APAC IT Security Audit Specialist, Global AWS Assurance, Security Assurance

Key Qualifications:

• 5 years of professional experience in technology and security audit and assurance activities and security implementations within regulated industries or a provider of services to regulated industries.
• 5 years of experience building and managing teams of technical, audit, assurance and regulatory specialists, with remote management experience.
• Relevant experience working directly with customers' senior management, regulators and executives on financial regulatory, technology, or related policy issues.
• Bachelors or advanced degree in related area of study (Computer Science, Engineering, Cyber Security, IT Audit, Technology Risk Management, IT Security Management).
• Experience delivering programs such as PCI DSS, SOC 1/2/3, ISO 27001/27017/27018/22301/20000, TIA-942, FedRAMP, HIPAA, IRAP, FISC, OSPAR, K-ISMS, MTCS, or C5 etc.

Do you have a passion for applying cutting edge technologies to automate traditionally manual processes? Do you have experience in finding innovative solutions to scale security controls across diverse teams and technologies? Do you have ideas about influencing the future of security assurance?

At Amazon Web Services (AWS), Security is our highest priority. The AWS Security Assurance team is responsible for demonstrating the security controls of services offered by AWS. Our team works closely with customers across industries and their auditors and regulatory agencies to understand the security shift from on-premise to the cloud, security of the cloud and customer capabilities in the cloud. We are looking for an independent, passionate, and deeply experienced security audit specialist with expertise and experience in developing and implementing technology audit and assurance programs across Asia-Pacific.

This role is responsible for AWS' flagship audit, attestations and certifications. It also requires the ability to develop long-term projects and define processes and methods to ensure seamless execution across multiple internal and external stakeholders, including customers, auditors and regulatory agencies across Asia-Pacific.

Key Job Responsibilities:

• Dive deep into customers' audit and assurance expectations across all industry sectors in Asia-Pacific region.
• Dive deep into the Amazon control environment to develop broad domain and technical understanding of our security activities and control implementations to articulate compliance implications to both customers and internal/external audit functions.
• Develop understanding of regulated industry compliance requirements and communicate how our control activities meet global regulatory obligations.
• Develop strategic direction for security audit and assurance activities in APAC market.
• Liaise with strategic customers, regulators and auditors, articulate control implementation, and describe considerations for applying security and compliance concepts to a cloud environment.
• Monitor, evaluate, and continuously improve the organization by being a trusted adviser, facilitator and creative problem solver.
• Apply a sound knowledge of global information security regulation and policy to articulate customer and regulatory impact and drive alignment to AWS environment.

About the Team: Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.

Why Amazon Security: At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services.

Work/Life Balance: We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture.

Inclusive Team Culture: In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness.

Mentorship and Career Growth: We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.

Additional Qualifications:

• Strong verbal and written communications skills, as well as the ability to work effectively across internal and external organizations.
• Demonstrated ability to effectively and comfortably interact at senior and executive levels.
• Self-starter with proven track record of successfully working with a wide array of functional groups across an organization and cultures as well as working independently.
• Experience auditing cloud environments.
• Strong analytical and critical thinking skills with the ability to use data to back up assumptions, recommendations and drive actions.

Our inclusive culture empowers Amazonians to deliver the best results for our customers.