✦ Luna Orbit — Consulting & Advisory

Security Compliance Specialist, Amazon Leo Security Assurance

at Amazon.com

📍 US, WA, Redmond Unknown Posted April 14, 2026
Apply Now → ← Browse All Jobs

Position Details

Type Not Specified
Experience mid
Exp. Years 0 if none stated or entry level
Education Not specified
Category Consulting & Advisory

About this role

This role supports Amazon Leo’s regulatory and external assurance needs by designing and driving scalable GRC processes. You will build and maintain security and privacy compliance programs and certifications, and work with external auditors and regulators to execute audit readiness and remediation.

Key Responsibilities

  • Design and drive scalable GRC processes for regulatory and contractual security and privacy requirements
  • Build and maintain compliance certifications (ISO 27001, ISO 22301, NIST 800-53, ISO27701, SOC 2, GDPR, CCPA)
  • Liaise with external auditors and regulators to drive assurance programs
  • Communicate control implementation, audit results, compliance metrics, risks, and improvements to stakeholders and leadership
  • Serve as advisor on audit remediation issues and manage cross-functional GRC requirements to translate them into a GRC tool

Technical Overview

The position centers on Governance, Risk, and Compliance (GRC) execution, including mapping security controls to ISO 27001, ISO 22301, NIST 800-53, ISO27701, SOC 2, GDPR, and CCPA requirements. You will translate cross-functional GRC requirements into a GRC tool and manage compliance gaps through remediation and control implementation tracking.

Ideal Candidate

The ideal candidate is an individual contributor experienced in Governance, Risk, and Compliance (GRC) programs, including building and maintaining compliance certifications like ISO 27001, ISO 22301, NIST 800-53, SOC 2, GDPR, and CCPA. They can assess control and process maturity, identify compliance gaps, and drive remediation through to completion while partnering with external auditors and regulators.

Must-Have Skills

GovernanceRiskand Compliance (GRC)Design and drive scalable processes within a GRC (GovernanceRiskand Compliance) frameworkBuilding and maintaining compliance certifications such as ISO 27001Liaise with external auditors and regulatorsAssess the maturity of processes and controlsAssess compliance gaps and readiness and drive remediation activities to completion

Tools & Platforms

GRC tool

Required Skills

GovernanceRiskand Compliance (GRC)ISO 27001ISO 22301NIST 800-53ISO27701SOC 2GDPRCCPAsecurity controlscompliance gapscompliance readinessremediation strategiesaudit remediationexternal auditorsregulatorsGRC toolsecurity and privacy requirementsprocess and controls maturity

Hard Skills

GovernanceRiskand Compliance (GRC)Security and privacy requirementscompliance certifications such as ISO 27001ISO 27001ISO 22301NIST 800-53ISO27701SOC 2GDPRCCPAsecurity controlsassessing compliance gaps and readinessremediation strategiesaudit remediationcompliance program metricsGRC tool translationcross-functional compliance requirements managementliaising with external auditorsliaising with regulatorsdesign and execute security or compliance programsprocess and controls maturity assessment

Soft Skills

collaborationstakeholder communicationleadership communicationadvising on remediation issuesproblem solvingcomfortable hands-on day-to-day problem solvingcoordinating improvement effortsseeking diverse opinions

Certifications

Preferred

ISO 27001ISO 22301NIST 800-53ISO27701SOC 2GDPRCCPA

Industry & Role

Industry Aerospace
Job Function Lead GRC security compliance and assurance program execution for Amazon Leo.
Role Subtype Compliance Analyst
Tech Domains Cybersecurity

Keywords for Your Resume

Security Compliance SpecialistAmazon Leo Security AssuranceGovernanceRiskand Compliance (GRC)GRCISO 27001ISO 22301NIST 800-53ISO27701SOC 2GDPRCCPAsecurity controlscompliance gapscompliance readinessremediationaudit remediationexternal auditorsregulatorssecurity and privacy requirementsGRC toolprocess and controls maturity

Deal Breakers

Must meet Export Control Requirement: be a U.S. citizen or national, U.S. permanent resident (current Green Card holder), or lawfully admitted into the U.S. as a refugee or granted asylum

Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile