.Governance Risk and Compliance Manager, AWS SecurityJob ID: 2696776 | Amazon Web Services Australia Pty LtdAmazon Web Services (AWS) is the leading cloud service provider, providing virtualised infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises to large government customers, run their operations and applications on AWS' highly secure infrastructure.AWS Security is looking for a Security Assurance Manager to lead and manage the certification, accreditation, assurance, and authorisation activities across the security program. You will establish and execute the overall strategy to achieve the overall milestone for the program. The successful candidate is a strategic thinker, with a deep understanding of the regulatory landscape, solid understanding of cloud technologies, experience in security and compliance, and demonstrated success in driving innovative strategies to overcome complex policies and obstacles to cloud assurance and authorisation. You will be responsible for ensuring the security of AWS services, which will lead towards achieving the overall milestone outcomes for a region. Additionally, you will be a thought leader and will be sought out for your expertise as you invent and innovate in the course of your duties.Key job responsibilitiesServe as the Security Assurance leader for all components within the cloud capability, guiding and overseeing assurance and authorization activities to ensure adherence to standards and protocols.Collaborate with internal teams and customers to establish baselines and level-set the security requirements, security controls, and security objectives.Develop and implement strategies to drive security outcomes across the cloud capability, determining the methodology for collecting evidence for submission and ensuring compliance with relevant frameworks.Implement ISM, PSPF, DSPF, ASIO T4, NIST and/or other security compliance frameworks into design and build baselines to achieve the agreed security posture.Create, optimise, and support cross-functional working groups and projects aimed at enhancing security efficiency and effectiveness across the organization.Utilise domain expertise to develop thought leadership material on cloud and emerging technologies, contributing to the organization's knowledge base and industry positioning.Manage tight deadlines and drive results, demonstrating exceptional attention to detail and ensuring accuracy in all aspects of security management.Hold or be able to attain an Australian Government Security Vetting Agency clearance (see here).A day in the lifeIn your day-to-day you will need to exercise sound judgment in making trade-offs between short versus long term security and business goals