Security Governance, Risk and Assurance Manager, Security Governance, Risk and Assurance Manager

JobsCloseBy Editorial Insights

Amazon Web Services is seeking an exceptional Security Governance, Risk and Assurance Manager to own physical, information and insider security risk management across AWS infrastructure and regions, implementing classification and handling guidelines and ensuring security practices scale across the supply chain. You’ll triage incidents, drive mitigations, and collaborate with Infrastructure, Networking and service teams to maintain accreditation and alignment with AWS standards and customer requirements. The role requires UK national and the ability to obtain and maintain UK Government Security Clearance. Basic qualifications include a bachelor’s degree in a relevant field and proven experience leading security programs across large organizations; preferred qualifications include leadership in large scale technology programs and strong cross functional influencing skills. To apply, demonstrate tangible risk reductions, governance framework implementations, and impact metrics, and show readiness for clearance.

---

Amazon Web Services (AWS) is the leading cloud provider, providing virtualized infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises, run their operations and applications on AWS’s multi-tenant infrastructure.

AWS is looking for an exceptional Security Governance, Risk and Assurance Manager to work in a team of technical and non-technical experts. This team manages the underlying security programs and processes for personnel security, insider risk, physical security system design and accreditations, education, awareness and training, information assurance, and program security. This position will have visibility at senior levels of government agencies, commercial institutions, and AWS senior leadership.

You will have the opportunity to work with Infrastructure, Networking, Security and AWS Service teams to build new AWS regions and sustain standards and accreditation of existing regions. You will collaborate with a large number of internal and external stakeholders. You will assess risks, anticipate issues, help overcome technical obstacles, make difficult trade-off decisions, and balance business needs and technical constraints.

Key job responsibilities
Successful candidates will have a strong background in security risk management and governance frameworks to protect information and physical assets. Candidates will be detail oriented, and have excellent problem-solving abilities. You should be passionate about delivering great customer experiences.

Key responsibilities will include:

• Identify and manage physical, information and insider security risks, continually reviewing mitigation strategies.
• Implement and maintaining frameworks to protect information and physical assets aligning with AWS standards and customer requirements. For example, Information Security and Insider Threat Protection Frameworks.
• Implement classification and handling guidelines, ensuring key stakeholders are aware of the roles and responsibilities in protecting AWS and customer information.
• Ensure security best practices are implemented and are able to scale to new demands.
• Triage and manage information security incidents, ensuring lessons learned are identified and used as preventative measures.
• Identify high risk information, assets and systems, ensuring security controls are in place and effective.
• Ensure security best practices are flowed down through the supply chain.
• Where relevant, develop specific policies and/or processes where needed.

About the team
About Amazon Security

Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.

Why Amazon Security?
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.

Inclusive Team Culture
AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.

Training & Career Growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.

Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve..

Key job responsibilities
As a Security Engineer, you’ll help to build and manage services that detect and automate the mitigation of cybersecurity threats across Amazon’s infrastructure. You’ll work with data scientists, software development engineers, and other security engineers across multiple teams to develop innovative security solutions. Our services protect the AWS cloud for all customers and preserves our customers’ trust in us. You’ll get to use the full power and breadth of AWS technologies to build services that proactively protect AWS customers, both internally and externally, from security threats.

You will be working in a team of industry-leading security experts working with UK customers to operate and continuously improve industry-leading security programs and processes. This team manages the underlying security programs and processes for personnel security, physical and logical accreditations, education, awareness and training, assurance, and cyber security.


About the team
You will need to be a UK national and able to obtain and maintain a UK Government Security Clearance. Further details found here: https://www.gov.uk/government/publications/united-kingdom-security-vetting-clearance-levels

Basic Qualifications

- Bachelor's degree in Auditing, Information Systems Management, Computer Science, Cyber Security, or other related fields
- Experience driving security programs across large diverse organizations
- Strong analytical and quantitative skills with the ability to use data and metrics to back up assumptions, recommendations and drive actions.

Preferred Qualifications

- Extensive experience of implementing large scale technology products/programs
- Leadership role in a team providing day-to-day support during the rollout/implementation of newer systems/processes
- The ability to thrive in a high-energy environment where strategic and tactical activities are expected to be driven in parallel. The ability to use both formal and informal influencing skills across cross-matrix organization. Excellent business judgment and a practical, common sense approach to getting things done.

Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice (https://www.amazon.jobs/en/privacy_page) to know more about how we collect, use and transfer the personal data of our candidates.

Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.

Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.