As part of the Risk and Compliance Remediation (RCR) team within AWS Compliance Security Assurance, you'll serve as a strategic compliance risk advisor, providing opinionated risk evaluations and ...
As part of the Risk and Compliance Remediation (RCR) team within AWS Compliance Security Assurance, you'll serve as a strategic compliance risk advisor, providing opinionated risk evaluations and ...
As part of the Risk and Compliance Remediation (RCR) team within AWS Compliance Security Assurance, you'll serve as a strategic compliance risk advisor, providing opinionated risk evaluations and ...
As part of the Risk and Compliance Remediation (RCR) team within AWS Compliance Security Assurance, you'll serve as a strategic compliance risk advisor, providing opinionated risk evaluations and ...
As part of the Risk and Compliance Remediation (RCR) team within AWS Compliance Security Assurance, you'll serve as a strategic compliance risk advisor, providing opinionated risk evaluations and ...
As part of the Risk and Compliance Remediation (RCR) team within AWS Compliance Security Assurance, you'll serve as a strategic compliance risk advisor, providing opinionated risk evaluations and ...
About the team Security Risk Analytics (SRA) sits within AWS Security Risk and Compliance (SRC) and operates under the Compliance Operations and Regulatory Response (CORR) organization. SRA is ...
About the team Security Risk Analytics (SRA) sits within AWS Security Risk and Compliance (SRC) and operates under the Compliance Operations and Regulatory Response (CORR) organization. SRA is ...
Program Manager I, AWS Security & Risk Compliance, AWS Compliance & Security Assurance
Herndon, VA · On-site
About the team Security Risk Analytics (SRA) sits within AWS Security Risk and Compliance (SRC) and operates under the Compliance Operations and Regulatory Response (CORR) organization. SRA is ...
Program Manager I, AWS Security & Risk Compliance, AWS Compliance & Security Assurance
Herndon, VA · On-site
About the team Security Risk Analytics (SRA) sits within AWS Security Risk and Compliance (SRC) and operates under the Compliance Operations and Regulatory Response (CORR) organization. SRA is ...
Program Manager I, AWS Security & Risk Compliance, AWS Compliance & Security Assurance
Herndon, VA · On-site
About the team Security Risk Analytics (SRA) sits within AWS Security Risk and Compliance (SRC) and operates under the Compliance Operations and Regulatory Response (CORR) organization. SRA is ...
Program Manager I, AWS Security & Risk Compliance, AWS Compliance & Security Assurance
Herndon, VA · On-site
About the team Security Risk Analytics (SRA) sits within AWS Security Risk and Compliance (SRC) and operates under the Compliance Operations and Regulatory Response (CORR) organization. SRA is ...
Mobility Global is developing and building its third-party governance framework to support regulatory compliance, information security, and enterprise risk management. Reporting to the Global Head of ...
Mobility Global is developing and building its third-party governance framework to support regulatory compliance, information security, and enterprise risk management. Reporting to the Global Head of ...
Procurement Risk & Compliance Lead
Centreville, VA · On-site
$155K/yr
Mobility Global is developing and building its third-party governance framework to support regulatory compliance, information security, and enterprise risk management. Reporting to the Global Head of ...
Procurement Risk & Compliance Lead
Centreville, VA · On-site
$155K/yr
Mobility Global is developing and building its third-party governance framework to support regulatory compliance, information security, and enterprise risk management. Reporting to the Global Head of ...
A financial services firm in Vienna, Virginia, is seeking a Risk and Compliance Systems Analyst to oversee security and compliance within an Oracle ERP Fusion environment. For more information please ...
A financial services firm in Vienna, Virginia, is seeking a Risk and Compliance Systems Analyst to oversee security and compliance within an Oracle ERP Fusion environment. For more information please ...
Audit Compliance Analyst
Lynchburg, VA · On-site
$62 - $67/hr
Partner with Information Security, Risk, Compliance, Legal, Internal Audit, IT, and business teams to support enterprise governance initiatives. * Coordinate and automate policy lifecycle activities ...
Quick apply
Audit Compliance Analyst
Lynchburg, VA · On-site
$62 - $67/hr
Partner with Information Security, Risk, Compliance, Legal, Internal Audit, IT, and business teams to support enterprise governance initiatives. * Coordinate and automate policy lifecycle activities ...
The Information Technology and Information Security Risk (IT/IS) Sr. Manager plays a critical ... This person will partner with business lines, IT, and compliance teams to maintain a strong ...
Quick apply
The Information Technology and Information Security Risk (IT/IS) Sr. Manager plays a critical ... This person will partner with business lines, IT, and compliance teams to maintain a strong ...
Fielding and addressing requests in collaboration with internal stakeholders across a security, risk, and compliance function at AWS. Dive deep into the AWS control environment to develop broad ...
Fielding and addressing requests in collaboration with internal stakeholders across a security, risk, and compliance function at AWS. Dive deep into the AWS control environment to develop broad ...
