Manager, Commercial Compliance, Security

Join to apply for the Manager, Commercial Compliance, Security role at Amazon

Description

As part of the Santos Supply Chain Security, Compliance, Privacy and Trust team, you will build bridges between security, technology, operations, and compliance by working directly with our Santos service teams, corporate security teams, third-party assessors and auditors, and internal stakeholders. You will join industry-leading security professionals and practitioners in supporting B2B customers to ensure that our systems are designed, operated, maintained, and protected in accordance with leading industry standards, including ISO 27001, SOC 2 Types 1 & 2, etc.

Key responsibilities

1. Manage and scale a team of commercial compliance specialists to achieve, maintain, and renew certifications.
2. Deep dive into the controls environment to develop technical understanding and articulate compliance implications to audit functions.
3. Set strategic direction, improve documentation, track progress, coordinate efforts, and monitor effectiveness.
4. Manage changes to the control environment and standards; prepare compliance assessment reports and guide control owners.
5. Develop knowledge of AWS and Amazon security solutions supporting compliance programs.
6. Monitor and improve the business by being a trusted advisor, developing frameworks, tools, and best practices.
7. Drive remediation and improvements, resolve audit findings, and execute projects from assessments.
8. Manage audit engagements, liaise with auditors, and articulate control implementation in cloud environments.
9. Apply knowledge of security and privacy regulations, ensuring alignment with Amazon controls.
10. Communicate compliance results effectively to technical and leadership audiences.

About The Team

Buy with Prime Supply Chain Security seeks a motivated IT Compliance Program Manager to lead our compliance team in achieving top certifications (ISO 27001, SOC 2, etc.), ensuring adherence to global security and privacy standards.

Basic Qualifications

• Bachelor's Degree in relevant fields.
• 7+ years in security or compliance consulting in cloud environments.
• Experience in technical audits/assessments supporting major frameworks.
• Experience communicating audit results and remediation plans.
• Solid technical background in cloud IT infrastructure and services.
• Understanding of IT controls and working with auditors/regulators.

Preferred Qualifications

• Certifications like CISA, CISSP, AWS Cloud Practitioner.
• Experience with GRC tools like ServiceNow.
• Experience working with service/engineering teams and AWS cloud services.
• Experience building certification roadmaps and managing IT programs.

Amazon is an equal opportunity employer. If you need workplace accommodations, please visit our site for support. Compensation varies by location, with a range from $118,100 to $252,700/year, plus benefits and potential additional compensation. Apply via our career site. Position remains open until filled.