2+ years of relevant Information Security experience - 2+ years of Technical Risk Assessment experience - 5+ years of Technical Program or Project Management knowledge and / or experience in at least one security domain such as engineering, system and network security, authentication, or security protocols - Proven working experience in change/stakeholder management and project documentation (i.e. contributing to project playbooks, building schedules, managing issues/risks, establishing communication plans and stakeholder engagement, among others) - Ability to influence stakeholders across the organization without direct reporting lines - Ability to lead and execute multiple initiatives simultaneously - Excellent oral, written, and interpersonal communication skills - Ability to adapt well to changing circumstances, direction, and strategyJob summaryDo you want to be instrumental in the success of some of Amazon's strategic and high impact projects and programs? Amazon's Program Delivery Excellence (PDE) team has an immediate opening for a Vendor Security Specialist (VSS). The new role of a VSS is capable of developing, managing and contributing to the delivery of technical global programs and projects, managing stakeholders, assessing the security risk of vendors by partnering with multiple stakeholders to ensure vendors meet Amazon's security bar. This highly visible and challenging position is self-driven, project and compliance focused, and goal oriented, with the objective of delivering business solutions that meet stakeholder needs.The PDE team is also member of the Global Payroll Program Delivery and Vendor Management (PDVM) teams, with members based in several different countries. The PDVM team function sits within the Payroll team (Finance Operations) and as such, this position will work with leadership in Payroll Operations, Operational Excellence, Vendor Management, Compliance & Controllership, and tech teams within Payroll to build and deliver high impact global programs and projects.Key job responsibilities- Develop and manage a new program to ensure Security Assessment compliance and partner with stakeholders and leaders at various levels to understand assessment processes, policies and implement other mechanisms to ensure compliance by raising the Amazon Security Bar- Internal project and program management: Contribute to technical global projects from annual program roadmaps and/or as part of ad-hoc requests from stakeholders. This includes all end to end stages of project management, from business requirements gathering and scoping to change management and delivery- Vendor-facing project management: work with external vendors on global projects, ensuring Amazon Payroll business needs are met while also balancing business agreements between all stakeholders and / or customers.- Reporting: prepares reports on given cadences to share status of ongoing projects, programs, and goals completion/progress (i.e. MBR, QBR, monthly updates, etc.)- Goals and roadmap planning: provide input on the creation of annual program roadmaps and goals supported by the PDE team- Stakeholder management: manage communication with both internal and external stakeholders and support them through the delivery of projects- Documentation: provide support on creation of standard operation procedures (SOP), frameworks, and project documentation, among others- CISSP, CISA, or related Information Security certification - Experience performing risk assessments of vulnerabilities and evaluating compensating and mitigating controls in large, complex infrastructures - Automation experience, i.e. VBA, Macros, advanced MS Excel, etc. - Project management certification such as PRINCE2 or PMP - Certification of Competency in Business Analysis (CCBA) - Proficiency in a second language (different than English) - Strong interpersonal and communication skills - Ability to thrive in a fast paced, ever changing environment
