399 Security Industry jobs in the United States

Description
Employer: Amazon.com Services LLC
Position: Security Industry Spclst III (multiple positions available)
Location: Austin, TX
Multiple Positions Available:
1. Identify, design, develop, implement and execute new and existing processes, policies, goals, and solutions to reduce potential risks.
2. Create schedules, identify and communicate risks to stakeholders, define risk mitigation strategies, and facilitate appropriate engineering solutions.
3. Develop system requirements to streamline and simplify tools used to manage and enhance operational productivity, accuracy, and effectiveness for customers.
4. Evaluate effectiveness of current or future systems.
5. Collaborate with other departments to integrate with business systems and processes.
6. Maintain metrics, reports, and process documentation to monitor and analyze delivery performance and key controls.
7. Manage cross-functional teams and/or third party-vendors for implementation of project/program requirements.
Basic Qualifications
A Master's degree or foreign equivalent degree in Computer Science, Cybersecurity, Engineering, Information Systems, or a related discipline and three (3) year of experience in the job offered or related security assessor, security engineer, or security program manager occupation. In the alternative, a Bachelor's degree or foreign equivalent degree in Computer Science, Cybersecurity, Engineering, Information Systems, or a related discipline followed by five (5) years of progressive post-baccalaureate experience in the job offered or related security assessor, security engineer, or security program manager occupation.
Experience must include:
1. Three (3) years of experience performing info-security assessments and provide remediation recommendations.
2. Three (3) years of experience with development and implementation of solutions for Security Risks identified across the organization.
3. Three (3) years of experience with authentication and security protocols, cryptography or application security.
4. Three (3) years of experience with developing Common Control Framework including domains such as Access controls, Authorization, Monitoring, Audit, Accountability, Configuration Management, Contingency Planning, Identification, Authentication, System Communications Protection, and Information Integrity.
5. Three (3) years of experience testing of security controls, identifying gaps, and calculating risks.
Preferred Qualifications
All applicants must meet all the above listed requirements.
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.

Description
Employer: Amazon.com Services LLC
Position: Security Industry Specialist II
Location: Austin, TX
Multiple Positions Available:
1. Understand and rationalize security requirements in the payments and healthcare systems;
2. Provide business specific interpretations and support automation opportunities while working with DevOps teams;
3. Establishes credibility and maintain strong working relationships with groups involved with payment security and compliance matters (InfoSec, Legal, Business Development, Internal Audit, Fraud, Physical Security, Developer Community, Networking, Systems, etc.);
4. Collaborates with Compliance Specialists and business/service teams to understand and validate assessment scope;
5. Review security controls that are technical in nature, such as access controls, data encryption in transit and at rest, and auditing and logging user activity;
6. Responsible for building and influencing security as a core competency in relationships with internal teams/partners/vendors; this includes providing education and training to the organization;
7. Deliver recommendations and risk interpretations in a dear, concise and audience-specific format;
8. Engages with the Business and SMEs to ensure compliance to information security policies Supports ad-hoc data analysis requests; and
9. Analyze historical data to identify trends and insights.
Basic Qualifications
A Bachelor's degree or foreign equivalent in Computer Science, Information Systems Management, Business Administration or a related field and 3 year(s) of experience in job offered or a related occupation.
Experience must include:
1. 3 years of experience in information security governance, audit, or risk management.
2. 3 years of experience analyzing data utilizing Excel, SQL, or related tools.
3. 3 years of experience in risk management, business risk analysis and making complex business/risk trade-off recommendations and decisions.
4. 3 years of experience in service-oriented architectures and web services security
5. 3 years of experience in related security control and compliance experience in various frameworks including: HIPAA, HITRUST, PCI DSS, ISO, NIST.
Preferred Qualifications
All applicants must meet all the above listed requirements.
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.

