Sr. Risk Specialist, AWS Commerce Platform, Risk, Audit, Accounting, and Compliance (RAAC)

Amazon Web Services (AWS) provides companies of all sizes with an infrastructure web services platform in the cloud (“cloud computing”). With AWS you can procure compute power, storage, and many other services – gaining access to a suite of elastic IT infrastructure services as your business demands them. AWS is the leading platform for designing and developing applications for the cloud and is growing rapidly with hundreds of thousands of companies in over 190 countries on the platform.

AWS Commerce Platform (CP) provides the back- and front-end services that enable AWS Service teams to sell to AWS customers, as well as allowing AWS customers to purchase AWS Services and to understand and manage their infrastructure costs. Because we sit at the nexus of all AWS Services and end-customers, we work closely across all AWS teams to ensure that we offer a great customer experience.

The Risk, Audit, Accounting, and Compliance (RAAC) team is seeking a Sr. Risk Specialist to support the Commerce Platform organization with government regulations, with a heavy focus on SOX and General Data Protection Regulation (GDPR).

The Senior Risk Specialist will be responsible for managing and ensuring GDPR and SOX compliance within a fast-paced, dynamic, and agile environment. This role requires a strategic, hands-on individual with a strong understanding of data privacy and financial compliance regulations, particularly in the context of a rapidly changing business environment. The Senior Risk Specialist will collaborate with cross-functional teams to implement effective risk management strategies, conduct compliance assessments, and ensure that the organization adheres to GDPR and SOX requirements across its operations.


Key job responsibilities
• Develop and maintain a library of relevant government regulations (e.g. GDPR, SOX) which impact AWS Commerce Platform frameworks and operations

• Develop and manage yearly launch forecasts and working backwards plans to ensure timely onboarding of necessary applications and controls.

• Partner with Accounting teams to create and maintain accurate Revenue Process Flowcharts for Commerce Platform organizations on a yearly basis.

• Support additional compliance initiatives, including Data Retention and regional-specific audits.

• Lead cross-functional projects related to compliance across the Commerce Platform organization

• Create operational mechanisms to address recurring escalation patterns and persistent challenges


A day in the life
A Sr. Risk Specialist in this role wears many hats, balancing both SOX financial controls and GDPR data protection requirements. The day involves constant communication across multiple departments—legal, IT, internal/external audit, and finance—to ensure the organization adheres to complex regulatory frameworks. There’s a lot of documentation and reporting involved, along with proactive monitoring of controls and risk mitigation efforts. The pace is fast due to the size and complexity of the billing organization, with frequent adjustments and changes required as new risks and compliance challenges arise.

About the team
Our team is dedicated, collaborative, and committed to ensuring the highest standards of compliance. We work hard to meet the complex challenges of SOX and GDPR, while fostering a supportive and inclusive environment. We believe in the power of connection—whether through cross-functional collaboration or regular team-building activities. We also prioritize work-life balance, understanding that a healthy, balanced team is the key to long-term success. Together, we strive for excellence while supporting each other both professionally and personally.