Amazon
Security Assurance Specialist , AWS Compliance and Security Assurance EMEA Overview
| Company Name | Amazon |
| Job Role | Security Assurance Specialist , AWS Compliance and Security Assurance EMEA |
| Qualifications | Bachelor’s |
| Category | IT Jobs |
| Job Type | Full Time |
| Location | London |
This role sits within AWS Securityâs Compliance and Security Assurance function for the EMEA region. The team focuses on proving and explaining the security controls behind AWS services, especially for customers operating in heavily regulated environments. The work is centered on helping customers and regulators understand how Amazonâs infrastructure is built, operated, maintained, and protected, and on showing how those controls align with local and global compliance expectations.
The position is suited to someone who combines audit and compliance expertise with a strong technical background. Amazon is looking for a person who enjoys modernizing manual processes through automation, scaling security controls across different teams and technologies, and shaping the future of security assurance. The role requires someone who can connect security, technology, and compliance, and who is comfortable working across many internal and external stakeholders to solve complex assurance challenges.
What you will do
- Work with customers and regulators to demonstrate how Amazonâs security controls meet local regulatory requirements.
- Build a detailed understanding of Amazonâs control environment so you can explain the security activities and control implementations, and the compliance implications of those controls, to customers and audit teams.
- Develop knowledge of regulated-industry compliance obligations and communicate how Amazonâs control activities support global regulatory duties.
- Partner with customers, regulators, and auditors to explain how controls are implemented and to advise on how security and compliance concepts should be used to monitor, assess, and improve the organization.
- Lead continuous improvement efforts across the security organization and program management processes, including the creation and sharing of frameworks, tools, and best practices that can be reused more broadly.
- Apply understanding of global information security regulations and policies to explain customer impact and control impact, and to help align Amazonâs controls with those requirements.
- Help customers understand how Amazonâs infrastructure is designed, operated, maintained, and protected in line with global regulated-industry standards.
- Influence and improve audit and compliance programs through process engineering across multiple organizations and teams, while working with both technical and non-technical stakeholders.
- Collaborate directly with senior leadership to strengthen Amazonâs ability to provide assurance to regulated customers.
- Act as a trusted advisor, facilitator, and creative problem solver for difficult compliance issues.
What the team values
The team culture emphasizes ownership, inclusion, diversity, and innovation. Team members are expected to take strong ownership of the program vision and the execution of ideas, while also respecting and incorporating different viewpoints from colleagues and stakeholders. The environment is designed for people who want to work on meaningful security problems and help shape how assurance is delivered at Amazon scale.
AWS Security also highlights that it welcomes applicants with non-traditional career paths or alternative experience. Candidates are encouraged to apply even if they do not match every listed qualification, as the organization values diverse backgrounds and experiences.
Why AWS Security
Security is described as central to customer trust and to delivering a strong customer experience. The organization is responsible for maintaining a high security standard across AWS products and services. For security professionals, the team offers opportunities to build experience across a wide range of areas, including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
Culture, growth, and support
Amazon describes its culture as inclusive and supportive. The company says it has employee-led affinity groups across many chapters worldwide and runs learning and community events such as CORE and AmazeCon. The broader culture is tied to Amazonâs Leadership Principles, including curiosity, earning trust, and seeking diverse perspectives.
The team also places a high value on work-life balance. Amazon says the goal is not to measure success by hours spent at work or at home, but to support a healthy rhythm between personal and professional life. Flexible working hours are offered, and employees are encouraged to find a balance that works for them.
Career development is another emphasis. The team says it supports new joiners, encourages knowledge sharing and mentorship, and assigns work that helps people grow into more capable professionals and take on more complex responsibilities over time.
Basic qualifications
- A bachelorâs degree or an equivalent level of experience.
- Experience in compliance program management, legal, governance, audit, risk, loss prevention, or a similar discipline.
- Experience handling confidential information.
- Experience working directly with government officials and regulatory bodies.
- At least five years of experience performing or participating in IT audits, including audits based on ISAE 3401, COBIT, ITIL, IT-Grundschutz, and assessments of highly technical cloud-based environments.
- At least three years of experience building risk programs and strategies, with awareness of current industry trends such as changing regulations, new risk-mitigation approaches, and testing methods.
- At least five years of experience in highly regulated industries such as financial services, healthcare, energy, or telecommunications, including direct work with European audits and frameworks such as DORA.
- The ability to understand IT processes, communicate clearly and transparently with customers, and drive process change across multiple organizations and teams.
- A strong technical and audit foundation that can bridge security, technology, and compliance at scale.
- Comfort working across many stakeholders while balancing different perspectives and maintaining strong ownership of execution.
- Interest in cloud security and solving practical business problems.
- A collaborative approach that fits a culture focused on ownership, diversity, inclusion, and innovation.
Preferred qualifications
- Experience using SQL and Excel.
- Experience defining program requirements and using data and metrics to drive improvement.
- One or more recognized security, cloud, or audit certifications, such as CISA, CISM, CISSP, CCSP, or Amazon Cloud Security Practitioner.
- Experience with technical security design, cloud service or deployment architecture, compliance consulting, or advisory work in a highly technical setting.
- Strong understanding of regulatory guidance such as FCA FG16/5, DORA requirements for critical service providers, Germanyâs C5 requirements, and other relevant standards.
- A history of delivering IT process improvement projects in technology organizations or major tech companies, including the creation of automated metrics to measure effectiveness and consistency.
- Experience building certification roadmaps from customer requirements and compliance documentation, and ensuring assessments are completed on schedule.
- Detailed knowledge of how to assess the design and operating effectiveness of IT controls, along with experience working with auditors and regulators on those assessments.
Additional information
Amazon states that it is an equal opportunities employer and makes hiring decisions based on experience and skills. The company also notes its commitment to protecting candidate privacy and data, and provides accommodations for applicants who need support during the hiring or onboarding process. If the country or region you are applying from is not listed in the accommodations guidance, Amazon asks candidates to contact their recruiting partner.
The job is based in London, United Kingdom, and is listed under project, programme, and product management rather than a technical engineering track.
Degree Requirement: Bachelor’s
Visa Sponsorship May be
To apply for this job please visit www.amazon.jobs.