience communicating audit/assessment results and corrective action (i.e. remediation) plans to partners, and prioritizing and remediating findings with service/system owner. Solid technical background with experience in cloud technologies, cloud deployment models (IaaS/PaaS/SaaS), and familiarity with AWS core services (Lambda, ECS, EC2, S3, DDB, KMS, etc.) Experience working with auditors/regulators for these types of assessments. Strong organization, writing, and communication skillsPreferred Qualifications Certified Information Systems Security Professional (CISSP), ISO 27001 Lead Auditor, ISO 27001 Lead Implementer, Certified Cloud Practitioner, or equivalent certifications Experience scoping and leading organizational risk assessments and documenting risk treatment plans Experience in privacy compliance consulting, control audits, or advisory work Experience engaging software development teams, who are building cloud products or services, defining technical security specifications to meet control requirements, and monitoring the team’s progress from development to release. Experience building certification roadmaps based on customer requirements, compliance documentation, and ensuring that committed assessments are delivered on schedule. Knowledge and proficiency with Project Management tools, like Asana and ServiceNow.Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $91,800/year in our lowest geographic market up to $196,300/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits. This position will remain posted until filled. Applicants should apply via our internal or external career site.

Related jobs

  • Career Opportunities: Compliance Specialist (24592) Requisition ID 24592 - Posted 11/04/2024 - CareOregon - Full Time - Permanent - Portland - Multi Location (3) Job Description Print Preview Job Title Compliance Specialist Requisition # 24592 Exemption Status Exempt Management Level n/a Direct Reports n/a Manager Title Compliance Manager Department Audit and Compliance Pay and Benefits Estimated hiring range $64,130 - $78,390, 5% bonus target, full benefits. www.careoregon.org/about-us/careers/benefits Posting Notes This is a fully remote role open to Oregon and SW Washington candidates. This role will require you to occasionally go into the Downtown Portland office. Job Summary The Compliance Specialist is responsible for supporting the administration of compliance processes within CareOregon. Core work includes identifying effective measures to detect, correct and prevent compliance issues. This includes compliance issues related to federal and state rules and regulations, as well as contractual agreements. Additionally, this position helps ensure that appropriate procedures are in place and followed consistently to safeguard organizational assets, verify the accuracy and reliability of data, and promote efficient and effective operations. Essential Responsibilities Monitor and maintain processes for receiving, documenting, tracking, investigating, and acting on simple to moderately complex reports concerning non-compliance concerns. Perform all aspects of less complex compliance reviews to evaluate compliance with federal and state laws and regulations as well as other contractual agreements for all lines of business. May assist or partner with the Sr Compliance Specialist on more complex or larger compliance reviews. Observe operational areas that may need improvement or require more immediate attention; share observations and ideas with the Compliance Manager. In partnership with the Sr Compliance Specialist, develop and maintain an organized system for documenting compliance records and activities (e.g., communications, administration, etc.) Assist in preparing, prooing, tracking and distributing a variety of documents with the care and discretion appropriate for protected health information (PHI) and confidential information. Assist operational areas in developing contracts and procedures to ensure compliance with applicable rules, regulations and requirements. Educate and coach staff about compliance requirements and promote high standards. Participate in the implementation of the annual, company-wide compliance training program and the creation of effective educational tools. Facilitate and coordinate small to medium-size audit projects through the entire process from submission to corrective action and resolution. Facilitate and coordinate a variety of audits involving multiple individuals and teams (e.g. external auditors, internal stakeholders, government audits, on-site audits, etc.) Prepare reports of audit results for review by manager. Serve as an internal resource and point of contact for compliance related questions and feedback. Organizational Responsibilities Perform work in alignment with the organization\'s mission, vision and values. Support the organization\'s commitment to equity, diversity and inclusion by fostering a culture of open mindedness, cultural awareness, compassion and respect for all individuals. Strive to meet annual business goals in support of the organization\'s strategic goals. Adhere to the organization\'s policies, procedures and other

  • Job Summary:

  • Description

  • Description

  • Description

  • Description

  • Description

Job Details

Jocancy Online Job Portal by jobSearchi.