Security Technical Program Manager, Amazon Stores Security

Job Description
Are you interested in driving exceptional security for customers? Do you see compliance as a business enabler? Amazon Stores Security organization is seeking an experienced Security Technical Program Manager (TPM). As part of the Amazon Stores Security Japan team, this role will build the bridges between security, technology and compliance by working across remote and local teams within Amazon Security organization, core security teams, and related Amazon corporate teams. This candidate should be a technically experienced and an innovative security/compliance professional who has the ability to dive deep into a variety of complex security issues, understand IT processes, and drive continuous process improvement to existing and emerging compliance standards.

The ideal candidate will have strong leadership and problem-solving skills, Japanese and English communication skill, and effectively work with cross-functional business and software development teams to solve problems and implement new solutions through innovative process changes.

Key job responsibilities
This position will be responsible for:
• Establish credibility and maintain strong working relationships with groups involved with information security matters (Legal, Business Development, Internal Audit, Fraud, Networking, Application Security, Third Party Security, Systems, etc.)
• Assist stakeholders and third-party partner with aligning standard operating procedures, controls, monitoring, and reporting with the goal of improving operations, compliance policies, and risk management
• Support process improvement and control implementation projects in coordination with the service teams
• Develop a working knowledge of the operational processes and controls in place that supporting the Amazon Information Security and Compliance teams, including commercial and regulatory compliance programs, and guiding control owners in documenting their control activities
• Perform service impact assessments of existing and emerging compliance programs
• Manage the readiness efforts of services for audit and/or certification
• Innovation of mechanisms to better meet business processes and compliance requirements

A day in the life
• Engage with Amazon Japan business, technical stakeholders and third-party partners to identify security needs, and maintain a broad understanding of the regulatory landscape impacting Amazon Japan
• Work with a global cross-functional team of Security Engineers, Assessors, and technical program managers to deliver security reviews, and ensure compliance aligned with governmental standards and processes
• Determine strategy for highly sensitive and/or high profile assessments
• Maintain metrics on security and compliance, and prepare reports for senior management on the state of security in region
• Ensure the team delivers on security goals, and make recommendations for incremental process improvement.

About the team
About Amazon Security:
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services.

Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.
Why Amazon Security
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.

Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.

Inclusive Team Culture
In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.

Mentorship and Career growth
We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.

Basic Qualifications


- 4+ years of project management disciplines including scope, schedule, budget, quality, along with risk and critical path management experience
- Bachelor's degree in engineering, computer science or equivalent.
- 4+ years of experience in security or compliance consulting or advisory work in support of a highly technical environment; in performing and/or participating in technical assessments of complex IT architecture; technical product or program management experience.
- Experience with Governance, Risk, and Compliance tools, Application Security and Third-Party Security. Skilled in security risk analysis and making complex business/risk trade-off recommendations and decisions. Experience managing programs across cross functional teams, building processes and coordinating release schedules.
- Fluency in both Japanese and English languages with sufficient writing skill

Preferred Qualifications


- 6+ years of technical product or program management experience
- 6+ years of experience in performing technical security assessments and audits of network, operating systems, application security, and auditing IT processes. A record of delivery of large IT process improvement projects with technology processes and/or major tech companies
- 3+ years of experience in performing and/or participating in technical assessments in direct support of a major compliance effort (PCI, SOC, ISO and other compliance regimes); CISM or CISSP

Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.