Principal, Audit Services, Security Assurance

  Regulatory Affairs

Job title: Principal, Audit Services, Security Assurance

Company: Amazon

Job description: Job Description : Job summary Do you have a passion for applying cutting edge technologies to automate traditionally manual processes? Do you have experience in finding innovative solutions to scale security controls across diverse teams and technolo

Job Description : Job summary Do you have a passion for applying cutting edge technologies to automate traditionally manual processes? Do you have experience in finding innovative solutions to scale security controls across diverse teams and technologies? Do you have ideas about influencing the future of security assurance? At Amazon Web Services (AWS), we obsess over our customers delivering results for our customers is what we do. We are looking for an independent, passionate, and deeply experienced audit and assurance professional with expertise and experience in translating complex industry and government regulatory requirements in India and executing effective senior-level engagement to assist AWS customers in moving their sensitive, regulated workloads to the cloud. At our scale, we are committed to inventing new ways to provide the highest level of assurance to our most regulatory conscious customers. You have a strong foundation in audit principles, as well as a diverse technology, privacy and assurance background. You have delivered challenging and complex audit and assurance programs. As part of the team, you will work with customers and regulators to demonstrate AWS’ security controls applicable to local requirements. You will join our team in helping customers understand how our infrastructure is designed, operated, maintained, and protected in accordance with global regulated industry standards. You will inspire and transform our audit and compliance programs through innovative process engineering across multiple organizations and teams, engaging technical and non-technical stakeholders throughout the company. Your combination of technical and audit background will help bridge security, technology, and compliance, and facilitate the scale of the program. This role requires the ability to develop long-term projects and define processes and methods to ensure execution and productivity across multiple internal and external stakeholders, including customers, auditors and regulatory agencies in India. In this role, you will be responsible for the following activities: * Dive deep into the Amazon control environment to develop broad domain and technical understanding of our security activities and control implementations to articulate compliance implications to both customers and internal/external audit functions. * Develop understanding of regulated industry compliance requirements and communicate how our control activities meet global regulatory obligations. * Liaise with customers, regulators and auditors, articulate control implementation, and describe considerations for applying security and compliance concepts to monitor, evaluate, and continuously improve the organization by being a trusted advisor, facilitator and creative problem solver. * Implement continuous improvements to the security organization and the program management process. Share program/project process frameworks, tools, and best practices that can be adopted throughout the organization. * Apply a working knowledge of global information security regulation and policy to articulate customer and control impact and drive alignment to AWS controls. Basic Qualifications : * 10+ years relevant experience in regulatory compliance, for regulated industries, such as banking or non-banking supervision and examination, regulatory affairs, or public sector agencies involved in cybersecurity audit management and/or operations. * Relevant experience working directly with senior government officials, boards of directors, and executives on financial regulatory, technology, or related policy issues. * Advanced degree in related area of study (Computer Science, Engineering, Cyber Security, IT Security Management). * Ability to investigate and analyze technical and regulatory issues with applicability to AWS services (e.g. MeitY empanelment requirements, TIA-942, and ISO 20000) * Familiarity with cloud computing, technology risks, security and outsourcing. * Relevant experience in regulatory compliance, for regulated industries, such as banking or non-banking supervision and examination, regulatory affairs, or public sector agencies involved in cybersecurity management and/or operations. Preferred Qualifications : . Highly effective oral, written and interpersonal communication skills demonstrated ability to effectively and comfortably interact at senior and executive levels. * Demonstrated ability to effectively and comfortably interact at senior and executive levels. Experience and proficiency in public speaking . Self-starter with proven track record of successfully working with a wide array of functional groups across an organization and cultures as well as working independently. . Strong analytical and critical thinking skills with the ability to use data to back up assumptions, recommendations and drive actions. . Ability to investigate and analyze technical and regulatory issues with applicability to AWS services. . Domestic travel may be required 30%-50%. * Experience auditing cloud environments * A record of delivery of IT process improvement projects with technology processes and/or major tech companies * A detailed understanding of evaluating the design and effectiveness of IT controls and experience working with auditors/regulators for these types of assessments * 1 or more industry-recognized security, cloud, or audit professional certifications (e.g., CISA, CISM, CISSP, CCSP, AWS Cloud Security Practitioner

Expected salary:

Location: Gurgaon, Haryana

Job date: Sat, 29 Jan 2022 23:36:39 GMT

Apply for the job now!