Description
MULTIPLE POSITIONS AVAILABLE
Employer: AMAZON.COM SERVICES LLC
Offered Position: Security Industry Specialist II
Job Location: New York, New York
Job Number: AMZ
Position Responsibilities:
Manage end-to-end credit risk strategy across customer lifecycle and through economic cycle (recessions) and other shocks to manage credit performance of the North America payment business. Assist in defining credit policies and payment product features to support credit decisioning and monitoring for onboarding, credit underwriting, and credit exposure management. Establish, constantly improve, and be a thought leader for a credit adjudication and performance monitoring platform by deploying strategic, financial, data analysis, and customer analytics to influence business leaders and partners. Partner with credit underwriting operations on complex credit decisions that require manual reviews or exceptions. Identify innovations and drive credit and payment experiments that provide customers with a great payment experience. Identify, monitor, and communicate the right credit performance metrics and customer experience metrics to measure credit decision quality and credit portfolio health to profitably grow the payment business. Participate in program operations, partner with product managers and cross-functional teams such as product and technology, legal, business development to drive to team-wide improvement goals and strategic initiatives in credit and payment experience. Own relationships with Account Receivables team to establish and manage credit loss mitigation and credit recovery processes.
Position Requirements:
Master's degree or foreign equivalent degree in Business Administration, Finance, Engineering, Computer Science, Data Science or a related field and two years of experience in the job offered or a related occupation. Employer will accept a Bachelor's degree or foreign equivalent in Business Administration, Finance, Engineering, Computer Science, Data Science or a related field and five years of progressive post-baccalaureate experience in the job offered or a related occupation as equivalent to the Master's degree and two years of experience. Must have two years of experience in the following skills: (1) credit risk management, credit risk analytics, or a related field; (2) working with product teams, engineers, and other stakeholders to drive tool development and coordinate cross-functional projects; (3) designing, revising and implementing processes and procedural documentation; and (4) engaging and influencing senior leaders across functions including both business and technical teams; and (5) working with credit bureaus and cross-functional teams such as product and technology, business development, or legal in complex projects.
Amazon.com is an Equal Opportunity-Affirmative Action Employer - Minority / Female / Disability / Veteran / Gender Identity / Sexual Orientation.
40 hours / week, 8:00am-5:00pm, Salary Range $180,107/year to $196,300/year.
Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, visit:
Qualifications
Position Requirements:
Master's degree or foreign equivalent degree in Business Administration, Finance, Engineering, Computer Science, Data Science or a related field and two years of experience in the job offered or a related occupation. Employer will accept a Bachelor's degree or foreign equivalent in Business Administration, Finance, Engineering, Computer Science, Data Science or a related field and five years of progressive post-baccalaureate experience in the job offered or a related occupation as equivalent to the Master's degree and two years of experience. Must have two years of experience in the following skills: (1) credit risk management, credit risk analytics, or a related field; (2) working with product teams, engineers, and other stakeholders to drive tool development and coordinate cross-functional projects; (3) designing, revising and implementing processes and procedural documentation; and (4) engaging and influencing senior leaders across functions including both business and technical teams; and (5) working with credit bureaus and cross-functional teams such as product and technology, business development, or legal in complex projects.#000
Preferred Qualifications
Please see job description and the position requirements above.
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.

