Supply Chain Security Engineer, Infrastructure Security Compliance
DescriptionAWS Infrastructure Services owns the design, planning, delivery, and operation of all AWS global infrastructure. In other words, we’re the people who keep the cloud running. We support all AWS data centers and all of the servers, storage, networking, power, and cooling equipment that ensure our customers have continual access to the innovation they rely on. We work on the most challenging problems, with thousands of variables impacting the supply chain — and we’re looking for talented people who want to help.You’ll join a diverse team of software, hardware, and network engineers, supply chain specialists, security experts, operations managers, and other vital roles. You’ll collaborate with people across AWS to help us deliver the highest standards for safety and security while providing seemingly infinite capacity at the lowest possible cost for our customers. And you’ll experience an inclusive culture that welcomes bold ideas and empowers you to own them to completion.This position can be located in Herndon, VA, Minneapolis, MN, or Seatlle, WA.Supply Chain Security Engineers at AWS work in a supportive, collaborative-filled environment to ensure AWS maintains a trustworthy and socially responsible global supply chain. In this role, you will work directly with internal security experts and external supply chain partners to help set and maintain the AWS security bar for supply chain teams and partners. You will analyze public and commercial information, and interact directly with suppliers to assess everything from their cyber and physical security controls, to their policies and operational practices. If you have a genuine curiosity and a desire to help make the world a safer place, this role is a great opportunity to continually build and apply your own security expertise as you identify gaps, suggest mitigations, track progress, and help AWS continue to inspire the best in ourselves and others with our leadership in supply chain security!About the teamDiverse ExperiencesAmazon values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.Why AWSAmazon Web Services (AWS) is the world’s most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating — that’s why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses.Work/Life BalanceWe value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve in the cloud.Inclusive Team CultureHere at AWS, it’s in our nature to learn and be curious. Our employee-led affinity groups foster a culture of inclusion that empower us to be proud of our differences. Ongoing events and learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences, inspire us to never stop embracing our uniqueness.Mentorship and Career GrowthWe’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.Basic Qualifications
Bachelor's degree
5+ years experience in a customer facing role and experience with audits or security assessments.
5+ years experience with information technology (IT) security principles and methods (e.g., server and network management, firewalls, VPN, multi-factor authentication, encryption) or related technical experience.
Preferred Qualifications
4+ years experience related to supply chain or manufacturing security.
4+ years experience related to security risk mitigation, providing guidance to improve security practices
Knowledge of one or more international supply chain and security compliance frameworks such as NIST 800- (30, 53, 161, 171, and 88); ISO 27000, 28000, and 20243 series; NERC CIP; FedRAMP; CMMC; TAPA.
Knowledge of network security architecture concepts including protocols, enforcement and monitoring points, and defense-in-depth.
Relevant industry certifications such as CISSP, Security+, CEH, or SANS (GSEC, GCIH, GDSA, GSNA, etc.)
Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us.Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $136,000/year in our lowest geographic market up to $212,800/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits. This position will remain posted until filled. Applicants should apply via our internal or external career site.