Security Technical Program Manager, Amazon Stores Security
Are you interested in driving exceptional security for customers? Do you see compliance as a business enabler? Amazon Stores Security organization is seeking an experienced Security Technical Program Manager (TPM). As part of the Amazon Stores Security Japan team, this role will build the bridges between security, technology and compliance by working across remote and local teams within Amazon Security organization, core security teams, and related Amazon corporate teams. This candidate should be a technically experienced and an innovative security/compliance professional who has the ability to dive deep into a variety of complex security issues, understand IT processes, and drive continuous process improvement to existing and emerging compliance standards.
The ideal candidate will have strong leadership and problem-solving skills, Japanese and English communication skill, and effectively work with cross-functional business and software development teams to solve problems and implement new solutions through innovative process changes.
Key job responsibilities
This position will be responsible for:
1. Establish credibility and maintain strong working relationships with groups involved with information security matters (Legal, Business Development, Internal Audit, Fraud, Networking, Application Security, Third Party Security, Systems, etc.)
2. Assist stakeholders and third-party partners with aligning standard operating procedures, controls, monitoring, and reporting with the goal of improving operations, compliance policies, and risk management
3. Support process improvement and control implementation projects in coordination with the service teams
4. Develop a working knowledge of the operational processes and controls in place that support the Amazon Information Security and Compliance teams, including commercial and regulatory compliance programs, and guiding control owners in documenting their control activities
5. Perform service impact assessments of existing and emerging compliance programs
6. Manage the readiness efforts of services for audit and/or certification
7. Innovation of mechanisms to better meet business processes and compliance requirements
A day in the life
Engage with Amazon Japan business, technical stakeholders and third-party partners to identify security needs, and maintain a broad understanding of the regulatory landscape impacting Amazon Japan. Work with a global cross-functional team of Security Engineers, Assessors, and technical program managers to deliver security reviews, and ensure compliance aligned with governmental standards and processes. Determine strategy for highly sensitive and/or high profile assessments. Maintain metrics on security and compliance, and prepare reports for senior management on the state of security in the region. Ensure the team delivers on security goals, and make recommendations for incremental process improvement.
About the team
About Amazon Security: At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services.
BASIC QUALIFICATIONS
- 4+ years of project management disciplines including scope, schedule, budget, quality, along with risk and critical path management experience
- Bachelors degree in engineering, computer science or equivalent.
- 4+ years of experience in security or compliance consulting or advisory work in support of a highly technical environment; in performing and/or participating in technical assessments of complex IT architecture; technical product or program management experience.
- Experience with Governance, Risk, and Compliance tools, Application Security and Third-Party Security. Skilled in security risk analysis and making complex business/risk trade-off recommendations and decisions. Experience managing programs across cross functional teams, building processes and coordinating release schedules.
- Fluency in both Japanese and English languages with sufficient writing skill
PREFERRED QUALIFICATIONS
- 6+ years of technical product or program management experience
- 6+ years of experience in performing technical security assessments and audits of network, operating systems, application security, and auditing IT processes. A record of delivery of large IT process improvement projects with technology processes and/or major tech companies
- 3+ years of experience in performing and/or participating in technical assessments in direct support of a major compliance effort (PCI, SOC, ISO and other compliance regimes); CISM or CISSP
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.
J-18808-Ljbffr