Description
Blink (Amazon's subsidiary) Security team is growing and looking for a highly motivated security risk & compliance specialist to join our team and drive regulatory compliance requirements for our products. In this role, you will work collaboratively with various business and security teams across Amazon to identify compliance needs, assess the maturity of processes and controls, design, build, and execute high-impact security or compliance programs to ensure successful audit executions. You should be a technically experienced and innovative security, risk, compliance, and audit professional who has the ability to understand systems, security, and privacy processes, communicate to customers, and to be able to drive innovative process changes through multiple organizations and teams.
Key job responsibilities
- Understand and rationalize regulatory requirements for service and device security
- Proactively assess, identify and develop recommendations regarding data protection, insider threat, data sharing, identity and access management, and third party risk issues and vulnerabilities by working with multiple stakeholder teams, including Privacy, Legal, HR, IT, etc
- Engage with the Business and SMEs to ensure compliance to information security policies
- Review security controls that are technical in nature, such as access controls, data encryption in transit and at rest, and auditing and logging user activity
- Develop and maintain relevant security risk metrics to promote transparency across the organization; measures, monitors and reports on information security risks to management
- Maintain control libraries and compliance requirements and guidance materials for various security standards and regulations.
- Provide business specific interpretations and support automation opportunities
- Liaise with auditors, articulate control implementation and impact, and establish considerations for applying security, privacy and compliance concepts to a technical cloud environment
About the team
The Subsidiary & Acquisition Security team designs and engineers high-profile consumer devices, including the Ring, Blink, Amazon Keys, and Side walk family of products. The Subsidiary & Acquisition GRC team works to ensure that our services are designed and implemented to the high standards required to maintain and enhance customer trust. Security and Privacy are paramount to maintaining trust and we need to continue to build trusted products, maintain and operate trusted environments, and advocate trust to customers and stakeholders
Basic Qualifications
- Experience in security or compliance consulting or advisory work in support of a highly technical environment
- 3+ years of IT platform implementation in a technical and analytical role experience
- Bachelor's degree in computer science or equivalent, or 5+ years of IT Security experience
- 5+ years in performing and/or participating in technical assessments in direct support of a major compliance effort (e.g. NIST, SOC 2, or ISO)
Preferred Qualifications
- Master's degree or above in a technical or engineering related field, such as Electrical Engineering, Computer Science, etc.
- Experience with compliance & security standards including PCI DSS, ISO 27001, HIPAA, and NIST
- Knowledge of one or more of the following domains: access-control system and methodology, network security, application- and system-development security, security architecture and models, cryptography, and operations security
- 1+ years of technical specialist, design and architecture experience, or AWS Professional level certification
- Knowledge of professional software engineering & best practices for full software development life cycle, including coding standards, software architectures, code reviews, source control management, continuous deployments, testing, and operational excellence
- Experience communicating across technical and non-technical audiences, including executive level stakeholders or clients
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Los Angeles County applicants: Job duties for this position include: work safely and cooperatively with other employees, supervisors, and staff; adhere to standards of excellence despite stressful conditions; communicate effectively and respectfully with employees, supervisors, and staff to ensure exceptional customer service; and follow all federal, state, and local laws and Company policies. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness and professionalism, and safeguard business operations and the Company's reputation. Pursuant to the Los Angeles County Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.
Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $91,800/year in our lowest geographic market up to $196,300/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit . This position will remain posted until filled. Applicants should apply via our internal or external career site.

Description
Blink (Amazon's subsidiary) Security team is growing and looking for a highly motivated security risk & compliance specialist to join our team and drive regulatory compliance requirements for our products. In this role, you will work collaboratively with various business and security teams across Amazon to identify compliance needs, assess the maturity of processes and controls, design, build, and execute high-impact security or compliance programs to ensure successful audit executions. You should be a technically experienced and innovative security, risk, compliance, and audit professional who has the ability to understand systems, security, and privacy processes, communicate to customers, and to be able to drive innovative process changes through multiple organizations and teams.
Key job responsibilities
- Understand and rationalize regulatory requirements for service and device security
- Proactively assess, identify and develop recommendations regarding data protection, insider threat, data sharing, identity and access management, and third party risk issues and vulnerabilities by working with multiple stakeholder teams, including Privacy, Legal, HR, IT, etc
- Engage with the Business and SMEs to ensure compliance to information security policies
- Review security controls that are technical in nature, such as access controls, data encryption in transit and at rest, and auditing and logging user activity
- Develop and maintain relevant security risk metrics to promote transparency across the organization; measures, monitors and reports on information security risks to management
- Maintain control libraries and compliance requirements and guidance materials for various security standards and regulations.
- Provide business specific interpretations and support automation opportunities
- Liaise with auditors, articulate control implementation and impact, and establish considerations for applying security, privacy and compliance concepts to a technical cloud environment
About the team
The Subsidiary & Acquisition Security team designs and engineers high-profile consumer devices, including the Ring, Blink, Amazon Keys, and Side walk family of products. The Subsidiary & Acquisition GRC team works to ensure that our services are designed and implemented to the high standards required to maintain and enhance customer trust. Security and Privacy are paramount to maintaining trust and we need to continue to build trusted products, maintain and operate trusted environments, and advocate trust to customers and stakeholders
Basic Qualifications
- Experience in security or compliance consulting or advisory work in support of a highly technical environment
- 3+ years of IT platform implementation in a technical and analytical role experience
- Bachelor's degree in computer science or equivalent, or 5+ years of IT Security experience
- 5+ years in performing and/or participating in technical assessments in direct support of a major compliance effort (e.g. NIST, SOC 2, or ISO)
Preferred Qualifications
- Master's degree or above in a technical or engineering related field, such as Electrical Engineering, Computer Science, etc.
- Experience with compliance & security standards including PCI DSS, ISO 27001, HIPAA, and NIST
- Knowledge of one or more of the following domains: access-control system and methodology, network security, application- and system-development security, security architecture and models, cryptography, and operations security
- 1+ years of technical specialist, design and architecture experience, or AWS Professional level certification
- Knowledge of professional software engineering & best practices for full software development life cycle, including coding standards, software architectures, code reviews, source control management, continuous deployments, testing, and operational excellence
- Experience communicating across technical and non-technical audiences, including executive level stakeholders or clients
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Los Angeles County applicants: Job duties for this position include: work safely and cooperatively with other employees, supervisors, and staff; adhere to standards of excellence despite stressful conditions; communicate effectively and respectfully with employees, supervisors, and staff to ensure exceptional customer service; and follow all federal, state, and local laws and Company policies. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness and professionalism, and safeguard business operations and the Company's reputation. Pursuant to the Los Angeles County Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.
Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $91,800/year in our lowest geographic market up to $196,300/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit . This position will remain posted until filled. Applicants should apply via our internal or external career site.

