Security Assurance Lead, HK, Security Assurance

Job summary
AWS is seeking a Security Assurance Lead who will own strategic engagements with regulators and regulated customers in Hong Kong. The position is based in Hong Kong, but will require regular travel. If you have a deep understanding and experience in leading the development of industry regulatory standards, translating complex industry and government regulatory requirements in Hong Kong and expectations on the use of technology services into operational solutions, and executing effective senior-level engagement to assist AWS customers in moving their sensitive, regulated workloads to the cloud, and you are passionate about building and sustaining trust with our customers, then this role is for you.

You will think big, having accountability for security assurance in Hong Kong, but you will sustain a bias for action and attention to detail that drives continuous rapid improvement. You will have a desire to learn and understand the complexities of legal, regulatory and compliance requirements across all sectors of your region. And you'll translate that understanding to teams in engineering, operations, audit, policy, legal and sales.

You'll recognise that success and value in security is measured by the pace of innovation, and the safe management of risk. You'll aspire to change the experience of assurance to be more valuable and frictionless for all of our customers.

You will be comfortable supporting engagement with regulator and customer auditors, architects, security officers, lawyers and policy-makers. You will be proficient in understanding the diverse needs of regulators and government assurance agencies. You'll put the customer first, working at the centre of an extended team of specialists, program managers and engineers who are together working to earn and sustain the trust of our customers.

You will have a good understanding of cloud technologies, experience in security assurance and demonstrated success in driving innovative strategies to overcome obstacles.

If you are ready to bring all your experience, energy and talent to transform how the assurance of resiliency in the cloud is experienced for our customers, then we'd like to hear from you.


Key job responsibilities
This position will be responsible for:
• Serve as regulatory expert to AWS, customers, auditors, and regulators on regional and domestic regulations on outsourcing, cybersecurity, and operational resilience in the industry in Hong Kong.

• Anticipate new or potential domestic and regional laws and regulations for potential impact to AWS and our customers and develop appropriate mitigation and implementation approaches in Hong Kong. Escalate and manage escalations as necessary.

• Develop and execute long-term regulatory projects and initiatives, which may have broad scope and complexity, for AWS and AWS customers.

• Create, optimize, and support cross-functional groups and projects.

• Develop thought leadership material on cloud and emerging technologies for regulators and internal customers.

• Manage tight deadlines and drive for results, while being extremely detail orientated

• Prepare project plans and track projects through fruition.

• Support metrics, implement data collections mechanisms, analyze data and make recommendations.

About the team
Inclusive Team Culture
Here at AWS, we embrace our differences. We are committed to furthering our culture of inclusion. We have ten employee-led affinity groups, reaching 40,000 employees in over 190 chapters globally. We have innovative benefit offerings, and host annual and ongoing learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences. Amazon’s culture of inclusion is reinforced within our 16 Leadership Principles, which remind team members to seek diverse perspectives, learn and be curious, and earn trust.

Basic Qualifications

The requirements listed below are representative of the knowledge, skill, and/or ability required:
• Bachelor's Degree in Computer Science, Information Systems Management, Cybersecurity, Technology Policy, or other related fields.
• At least 10 years of experience in regulatory compliance, banking or non-banking supervision and examination, regulatory affairs, or public sector agencies involved in cybersecurity management and/or operations.
• At 10 years of experience working directly with senior government officials, boards of directors, and executives on financial regulatory, technology, or related policy issues.
• At least 10 years of experience in work related to security assurance, such as cybersecurity, audit or security architecture
• Experience working on governance, risk and compliance programs that involve direct engagement with regulators
• Strong verbal and written communication skills
• Strong program design and management skills

Preferred Qualifications

• Experience working with or consulting on cloud migrations with a security risk assessment or architectural focus.
• Experience working with sensitive or classified systems of government.
• Demonstrated understanding of Hong Kong privacy, security and resilience requirements across regulated sectors of government, financial services and national critical infrastructure