At a Glance
- Tasks: Drive security compliance and risk management for Amazon's payment services.
- Company: Join Amazon, a leader in innovation and technology.
- Benefits: Competitive salary, diverse work culture, and opportunities for growth.
- Why this job: Make a real impact on customer trust and security in payments.
- Qualifications: Experience in security compliance and strong analytical skills required.
- Other info: Be part of a dynamic team with global influence and career advancement.
The predicted salary is between 36000 - 60000 ÂŁ per year.
In compliance with regulatory requirements, and in alignment with business teams, the Payments Security Compliance (PSC) team supports Amazon payments entities in select regions. Security Compliance Specialists have varying scope of responsibility in each region, depending on the nature of regulatory licenses to be maintained, number of regulators, the number of systems and teams in scope, and the degree of stringency the local regime places on Security and Data protection.
We are seeking an experienced, self-motivated Senior Security Compliance Specialist with a strong Security and Compliance background. This candidate will be an innovative and forward-thinking individual who possesses in-depth knowledge and will be identifying Information Security compliance risks, driving Security Governance, Security Assurance and Risk Management efforts, managing regional regulatory compliance and contributing to emerging regulations and technology standards globally, partnering with Security Experts of Global Amazon Information Security teams. Your work directly impacts Customer’s Trust in Amazon by providing secure, robust, and reliable payment services.
Key responsibilities:- Positively impact how Amazon builds, consumes and operates software securely and in compliance with standards and regulations.
- Contribute on emerging regulations and technology standards joining forces with AWS, Public Policy team and others, making Amazon Consumer org’s voice heard in the relevant forums.
- Communicate clearly and effectively to executive management on the plans, status and critical issues.
- Escalate urgent issues appropriately and drive them to closure in a timely manner.
- Oversight on remediation programs impacting regulated region(s) being supported.
- Be recognized as a thought leader in Regulatory Security Compliance and Security best practices/standards.
- Represent Security posture of regulated entities in external regulatory audits.
- Review Implementation of Security best practices and standards, drive continuous improvements.
- Influence Security Control Assessment Automation efforts for security and compliance at scale.
- Skilled in security risk analysis and making complex business/risk trade-off recommendations and decisions.
- Maintain C-level relationships with peers, stakeholders, boardrooms, and/or customers, often becoming the “trusted advisor”. Also, create and maintain a trusted relationship with regulators and industry forums.
The objective of Payments Security Compliance (PSC) is to oversee & manage Information Security Governance, Risk and Compliance (IS-GRC) for the Payments entities globally as part of Amazon’s WW Privacy team. The tenets for Payments Security Compliance team are:
- We provide timely and accurate security, compliance, and risk data to the business to make decisions.
- We escalate appropriately to ensure that security and compliance issues are resolved promptly and with high judgment.
- We are business-risk driven in security and compliance decisions.
- We make it easy to be compliant.
- We interpret unclear external regulations, industry standards or Amazon policies in favor of our businesses protecting customer trust.
- We always favor automated policy enforcement over manual/best intentions policy enforcement.
- We are slow and deliberate when adding new policies, quick to fix policy issues and quick to eliminate irrelevant policies.
- Bachelor's degree or equivalent in Information Security, Computer Science, Risk Management, Engineering, Math, Statistics, or a related discipline, or equivalent technology experience.
- Experience performing and/or participating in technical assessments in direct support of a major compliance effort (e.g. ISO 27001, ISO 22301, ISO 27701, ISO 9001, PCI, SOC1/SOC 2, HITRUST).
- Experience in services oriented architecture (SOA) hosted on cloud native infrastructure.
- Excellent communication, work prioritization and analytical skills.
- Result oriented, high energy, self-motivated.
- Strong skills in security principles such as least privilege access, defense in depth, preventative vs detective controls.
- Have a record of delivery of large scale security programs and/or technology solutions for major tech companies.
- Cloud security knowledge preferred.
- Work ethic based on a strong desire to exceed expectations.
- Experience working successfully in a very fast-paced, results-oriented environment.
- Knowledge of technology and payment industry trends.
- Senior-level written and verbal communication skills.
- Ability to communicate effectively with both technical and non-technical stakeholders across multiple business units.
Senior Security Compliance Specialist, Payments Security Compliance employer: Amazon
Contact Detail:
Amazon Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Security Compliance Specialist, Payments Security Compliance
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend relevant events, and connect with current Amazon employees on LinkedIn. A personal connection can often get your foot in the door.
✨Tip Number 2
Prepare for those interviews! Research common questions for Security Compliance roles and practice your responses. Be ready to showcase your knowledge of regulations and security best practices.
✨Tip Number 3
Show off your passion! During interviews, share your thoughts on emerging regulations and how they impact the industry. This will demonstrate your forward-thinking mindset and commitment to the field.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re serious about joining the Amazon team.
We think you need these skills to ace Senior Security Compliance Specialist, Payments Security Compliance
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Senior Security Compliance Specialist role. Highlight your relevant experience in security compliance, risk management, and any specific regulations you've worked with. We want to see how your background aligns with what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about security compliance and how your skills can contribute to our team. Be sure to mention any innovative ideas you have that could help us improve our processes.
Showcase Your Communication Skills: Since this role involves communicating with various stakeholders, make sure to demonstrate your written communication skills. Use clear and concise language in your application materials, and don’t shy away from showcasing your ability to explain complex concepts simply.
Apply Through Our Website: We encourage you to apply through our website for the best chance of getting noticed. It’s the easiest way for us to track your application and ensure it reaches the right people. Plus, it shows you’re serious about joining our team!
How to prepare for a job interview at Amazon
✨Know Your Compliance Standards
Make sure you brush up on key compliance standards like ISO 27001, PCI, and SOC reports. Being able to discuss these in detail will show that you’re not just familiar with them but can also apply them in real-world scenarios.
✨Showcase Your Risk Management Skills
Prepare examples of how you've identified and mitigated security risks in previous roles. Use the STAR method (Situation, Task, Action, Result) to structure your answers, making it easy for interviewers to see your thought process.
✨Communicate Clearly and Confidently
Since you'll be dealing with both technical and non-technical stakeholders, practice explaining complex security concepts in simple terms. This will demonstrate your ability to bridge the gap between different teams and ensure everyone is on the same page.
✨Stay Updated on Industry Trends
Familiarise yourself with the latest trends in payment security and compliance. Being able to discuss emerging regulations or technologies will position you as a forward-thinking candidate who’s ready to contribute to Amazon's mission.