Description
Blink (Amazon's subsidiary) Security team is growing and looking for a highly motivated security risk & compliance specialist to join our team and drive regulatory compliance requirements for our products. In this role, you will work collaboratively with various business and security teams across Amazon to identify compliance needs, assess the maturity of processes and controls, design, build, and execute high-impact security or compliance programs to ensure successful audit executions. You should be a technically experienced and innovative security, risk, compliance, and audit professional who has the ability to understand systems, security, and privacy processes, communicate to customers, and to be able to drive innovative process changes through multiple organizations and teams.
Key job responsibilities
- Understand and rationalize regulatory requirements for service and device security
- Proactively assess, identify and develop recommendations regarding data protection, insider threat, data sharing, identity and access management, and third party risk issues and vulnerabilities by working with multiple stakeholder teams, including Privacy, Legal, HR, IT, etc
- Engage with the Business and SMEs to ensure compliance to information security policies
- Review security controls that are technical in nature, such as access controls, data encryption in transit and at rest, and auditing and logging user activity
- Develop and maintain relevant security risk metrics to promote transparency across the organization; measures, monitors and reports on information security risks to management
- Maintain control libraries and compliance requirements and guidance materials for various security standards and regulations.
- Provide business specific interpretations and support automation opportunities
- Liaise with auditors, articulate control implementation and impact, and establish considerations for applying security, privacy and compliance concepts to a technical cloud environment
About the team
The Subsidiary & Acquisition Security team designs and engineers high-profile consumer devices, including the Ring, Blink, Amazon Keys, and Side walk family of products. The Subsidiary & Acquisition GRC team works to ensure that our services are designed and implemented to the high standards required to maintain and enhance customer trust. Security and Privacy are paramount to maintaining trust and we need to continue to build trusted products, maintain and operate trusted environments, and advocate trust to customers and stakeholders
Basic Qualifications
- Experience in security or compliance consulting or advisory work in support of a highly technical environment
- 3+ years of IT platform implementation in a technical and analytical role experience
- Bachelor's degree in computer science or equivalent, or 5+ years of IT Security experience
- 5+ years in performing and/or participating in technical assessments in direct support of a major compliance effort (e.g. NIST, SOC 2, or ISO)
Preferred Qualifications
- Master's degree or above in a technical or engineering related field, such as Electrical Engineering, Computer Science, etc.
- Experience with compliance & security standards including PCI DSS, ISO 27001, HIPAA, and NIST
- Knowledge of one or more of the following domains: access-control system and methodology, network security, application- and system-development security, security architecture and models, cryptography, and operations security
- 1+ years of technical specialist, design and architecture experience, or AWS Professional level certification
- Knowledge of professional software engineering & best practices for full software development life cycle, including coding standards, software architectures, code reviews, source control management, continuous deployments, testing, and operational excellence
- Experience communicating across technical and non-technical audiences, including executive level stakeholders or clients
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Los Angeles County applicants: Job duties for this position include: work safely and cooperatively with other employees, supervisors, and staff; adhere to standards of excellence despite stressful conditions; communicate effectively and respectfully with employees, supervisors, and staff to ensure exceptional customer service; and follow all federal, state, and local laws and Company policies. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness and professionalism, and safeguard business operations and the Company's reputation. Pursuant to the Los Angeles County Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.
Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $91,800/year in our lowest geographic market up to $196,300/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit . This position will remain posted until filled. Applicants should apply via our internal or external career site.

