Security Assurance Analyst, AWS
London, England, GBR
Amazon.com
Free shipping on millions of items. Get the best of Shopping and Entertainment with Prime. Enjoy low prices and great deals on the largest selection of everyday essentials and other products, including fashion, home, beauty, electronics, Alexa...
The AWS Cross Domain Services Operations team is seeking a Security Assurance Analyst with a strong understanding and awareness of the role assurance can play in delivering excellent services to our customers.
The Security Assurance Analyst will be part of the team that provides governance and controls to the the services that connect AWS regions of differing security classifications. This position will work as part of an assurance function, leading on day to day operational assurance activities, ensuring compliance with standards, processes and customer requirements.
At AWS we are obsessed with earning and maintaining customer trust. AWS is delivering exciting and complex distributed systems, and the AWS Cross Domain Services team is essential to how these are operated and secured. We need talented adaptable Security Assurance Analysts to help us implement and operate these complex systems. The role holder will have to demonstrate their knowledge and understanding of information security, as well as undertaking of a wide range of internal security audits.
Key job responsibilities
• Establish monitoring and auditing to facilitate the analysis of the processes in place for data flow control
• Fulfil requests around evidence to illustrate the key controls that exist across the environment
• Ensure control frameworks and compliance risks are recorded and managed
• Analyse processes to determine compliance to the design specification (source to target) and expected/anticipated behaviours
• Participate in the creation and management of the internal controls, policies, and procedures
• Promote Information Security policy, procedures and practice, also act as an SME to ensure appropriate cyber security measures are incorporated.
• Develop and implement the data assurance and governance strategies to ensure data quality and compliance, and drive the adoption of these strategies into the business processes
• Communicate to key stakeholders the operational processes around AWS security practices and how controls are implemented across the environment
• Communicate to leadership key risks and areas of process improvement, as well as seek diverse opinions and coordinate improvement efforts
• Field and address requests in collaboration with internal and external stakeholders
• Report, investigate and resolve non-compliance issues
• As part of this opportunity the role holder will be eligible for great training opportunities and certification.
• Have experience in performing technical assessments of network, operating systems, application security, as well as auditing IT processes, including working knowledge of key controls across a number of industry best practices
• Proven analytical and quantitative skills, and an ability to use data and metrics to back up assumptions, develop business cases, and complete root cause analyses
• Experience in security, audits, customer trust, control assessments, or risk assessments
• Demonstrate high judgement and risk decision making abilities
• Strong critical thinking, verbal and written communication skills, and attention to detail
• Good presentation skills, including an ability to effectively communicate with both business and technical teams
• Working knowledge of data analysis technologies
• Ability to work successfully in a team environment and build effective working relationships inside and outside of the group.
• Experience assessing complex technical processes.
• Highly organised
• Familiarity with web services, multi-tiered systems, workflow modelling and enterprise application integration
• Knowledge of a variety of security programs in multiple fields (personnel security, program security, physical security, and education, awareness, and training)
Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice (https://www.amazon.jobs/en/privacy_page) to know more about how we collect, use and transfer the personal data of our candidates.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need an adjustment during the application and hiring process, including support for the interview or onboarding process, please contact the Applicant-Candidate Accommodation Team (ACAT), Monday through Friday from 7:00 am GMT - 4:00 pm GMT. If calling directly from the United Kingdom, please dial +44 800 086 9884 (tel:+448000869884). If calling from Ireland, please dial +353 1800 851 489 (tel:+3531800851489).
The Security Assurance Analyst will be part of the team that provides governance and controls to the the services that connect AWS regions of differing security classifications. This position will work as part of an assurance function, leading on day to day operational assurance activities, ensuring compliance with standards, processes and customer requirements.
At AWS we are obsessed with earning and maintaining customer trust. AWS is delivering exciting and complex distributed systems, and the AWS Cross Domain Services team is essential to how these are operated and secured. We need talented adaptable Security Assurance Analysts to help us implement and operate these complex systems. The role holder will have to demonstrate their knowledge and understanding of information security, as well as undertaking of a wide range of internal security audits.
Key job responsibilities
• Establish monitoring and auditing to facilitate the analysis of the processes in place for data flow control
• Fulfil requests around evidence to illustrate the key controls that exist across the environment
• Ensure control frameworks and compliance risks are recorded and managed
• Analyse processes to determine compliance to the design specification (source to target) and expected/anticipated behaviours
• Participate in the creation and management of the internal controls, policies, and procedures
• Promote Information Security policy, procedures and practice, also act as an SME to ensure appropriate cyber security measures are incorporated.
• Develop and implement the data assurance and governance strategies to ensure data quality and compliance, and drive the adoption of these strategies into the business processes
• Communicate to key stakeholders the operational processes around AWS security practices and how controls are implemented across the environment
• Communicate to leadership key risks and areas of process improvement, as well as seek diverse opinions and coordinate improvement efforts
• Field and address requests in collaboration with internal and external stakeholders
• Report, investigate and resolve non-compliance issues
• As part of this opportunity the role holder will be eligible for great training opportunities and certification.
Basic Qualifications
• Have experience in performing technical assessments of network, operating systems, application security, as well as auditing IT processes, including working knowledge of key controls across a number of industry best practices
• Proven analytical and quantitative skills, and an ability to use data and metrics to back up assumptions, develop business cases, and complete root cause analyses
• Experience in security, audits, customer trust, control assessments, or risk assessments
• Demonstrate high judgement and risk decision making abilities
Preferred Qualifications
• Involvement in the delivery of projects and programs across multiple teams• Strong critical thinking, verbal and written communication skills, and attention to detail
• Good presentation skills, including an ability to effectively communicate with both business and technical teams
• Working knowledge of data analysis technologies
• Ability to work successfully in a team environment and build effective working relationships inside and outside of the group.
• Experience assessing complex technical processes.
• Highly organised
• Familiarity with web services, multi-tiered systems, workflow modelling and enterprise application integration
• Knowledge of a variety of security programs in multiple fields (personnel security, program security, physical security, and education, awareness, and training)
Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice (https://www.amazon.jobs/en/privacy_page) to know more about how we collect, use and transfer the personal data of our candidates.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need an adjustment during the application and hiring process, including support for the interview or onboarding process, please contact the Applicant-Candidate Accommodation Team (ACAT), Monday through Friday from 7:00 am GMT - 4:00 pm GMT. If calling directly from the United Kingdom, please dial +44 800 086 9884 (tel:+448000869884). If calling from Ireland, please dial +353 1800 851 489 (tel:+3531800851489).
Tags: Application security Audits AWS Compliance Governance Monitoring Privacy Risk assessment
Region:
Europe
Country:
United Kingdom
Job stats:
18
0
0
Categories:
Analyst Jobs
CloudSec Jobs
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open IAM-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs
- Open Kubernetes-related jobs