Security Compliance Specialist, Leo External Security Assurance

Security Compliance Specialist, Leo External Security Assurance Job ID: ******* | Amazon.com Services LLCWe are hiring candidates to work out of one of the following locations: Arlington, VA, USA | Redmond, WA, USA.Amazon Leo (previously known as Project Kuiper) is an initiative to increase global broadband access through a constellation of over 3,000 Low Earth Orbit (LEO) satellites.Its mission is to bring fast, affordable broadband to unserved and underserved communities worldwide.At Leo, we are obsessed with customer trust and are seeking an individual contributor who is creative, passionate about delivering Governance, Risk and Compliance solutions, and is ready to work collaboratively with various business and security teams across Amazon.Key ResponsibilitiesDesign and drive scalable processes within a GRC framework to ensure compliance with Leo's regulatory and contractual security and privacy requirements.Build and maintain compliance certifications such as ISO *****, ISO *****, NIST ******, ISO*****, SOC 2, GDPR, CCPA, etc.; identify applicable security controls, assess compliance gaps and readiness, develop remediation strategies, and drive remediation activities to completion.Drive certifications and assurance programs by liaising with external auditors and other Amazon security teams, articulating control implementation and impact, and establishing considerations for applying security and risk concepts to a highly technical and complex environment.Communicate to key stakeholders and leadership on controls implementation, audit results, compliance program metrics, key risks and areas of program improvement, as well as seek diverse opinions and coordinate improvement efforts.Work closely with engineering, compliance, security, bizdev and Legal teams to identify future compliance and regulatory requirements and define compliance solutions.Serve as an advisor on audit remediation issues.Understand and manage cross-functional GRC requirements to translate them into GRC tool and drive day-to-day problem solving and implement effective action plans to meet short- and long-term priorities.Key QualificationsBachelor's degree or equivalent.4+ years of compliance program management, legal, governance, audit, risk/loss prevention, or equivalent experience.Experience leveraging and improving internal tools for GRC processes.Knowledge of compliance and security standards across the enterprise IT landscape.Experience building strategic relationships with stakeholders, communicating and collaborating across teams and functions.Preferred: CISSP, CISA, CISM or other security certification.Preferred: Experience with Data Modeling (BMIDE), workflows, stylesheets, access control, ITAR/EAR requirements, change management, and CAD integrations with NX.Compensation & BenefitsBase salary range: $102,****** – $178,****** annually (Redmond, WA, USA).Your Amazon package will include sign-on payments and restricted stock units (RSUs).Final compensation will be determined based on factors including experience, qualifications, and location.Amazon also offers comprehensive benefits including health insurance, 401(k) matching, paid time off, and parental leave.Learn more about our benefits at .Equal Opportunity EmployerAmazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information.#J-*****-Ljbffr