Fielding and addressing requests in collaboration with internal stakeholders across a security, risk, and compliance function at AWS. Dive deep into the AWS control environment to develop broad ...
Fielding and addressing requests in collaboration with internal stakeholders across a security, risk, and compliance function at AWS. Dive deep into the AWS control environment to develop broad ...
Audit Compliance Analyst
Richmond, VA · On-site +1
$125K/yr
Collaborate with Information Security, Risk, Compliance, Legal, Audit, IT, and business stakeholders to support enterprise policy and compliance initiatives * Operationalize and automate policy and ...
Audit Compliance Analyst
Richmond, VA · On-site +1
$125K/yr
Collaborate with Information Security, Risk, Compliance, Legal, Audit, IT, and business stakeholders to support enterprise policy and compliance initiatives * Operationalize and automate policy and ...
As part of the team, you will be responsible for conducting risk assessments across our security controls product to ensure readiness of new tools with external compliance obligations. You will ...
As part of the team, you will be responsible for conducting risk assessments across our security controls product to ensure readiness of new tools with external compliance obligations. You will ...
Audit & Compliance Analyst IV (Lead)
Lynchburg, VA · Hybrid
$62 - $67/hr
Partner with Information Security, Risk, Compliance, Legal, Internal Audit, IT, and business teams to support enterprise governance initiatives. * Coordinate and automate policy lifecycle activities ...
Quick apply
Apply Early
Audit & Compliance Analyst IV (Lead)
Lynchburg, VA · Hybrid
$62 - $67/hr
Partner with Information Security, Risk, Compliance, Legal, Internal Audit, IT, and business teams to support enterprise governance initiatives. * Coordinate and automate policy lifecycle activities ...
Apply Early
Audit & Compliance Analyst IV (Lead)
Lynchburg, VA · Hybrid
$62 - $67/hr
Partner with Information Security, Risk, Compliance, Legal, Internal Audit, IT, and business teams to support enterprise governance initiatives. * Coordinate and automate policy lifecycle activities ...
Audit & Compliance Analyst IV (Lead)
Lynchburg, VA · Hybrid
$62 - $67/hr
Partner with Information Security, Risk, Compliance, Legal, Internal Audit, IT, and business teams to support enterprise governance initiatives. * Coordinate and automate policy lifecycle activities ...
Audit & Compliance Analyst IV (Lead)
Lynchburg, VA · Hybrid
$62 - $67/hr
Partner with Information Security, Risk, Compliance, Legal, Internal Audit, IT, and business teams to support enterprise governance initiatives. * Coordinate and automate policy lifecycle activities ...
Audit & Compliance Analyst IV (Lead)
Lynchburg, VA · Hybrid
$62 - $67/hr
Partner with Information Security, Risk, Compliance, Legal, Internal Audit, IT, and business teams to support enterprise governance initiatives. * Coordinate and automate policy lifecycle activities ...
This position is a Finance Technology Security & Controls Analyst/Business Systems Analyst role focused on Oracle ERP Fusion security , risk monitoring, and compliance operations within a Finance ...
This position is a Finance Technology Security & Controls Analyst/Business Systems Analyst role focused on Oracle ERP Fusion security , risk monitoring, and compliance operations within a Finance ...
This position is a Finance Technology Security & Controls Analyst/Business Systems Analyst role focused on Oracle ERP Fusion security, risk monitoring, and compliance operations within a Finance ...
This position is a Finance Technology Security & Controls Analyst/Business Systems Analyst role focused on Oracle ERP Fusion security, risk monitoring, and compliance operations within a Finance ...
Security Risk Compliance information
See Virginia salary details
$32.2K - $40.4K
6% of jobs
$40.4K - $48.6K
0% of jobs
$48.6K - $56.8K
6% of jobs
$62.7K is the 25th percentile. Wages below this are outliers.
$56.8K - $65K
17% of jobs
The median wage is $72.8K / yr.
$65K - $73.2K
21% of jobs
$73.2K - $81.4K
7% of jobs
$81.4K - $89.6K
9% of jobs
$89.6K - $97.8K
7% of jobs
$98.2K is the 75th percentile. Wages above this are outliers.
$97.8K - $106K
12% of jobs
$106K - $114.2K
6% of jobs
$114.2K - $122.4K
7% of jobs
$32.2K
$80.4K
$122.4K
How much do security risk compliance jobs pay per year?
What is the difference between Security Risk Compliance vs Security Analyst?
| Aspect | Security Risk Compliance | Security Analyst |
|---|---|---|
| Certifications | ISO 27001 Lead Implementer, CISSP, CISA | CISSP, CompTIA Security+, GIAC Security Certifications |
| Work Environment | Policy development, compliance audits, risk assessments | Monitoring security systems, incident response, vulnerability analysis |
| Employer & Industry Usage | Financial, healthcare, government sectors focusing on regulatory adherence | IT departments across various industries focusing on security operations |
Security Risk Compliance professionals focus on ensuring organizations meet regulatory standards and manage security risks through policies and audits. Security Analysts primarily monitor security systems, analyze threats, and respond to incidents. While both roles require security certifications and work within similar environments, their core responsibilities differ: compliance versus active security monitoring.
