Senior Privacy Manager, Amazon.com Services LLC

Job summary
We are looking for a privacy-minded compliance and risk professional to drive our Privacy Governance, Risk, and Controls function to raise the Amazon privacy bar. We are looking for a person motivated to take on challenges with a technical compliance background to drive strategy and simplify Data Privacy Compliance at scale. In this role, you will be seen as an expert in designing controls to meet privacy and compliance standards. You will be a key liaison with legal, policy, risk management and product teams. You will have the ability to dive deep, understand, document, and communicate information systems and processes, and be able to drive innovative process changes through multiple organizations and teams.

This position will require a broad set of skills that will range from program management to deep analytical problem solving. You will be working directly with Amazon engineers, technical program managers, product managers, and other stakeholders to make sure that Amazon businesses are compliant with Privacy standards. The right person will demonstrate proven compliance or risk program management experience to manage numerous stakeholders and ambiguous processes; deliver cross-organizational risk and control frameworks, understand how to evaluate control effectiveness with technical depth; understand levels of potential risk and how to address them; provide consultation; be able to deliver multiple high priority projects at the same time; and have the ability to synthesize diverse data to identify patterns, draw conclusions, and prioritize remediation efforts, using risk management concepts.


Key job responsibilities
This position will be responsible for the following activities:

* Managing the Amazon-wide privacy control testing program, prioritizing audits or deep dives based on risk.
* Identifying key controls and working with control owners to implement ongoing monitoring.
* Performing independent and objective risk-based assessments of Amazon teams’ privacy activities and related controls with the goal of improving operations.
* Consulting with privacy compliance, global legal, policy, process, and system owners to ensure that sound protocols are in place to manage privacy obligations.
* Providing recommendations and consultation to improve our protocols and reduce risk, including control automation and recommendation of control enhancements/new controls.
* Sharing monitoring and testing results and recommendations through management reporting.
* Driving requirements to centralize privacy product and engineering teams to create and execute automated monitoring and testing solutions.



A day in the life
You will work closely with technical teams to document and understand their tools and processes to ensure an effectively operating privacy control environment at Amazon. You will work with Policy Teams, Product Teams, Engineering Teams, and Compliance Teams to implement and mature controls to drive automated data privacy compliance.

About the team
The CDO Privacy team within Amazon’s Information Security organization is responsible for delivering privacy solutions for protecting Amazon.com customer’s trust. We partner across Amazon’s Consumer and Digital business units to build environment where customer privacy is highest priority. You will help enhance awareness and deliver the Privacy strategy across Amazon’s retail experiences including but not limited to Amazon.com, Alexa, Prime Video, Kindle, and our subsidiaries (e.g. Audible, Zappos, Whole Foods).

Basic Qualifications

* Bachelor's degree in Business or Technology, or equivalent experience in technology companies.
* Experience with GDPR, CCPA, COPPA and other privacy regulations.
* 7+ years of experience in a privacy, legal, compliance or risk management role.
* 7+ years of program management experience, including change management, project management, stakeholder management, user training, and communications.
*Working knowledge of compliance methods, standards, processes, governance models, particularly as applied through industry standard Privacy compliance frameworks such as NIST, SOC2.
* Ability to exercise sound judgement, problem solve, and make decisions in complex situations.
* Ability to think both strategically and tactically in a high energy, fast paced environment.
* Proven ability to take ownership, self-motivate, and deliver results in ambiguous environments.
* Experience defining technical requirements and specifications, interpreting and applying policy, and adapting requirements to technical and business needs
* Strong understanding of modern data processing environments, service oriented architectures, cloud computing technologies and relevant security and privacy standards.
* Excellent written and verbal communication skills with the ability to present complex information in a clear and concise manner to executives.

Preferred Qualifications

* Graduate or Law Degree
* Security or Privacy industry certifications



Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.