The ideal candidate is an experienced technology or security professional who can dive deep into a variety of complex architectures, identify risks and ensure DMAAC functions are designed and operating securely. As a Senior IT Auditor, you will lead the planning, scoping, execution, and reporting of audits based on identified risks. Assessment scope may include identity and access management, key management, data security/privacy, service monitoring, release management, and service availability.
In this position you will dive deep into the details of your audits to develop meaningful findings that help in communicating the risk to the business. Through your work and with high judgement and a strong sense of controllership, you will be a champion for positive change. You must be able to understand complex business processes and identify the full range of risks related to processes, regulatory compliance, organization, policy, and technology.
You should be comfortable interacting with technical software development engineers and business leaders, have a technical background and the ability to learn new technology concepts quickly. You should be able to translate technical risks into business issues. You should be able prioritize findings and recommendations and facilitate multiple stakeholders to agree on appropriate solutions and verify that risks are mitigated appropriately.
You must be comfortable performing as a sole contributor or teammate, and coaching and training less experienced auditors. You must be an excellent writer who can succinctly communicate complicated technical issues in business terms. You must be a strong project manager who can manage a team and conduct your own audits from beginning to end, often managing multiple projects at once.
The position is based out of Seattle or Washington D.C. metro area and may require up to 10 - 20% travel, including some international travel.
Join us and help us to continue to raise the operations and security bar for Amazon!
BASIC QUALIFICATIONS
- BA/BS degree in Management Information Systems, Computer Science, Computer Engineering, or related field.
- 4+ years of experience assessing complex system architecture, software development, IT Operations and Compliance, Information Security, and/or Technical Program Management.
PREFERRED QUALIFICATIONS
- Risk management experience (performing assessments, designing controls, managing enterprise control frameworks).
- Experience performing architecture design reviews, threat modeling, and security reviews of hardware and software.
- Experience collaborating on a team.
- Excellent written and verbal communication skills.
- Experience writing data queries or scripts, implementing technical solutions, or other related skills learned from IT related jobs.
- Relevant certifications (CPA, CIA, CISA) preferred.
- Familiarity with COSO, COBIT, ISO and ITIL frameworks.
- Broad technical or information security background.
- Big 4 accounting or consulting firm experience with technical or information security background.
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.
Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $66,800/year in our lowest geographic market up to $142,800/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits. This position will remain posted until filled. Applicants should apply via our internal or external career site.