Description
Blink (Amazon's subsidiary) Security team is growing and looking for a highly motivated security risk & compliance specialist to join our team and drive regulatory compliance requirements for our products. In this role, you will work collaboratively with various business and security teams across Amazon to identify compliance needs, assess the maturity of processes and controls, design, build, and execute high-impact security or compliance programs to ensure successful audit executions. You should be a technically experienced and innovative security, risk, compliance, and audit professional who has the ability to understand systems, security, and privacy processes, communicate to customers, and to be able to drive innovative process changes through multiple organizations and teams.
Key job responsibilities
- Understand and rationalize regulatory requirements for service and device security
- Proactively assess, identify and develop recommendations regarding data protection, insider threat, data sharing, identity and access management, and third party risk issues and vulnerabilities by working with multiple stakeholder teams, including Privacy, Legal, HR, IT, etc
- Engage with the Business and SMEs to ensure compliance to information security policies
- Review security controls that are technical in nature, such as access controls, data encryption in transit and at rest, and auditing and logging user activity
- Develop and maintain relevant security risk metrics to promote transparency across the organization; measures, monitors and reports on information security risks to management
- Maintain control libraries and compliance requirements and guidance materials for various security standards and regulations.
- Provide business specific interpretations and support automation opportunities
- Liaise with auditors, articulate control implementation and impact, and establish considerations for applying security, privacy and compliance concepts to a technical cloud environment
About the team
The Subsidiary & Acquisition Security team designs and engineers high-profile consumer devices, including the Ring, Blink, Amazon Keys, and Side walk family of products. The Subsidiary & Acquisition GRC team works to ensure that our services are designed and implemented to the high standards required to maintain and enhance customer trust. Security and Privacy are paramount to maintaining trust and we need to continue to build trusted products, maintain and operate trusted environments, and advocate trust to customers and stakeholders
Basic Qualifications
- Experience in security or compliance consulting or advisory work in support of a highly technical environment
- 3+ years of IT platform implementation in a technical and analytical role experience
- Bachelor's degree in computer science or equivalent, or 5+ years of IT Security experience
- 5+ years in performing and/or participating in technical assessments in direct support of a major compliance effort (e.g. NIST, SOC 2, or ISO)
Preferred Qualifications
- Master's degree or above in a technical or engineering related field, such as Electrical Engineering, Computer Science, etc.
- Experience with compliance & security standards including PCI DSS, ISO 27001, HIPAA, and NIST
- Knowledge of one or more of the following domains: access-control system and methodology, network security, application- and system-development security, security architecture and models, cryptography, and operations security
- 1+ years of technical specialist, design and architecture experience, or AWS Professional level certification
- Knowledge of professional software engineering & best practices for full software development life cycle, including coding standards, software architectures, code reviews, source control management, continuous deployments, testing, and operational excellence
- Experience communicating across technical and non-technical audiences, including executive level stakeholders or clients
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Los Angeles County applicants: Job duties for this position include: work safely and cooperatively with other employees, supervisors, and staff; adhere to standards of excellence despite stressful conditions; communicate effectively and respectfully with employees, supervisors, and staff to ensure exceptional customer service; and follow all federal, state, and local laws and Company policies. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness and professionalism, and safeguard business operations and the Company's reputation. Pursuant to the Los Angeles County Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.
Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $91,800/year in our lowest geographic market up to $196,300/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit . This position will remain posted until filled. Applicants should apply via our internal or external career site.

