Security Assurance Specialist, AWS in London

Amazon Web Services (AWS) is the leading cloud provider, providing virtualized infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises, run their operations and applications on Amazon’s multi-tenant infrastructure.

AWS Utility Computing (UC) provides product innovations — from foundational services such as Amazon’s Simple Storage Service (S3) and Amazon Elastic Compute Cloud (EC2), to consistently released new product innovations that continue to set AWS’s services and features apart in the industry. As a member of the UC organization, you’ll support the development and management of Compute, Database, Storage, Internet of Things (IoT), Platform, and Productivity Apps services in AWS, including support for customers who require specialized security solutions for their cloud services.

AWS is seeking a Security Assurance Analyst with a strong understanding and awareness of the role assurance can play in upholding the highest standards to our customers. The Security Assurance Analyst will be part of the team that provides oversight and governance to the services that connect AWS regions of differing security classifications. The successful candidates will be analytical problem solvers who take full ownership of complex challenges, possess a deep understanding of Security Risk Assessment (SRA), cloud native and development technologies, and are conversant with enterprise gateways and data transfer solutions.

Here at AWS, we embrace our differences. We are committed to furthering our culture of inclusion. We have ten employee-led affinity groups, reaching 40,000 employees in over 190 chapters globally. We have innovative benefit offerings, and we host annual and ongoing learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon conferences. Amazon’s culture of inclusion is reinforced within our 16 Leadership Principles, which remind team members to seek diverse perspectives, learn and be curious, and earn trust.

• Deliver on tight deadlines, drive results, insist on the highest standards and demonstrate exceptional attention to detail and accuracy.
• Develop and apply auditing processes for data flow control, including service assurance and audit frameworks.
• Gather evidence of key controls in AWS environments and communicate security control outcomes and measures to customers and service teams.
• Identify and report risks and improvement opportunities and investigate and correct non-conformance events.
• Collaborate with the global services teams to identify product improvement opportunities, explore innovative solutions and manage new feature requests.
• Participate in the on-call rotation.
• Contribute and review onboarding technical documentation in accordance with specific regional security requirements.
• Collaborate with internal service teams and customers to establish baselines, set security requirements, controls and objectives.

A day in the life: You will exercise sound judgement to achieve regional security and business objectives, demonstrating resilience and navigating difficult situations with composure and tact. Your day will involve analysing your own performance critically, maintaining a broad understanding of AWS business interconnections, and providing training, advice and mentorship to other AWS teams.

AWS values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.

Amazon Web Services (AWS) is the world’s most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating — that’s why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses.

AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.

We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.

We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.

• Experience in one or more of the following: application security frameworks, security code reviews, incident response, security infrastructure, penetration testing, mobile security, cloud security, AI security, identity and access controls.
• Experience in auditing, risk management, compliance, program management, or quality management systems.

• Bachelor's degree in computer science or equivalent, or experience in IT Security.
• Experience implementing security solutions at the business division level or equivalent.
• Experience leading and influencing your team or organization.
• Experience coordinating between technical teams, peers and business stakeholders.
• Experience with written and verbal communication and presentation.
• AWS certification, such as AWS Solutions Architect, or a similar cloud certification, or Associate's degree or above.
• Knowledge of AWS services including compute, storage, networking, security, databases, machine learning, and serverless technologies.