Amazon Corporate LLC Principal Security Program Manager- PCI Compliance in Denver, Colorado
Amazon.com is looking for an Information Security Principal IndustrySpecialist focused on strategically designing and executing our world-wide PCIDSS compliance program. Amazon obsesses over securing customer payment data,and continues to invest in ensuring compliance with industry standards. If youenjoy working in a rapidly changing environment and influencing the strategicdirection of a large global organization, this position will provide youwith a challenging opportunity. Responsibilities include:* Define and manage the strategic direction of the PCI Compliance team.* Manage the annual PCI DSS program end-to-end including scope identificationand validation, internal assessments, annual external assessments, andindustry engagement.* Manage an internal awareness program to ensure service teams understandcompliance expectations for developing and operating systems.* Influence senior leaders to sponsor/develop projects to mitigatePCI-related risks.* Represent Amazon's interest/position to industry engagement boards;communicate the results of industry engagement inward to service teams.* Manage vendors that support PCI engagements (scoping, assessments,consultations, etc).* Manage non-planned PCI-related inquiries and provide/coordinate unifiedguidance to service teams.* Drive a distributed annual scoping exercise.* Clearly communicate vision, deliverables, and project status tomanagement and key technical and business stakeholders.* Deliver recommendations and risk interpretations in a clear, concise andaudience-specific format* Influence teams to incorporate payment security as a core competency throughrelationships with internal teams/partners/vendor.* Establish credibility and maintain strong working relationships with groupsinvolved with payment security and compliance matters (InfoSec, Legal,Business Development, Internal Audit, Fraud, Physical Security,Developer Community, Networking, Systems, etc.).* 8-10 years of payment card data security, with direct experience inPCI-DSS, information security, and audit.* Skilled in risk management, business risk analysis and making complexbusiness/risk trade-off recommendations and decisions.* Technical knowledge and familiarity with payment security standards.Amazon is committed to a diverse and inclusive workplace. Amazon is an equalopportunity employer and does not discriminate on the basis of race,national origin, gender, gender identity, sexual orientation,protected veteran status, disability, age, or other legally protectedstatus. For individuals with disabilities who would like to request anaccommodation, please visit https://www.amazon.jobs/en/disability/us.