Description
Blink (Amazon's subsidiary) Security team is growing and looking for a highly motivated security risk & compliance specialist to join our team and drive regulatory compliance requirements for our products. In this role, you will work collaboratively with various business and security teams across Amazon to identify compliance needs, assess the maturity of processes and controls, design, build, and execute high-impact security or compliance programs to ensure successful audit executions. You should be a technically experienced and innovative security, risk, compliance, and audit professional who has the ability to understand systems, security, and privacy processes, communicate to customers, and to be able to drive innovative process changes through multiple organizations and teams.
Key job responsibilities
- Understand and rationalize regulatory requirements for service and device security
- Proactively assess, identify and develop recommendations regarding data protection, insider threat, data sharing, identity and access management, and third party risk issues and vulnerabilities by working with multiple stakeholder teams, including Privacy, Legal, HR, IT, etc
- Engage with the Business and SMEs to ensure compliance to information security policies
- Review security controls that are technical in nature, such as access controls, data encryption in transit and at rest, and auditing and logging user activity
- Develop and maintain relevant security risk metrics to promote transparency across the organization; measures, monitors and reports on information security risks to management
- Maintain control libraries and compliance requirements and guidance materials for various security standards and regulations.
- Provide business specific interpretations and support automation opportunities
- Liaise with auditors, articulate control implementation and impact, and establish considerations for applying security, privacy and compliance concepts to a technical cloud environment
About the team
The Subsidiary & Acquisition Security team designs and engineers high-profile consumer devices, including the Ring, Blink, Amazon Keys, and Side walk family of products. The Subsidiary & Acquisition GRC team works to ensure that our services are designed and implemented to the high standards required to maintain and enhance customer trust. Security and Privacy are paramount to maintaining trust and we need to continue to build trusted products, maintain and operate trusted environments, and advocate trust to customers and stakeholders
Basic Qualifications
- Experience in security or compliance consulting or advisory work in support of a highly technical environment
- 3+ years of IT platform implementation in a technical and analytical role experience
- Bachelor's degree in computer science or equivalent, or 5+ years of IT Security experience
- 5+ years in performing and/or participating in technical assessments in direct support of a major compliance effort (e.g. NIST, SOC 2, or ISO)
Preferred Qualifications
- Master's degree or above in a technical or engineering related field, such as Electrical Engineering, Computer Science, etc.
- Experience with compliance & security standards including PCI DSS, ISO 27001, HIPAA, and NIST
- Knowledge of one or more of the following domains: access-control system and methodology, network security, application- and system-development security, security architecture and models, cryptography, and operations security
- 1+ years of technical specialist, design and architecture experience, or AWS Professional level certification
- Knowledge of professional software engineering & best practices for full software development life cycle, including coding standards, software architectures, code reviews, source control management, continuous deployments, testing, and operational excellence
- Experience communicating across technical and non-technical audiences, including executive level stakeholders or clients
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Los Angeles County applicants: Job duties for this position include: work safely and cooperatively with other employees, supervisors, and staff; adhere to standards of excellence despite stressful conditions; communicate effectively and respectfully with employees, supervisors, and staff to ensure exceptional customer service; and follow all federal, state, and local laws and Company policies. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness and professionalism, and safeguard business operations and the Company's reputation. Pursuant to the Los Angeles County Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.
Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $91,800/year in our lowest geographic market up to $196,300/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit . This position will remain posted until filled. Applicants should apply via our internal or external career site.

Overview:

SimVentions, consistently voted one Virginia's Best Places to Work, is looking for an experienced professional to join our team! As a Blue Team Engineer, you will support Blue Team operations and collaborate with Red Team and Cybersecurity professionals on overall cyber readiness defense and system accreditation efforts. 

** Position is contingent upon award of contract, anticipated in December of 2025. **

Clearance:

An ACTIVE Secret clearance (IT Level II Tier 5 / Special-Sensitive Position) is required for this position. Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information. US Citizenship is required to obtain a clearance.

Requirements:

• In-depth understanding of computer security, military system specifications, and DoD cybersecurity policies
• Strong ability to communicate clearly and succinctly in written and oral presentations

Responsibilities:

• Perform system hardening on multiple Operating System (OS) platforms
• Monitor and assess system and network security posture in accordance with DoD cybersecurity policies and tools
• Apply MITRE ATT&CK and/or MITRE D3FEND frameworks to assess and improve threat detection and response strategies
• Conduct advanced threat intelligence analysis, identify emerging potential threats, and provide threat intelligence recommendations
• Perform vulnerability assessments using the Assured Compliance Assessment Solution (ACAS) and other security tools
• Analyze vulnerability findings and develop remediation plans
• Remediate vulnerability findings by implementing vendor patches and configuration changes on both Linux and Windows operating systems
• Design, implement, and enforce security controls across network, hardware, and software components

