Security Compliance Specialist Kuiper Security

Project Kuiper is an Amazon initiative to increase global broadband access through a constellation of over 3000 Low Earth Orbit (LEO) satellites. Its mission is to bring fast affordable broadband to unserved and underserved communities worldwide. At Project Kuiper we are obsessed with customer trust and are seeking an individual contributor who is creative and passionate about delivering Governance Risk and Compliance solutions to meet Kuipers regulatory and external assurance needs. In this role you will work collaboratively with various business and security teams across Amazon to identify compliance needs assess the maturity of processes and controls design build and execute highimpact security or compliance programs and liaise with external auditors to ensure successful audit executions.
This role is open for Sunnyvale CA and Redmond WA locations.

The Security Compliance Specialist in Project Kuipers Security team will drive regulatory and certification compliance requirements for our worldclass cyber and information security throughout Kuipers technology systems and infrastructure. This role is at the forefront of delivering highly secure space and terrestrial broadband telecommunication services for consumer enterprise telecom transportation and government customers around the world.

The ideal candidate is technically experienced and innovative security risk compliance and audit professional who has the ability to understand systems security and privacy processes communicate to customers and to be able to drive innovative process changes through multiple organizations and teams. You have implemented NIST control frameworks reviewed control activities evidence collection and liaised with auditors.


Export Control Requirement:

Due to applicable export control laws and regulations candidates must be a U.S. citizen or national U.S. permanent resident (i.e. current Green Card holder) or lawfully admitted into the U.S. as a refugee or granted asylum.


Key job responsibilities
Design and drive scalable processes within a GRC (Governance Risk and Compliance) framework to ensure compliance with Kuipers regulatory and contractual security requirements;
Building ISO 27001 ISO 22301 NIST 80053 and other compliance certifications and attestation programs identifying applicable security controls assessing compliance gaps and readiness developing remediation strategies and driving remediation activities to completion;
Driving certifications and assurance programs by liaising with external auditors and other Amazon security teams articulating control implementation and impact and establishing considerations for applying security and risk concepts to a highly technical and complex environment;
Communicating to key stakeholders and leadership on controls implementation audit results compliance program metrics key risks and areas of program improvement as well as seek diverse opinions and coordinate improvement efforts;
Working closely with engineering compliance security and Legal teams to identify future compliance and regulatory requirements and define compliance solutions;
Serving as a subject matter expert and advisor on complex compliance issues;
Be comfortable with handson daytoday problem solving and implementing quick and effective action plans to meet short and longterm priorities.

About the team
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description we encourage candidates to apply. If your career is just starting hasnt followed a traditional path or includes alternative experiences dont let it stop you from applying.

Why Amazon Security
At Amazon security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazons products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud devices retail entertainment healthcare operations and physical stores.

Inclusive Team Culture
In Amazon Security its in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas perspectives and voices.

Training & Career Growth
Were continuously raising our performance bar as we strive to become Earths Best Employer. Thats why youll find endless knowledgesharing training and other careeradvancing resources here to help you develop into a betterrounded professional.

Work/Life Balance
We value worklife harmony. Achieving success at work should never come at the expense of sacrifices at home which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home theres nothing we cant achieve.

Bachelors Degree in Cybersecurity or other related fields or equivalent experience.
4 years of project/program management in a technical field.
4 years of IT security audit compliance and/or relevant Federal regulatory experience.
3 years of FedRAMP or NIST compliance program assessment experience.

6 years (Compliance Analyst) of experience in information security or GRC roles.
Demonstrate comprehensive understanding of compliance requirements for ISO 27001 ISO 22301 SOC 2 and US Government Compliance Frameworks/Programs (FedRAMP NIST 80053 NIST 800171 NIST Risk Management Framework FISMA).
Display experience in conducting IT control and process assessments evaluating design and effectiveness of controls and continuous monitoring with a clear understanding of noncompliance risks.
Possess expertise in documenting findings articulating risks identifying necessary corrective actions and tracking their closure.
Hold an industry certification such as CISSP CISA CISM ISO 27001:2022 Lead Implementer/Lead Auditor or ISO 22301:2019 Lead Implementer/Lead Auditor.
Exhibit strong datadriven analytical skills including establishing and tracking program metrics.

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race national origin gender gender identity sexual orientation protected veteran status disability age or other legally protected status.

Los Angeles County applicants: Job duties for this position include: work safely and cooperatively with other employees supervisors and staff; adhere to standards of excellence despite stressful conditions; communicate effectively and respectfully with employees supervisors and staff to ensure exceptional customer service; and follow all federal state and local laws and Company policies. Criminal history may have a direct adverse and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above as well as the abilities to adhere to company policies exercise sound judgment effectively manage stress and work safely and respectfully with others exhibit trustworthiness and professionalism and safeguard business operations and the Companys reputation. Pursuant to the Los Angeles County Fair Chance Ordinance we will consider for employment qualified applicants with arrest and conviction records.

Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process including support for the interview or onboarding process please visit for more information. If the country/region youre applying in isnt listed please contact your Recruiting Partner.

Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $91800/year in our lowest geographic market up to $196300/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on jobrelated knowledge skills and experience. Amazon is a total compensation company. Dependent on the position offered equity signon payments and other forms of compensation may be provided as part of a total compensation package in addition to a full range of medical financial and/or other benefits. For more information please visit This position will remain posted until filled. Applicants should apply via our internal or external career site.