What are some common challenges faced by Security Risk Compliance professionals when balancing regulatory requirements with business objectives?
What are the key skills and qualifications needed to thrive as a Security Risk Compliance professional, and why are they important?
What is Security Risk Compliance?
Full-time
Posted 26 days ago
Amazon rating
7.4
Based on 6,925 frontline employees who took The Breakroom Quiz
6th of 39 rated national retailers
Job description
At AWS, Security is priority zero. As part of the Amazon Web Services (AWS) Security team, we are looking for an experienced Senior Security Industry Specialist who is passionate about transforming how AWS identifies, evaluates, and resolves security compliance risk. As part of the Risk and Compliance Remediation (RCR) team within AWS Compliance Security Assurance, you'll serve as a strategic compliance risk advisor, providing opinionated risk evaluations and driving proactive remediation strategies that eliminate systemic security compliance risks before they reach auditors, customers, or regulators.
This role requires deep expertise in security compliance frameworks (SOC, PCI, ISO, NIST, FedRAMP), audit standards, and the ability to translate complex regulatory requirements into actionable risk mitigation strategies
You'll work across AWS organizations to influence remediation priorities, own risk acceptance frameworks, and advise senior leadership on compliance posture.
Key job responsibilities
In this role, you will:
Provide opinionated, defensible risk evaluations of security compliance findings in partnership with audit program managers, determining when to remediate, deflect, negotiate with auditors, or recommend risk acceptance
Advise Directors and VPs on compliance risk posture, including how concerned leadership should be and how hard to push prioritization on remediation efforts
Develop and maintain the risk acceptance framework, documenting rationale, escalation thresholds, and leadership communication for accepted risks, with structured tracking of outcomes over time
Serve as theme owner for compliance framework and process root, identifying systemic patterns across recurring findings and driving interventions that eliminate root causes across AWS services simultaneously
Lead cross-organizational initiatives to resolve endemic compliance gaps that generate repeated audit findings, working with Security Engineers and Technical Program Managers to synthesize technical, operational, and compliance perspectives into unified risk recommendations
Develop deep understanding of highly regulated customer requirements across government, healthcare, financial services, and telecommunications sectors, translating audit findings and regulatory obligations into actionable compliance requirements for AWS service teams
Track remediation method intelligence and build repeatable playbooks for successfully managing auditor expectations, maintaining structured records of management responses and mitigation outcomes to build institutional knowledge
Contribute to triage systems and risk assessment frameworks that scale RCR's advisory capabilities, developing metrics and reporting that provide leadership with forward-looking compliance risk visibility
Mentor and contribute to the development of junior team members across the organization
About the team
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.
Why Amazon Security?
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences
Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
Inclusive Team Culture
In Amazon Security, it's in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness
Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.
Training & Career Growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture
When we feel supported in the workplace and at home, there's nothing we can't achieve.
About Amazon
Sourced by ZipRecruiter
Amazon.com, Inc., commonly known as Amazon, is an American multinational technology company. It was founded by Jeff Bezos in 1994 and initially started as an online marketplace for books. Since then, Amazon has expanded its operations and become one of the largest e-commerce companies in the world. Amazon's primary business is its online retail platform, where customers can purchase a vast array of products, including electronics, clothing, books, home goods, and much more. The company offers a convenient and user-friendly shopping experience, with features such as fast shipping, customer reviews, and personalized recommendations. In addition to its e-commerce platform, Amazon has diversified its business into various other areas. One of its notable ventures is Amazon Web Services (AWS), a comprehensive cloud computing platform that provides services such as storage, compute power, and database management to individuals and businesses. AWS has become a leader in the cloud computing industry, powering many websites and applications worldwide. Amazon has also developed its own consumer electronics, including the popular Amazon Kindle e-reader, Fire tablets, Fire TV streaming devices, and the Alexa-powered Echo smart speakers. The Alexa voice assistant, integrated into these devices, allows users to interact with their devices using voice commands, perform tasks, and access information. Furthermore, Amazon has expanded into media and entertainment. It operates Prime Video, a streaming service that offers a wide range of movies, TV shows, and original content. Amazon Music provides a platform for streaming and purchasing digital music, while Audible offers audiobooks and other audio content. The company's commitment to customer satisfaction and convenience is demonstrated by its membership program, Amazon Prime. Prime members receive various benefits, including free two-day shipping, access to streaming services, exclusive deals, and more.
Industry
It services, book publishers, retail, real estate and computer and electronic product manufacturing
Company size
10,000+ Employees
Headquarters location
Seattle, WA, US