Preferred Skills and Experience:

A combined minimum total of ten (10) years of full-time professional experience in all of the following skillsets/disciplines:

• System hardening across multiple OS platforms
• Networking and virtualization
• Application of DoD cybersecurity policies and use of DoD security tools
• MITRE ATT&CK or MITRE D3FEND frameworks 
• Threat intelligence assessments and identification of emerging potential threats
• Performing vulnerability assessments with ACAS
• Remediation of vulnerability findings to include implementation of vendor patches on both Linux and Windows Operating systems
• ⁠Design, implementation, configuration, and enforcement of security controls on network, hardware, and software components and devices

Possess one of the following DoD -M IAT Level III baseline certifications:

• • CASP+ CE
  • CCNP Security
  • CISA
  • CISSP (Associate)
  • CISSP
  • GCED
  • GCIH
  • CCSP

Education: Bachelor of Science in Information Systems, Bachelor of Science in Information Technology, Bachelor of Science in Computer Science, or Bachelor of Science in Computer Engineering Compensation:

Compensation at SimVentions is determined by a number of factors, including, but not limited to, the candidate’s experience, education, training, security clearance, work location, skills, knowledge, and competencies, as well as alignment with our corporate compensation plan and contract specific requirements.

The projected annual compensation range for this position is $100,000 - $160,000. This estimate reflects the standard salary range for this position and is just one component of the total compensation package that SimVentions offers. 

Benefits:

At SimVentions, we’re committed to supporting the total well-being of our employees and their families. Our benefit offerings include comprehensive health and welfare plans to serve a variety of needs. 

We offer:

• Medical, dental, vision, and prescription drug coverage
• Employee Stock Ownership Plan (ESOP)
• Competitive 401(k) programs
• Retirement and Financial Counselors
• Health Savings and Health Reimbursement Accounts
• Flexible Spending Accounts
• Life insurance, short- & long-term disability
• Continuing Education Assistance
• Paid Time Off, Paid Holidays, Paid Leave (e.g., Maternity, Paternity, Jury Duty, Bereavement, Military)
• Third Party Employee Assistance Program that offers emotional and lifestyle well-being services, to include free counseling
• Supplemental Benefit Program 

Why Work for SimVentions?:

SimVentions is about more than just being a place to work with other growth-orientated technically exceptional experts. It’s also a fun place to work. Our family-friendly atmosphere encourages our employee-owners to imagine, create, explore, discover, and do great things together.

Support Our Warfighters

SimVentions is a proud supporter of the U.S. military, and we take pride in our ability to provide relevant, game-changing solutions to our armed men and women around the world.

Drive Customer Success

We deliver innovative products and solutions that go beyond the expected. This means you can expect to work with a team that will allow you to grow, have a voice, and make an impact.

Get Involved in Giving Back

We believe a well-rounded company starts with well-rounded employees, which is why we offer diverse service opportunities for our team throughout the year.

Build Innovative Technology

SimVentions takes pride in its innovative and cutting-edge technology, so you can be sure that whatever project you work on, you will be having a direct impact on our customer’s success.

Work with Brilliant People

We don’t just hire the smartest people; we seek experienced, creative individuals who are passionate about their work and thrive in our unique culture.

Create Meaningful Solutions

We are trusted partners with our customers and are provided challenging and meaningful requirements to help them solve.

Employees who join SimVentions will enjoy additional perks like:

• Employee Ownership:  Work with the best and help build YOUR company!
• Family focus:  Work for a team that recognizes the importance of family time.
• Culture:  Add to our culture of technical excellence and collaboration.
• Dress code:  Business casual, we like to be comfortable while we work.
• Resources:   Excellent facilities, tools, and training opportunities to grow in your field.
• Open communication:  Work in an environment where your voice matters.
• Corporate Fellowship:   Opportunities to participate in company sports teams and employee-led interest groups for personal and professional development.
• Employee Appreciation:  Multiple corporate events throughout the year, including Holiday Events, Company Picnic, Imagineering Day, and more.
• Founding Partner of the FredNats Baseball team:  Equitable distribution of tickets for every home game to be enjoyed by our employee-owners and their families from our private suite.
• Food:  We have a lot of food around here!

FTAC