Security Compliance Specialist - Payment/Gift Card/Insurance, Amazon Stores Security InfoSec Japan
DESCRIPTION
Are you interested in driving exceptional security for customers? Do you see information security as a business enabler? Amazon Security organization is seeking an experienced Security Compliance Specialist. As part of the Amazon Stores Security InfoSec Japan team, this role will build the bridges between security, technology, and payment/gift card/Insurance compliance by working across remote and local teams within Amazon Security organization, Payment/Gift card/Insurance business teams, Legal, Finance risk compliance, and related Amazon corporate teams. This candidate should be an innovative security/compliance professional who can dive deep into a variety of complex issues, understand IT processes, and drive compliance assessment to existing and emerging Japan Payment/Gift card/Insurance information security standards.
The ideal candidate will have strong leadership and problem-solving skills, excellent communication skill, and effectively work with cross-functional Amazon teams to support service build-up, service launch and on-going service operation activities to meet Japan Payment/Gift card/Insurance information security standards.
Key job responsibilities
• Establish credibility and maintain strong working relationships with groups involved with information security matters (Legal, Amazon Japan Business Entities, Product Management, Security Assurance, Amazon Payment/Gift card/Insurance compliance, Application Security, Pentest, Third Party Security, etc.), supporting their security/compliance activities and documents
• Manage the readiness of Payment/Gift card/Insurance services and determine scope for related assessment activities. Perform written service assessments in both English and Japanese, and track corrective actions and re-test if necessary.
• Manage development of information security standards and policies to manage sensitive data in a secure way
• Support risk management framework by working with various internal teams periodically and advise the management of the entity to remediate non-compliance.
• Assist Amazon Japan employees via requested tickets aligning with standard operating procedures, controls, monitoring, and reporting with the goal of improving operations, compliance policies, and risk management
• Support internal information security training development as well as managing engagement of Amazon Japan employees/officers taking external trainings required by regulators if any
A day in the life
• Engage with Amazon Japan regional business and technical stakeholders to identify security needs, and maintain a good understanding of the Japan Payment/Gift card/Insurance regulatory landscape impacting business
• Determine strategy for highly sensitive and/or high profile security assessments
• Serve as information security main contact to work with Public Policy to engage with Japan Payment/Gift card/Insurance regulators for Information Security and Compliance related activities
• Maintain metrics on security and compliance, and prepare reports for senior management on the state of security in Japan
About the team
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services.
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.
Why Amazon Security
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.
Inclusive Team Culture
In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.
Mentorship and Career growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.
BASIC QUALIFICATIONS
• Bachelor or Master degree in Computer Science, Engineering, Information Systems Management, Information Security or other related fields.
• 4+ years in performing and/or participating in technical assessments of complex IT architecture; 4+ years in payment/gift card security or compliance consulting or advisory work in support of a highly technical environment
• 4+ years in project/program management, developing and maintaining stakeholder relationships across large organizations
• Experience with Governance, Risk, and Compliance tools and technology
• Experience in working directly with auditors/regulators in support of compliance audits for ISO, PCI-DSS and other compliance regimes
PREFERRED QUALIFICATIONS
• 6+ years as a technical program manager in security/software/web development organizations
• 6+ years in performing and/or participating in technical assessments in direct support of a major compliance effort (PCI, SOC, ISO and other compliance regimes); in performing technical security assessments and audits of network, operating systems, application security, and auditing IT processes
• A record of delivery of large IT process improvement projects with technology processes and/or major tech companies; Strong bias for action with ability to prioritize, multi-task, and meet deadlines
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.