Risk Manager, AWS Risk Management

About The Position

Requirements

• Bachelor's degree or equivalent
• 6+ years of compliance, audit or risk management experience
• Experience in auditing, risk management, compliance, program management, or quality management systems
• Experience managing multiple projects and meeting aggressive deadlines
• Experience in written and verbal communication with the ability to present complex technical information in a clear and concise manner to executives and non-technical leaders
• Demonstrated understanding of ERM and/or TPRM frameworks

Nice To Haves

• Professional auditing qualification, or similar risk or compliance credentials
• Experience with SQL and Excel
• Experience with IT compliance and risk management requirements (e.g. security, privacy, SOX, HIPAA etc.)
• Experience with cloud, server or infrastructure technologies and business models
• CISSP, CISA, CISM or other security certification
• Familiarity with one or more of the following regulatory regimes: DORA, UKCTP, US Federal Banking Agency requirements, or equivalent financial services regulations

Responsibilities

• Serve as the primary owner for inbound customer audit requests and regulatory inquiries, ensuring responses are accurate, appropriately scoped, and delivered on time.
• Interpret audit and regulatory requests through the lens of AWS's ERM and TPRM programs to ensure responses are neither over-disclosed nor under-responsive.
• Maintain working knowledge of key regulatory regimes impacting AWS globally, including DORA (EU), UKCTP (UK), and FBAs (US), and any regime requiring ERM or TPRM program involvement.
• Own end-to-end tracking of all active audit and regulatory requests, maintaining a centralized log with status, owners, deadlines, and escalation flags.
• Drive accountability across stakeholders through structured project management practices.
• Collaborate cross-functionally with Legal, Compliance, Security, and Finance teams to gather and validate response content.
• Identify patterns across audit requests to surface systemic risks or documentation gaps, and contribute to the development of reusable response frameworks to improve efficiency and consistency.

Benefits

• health insurance (medical, dental, vision, prescription, Basic Life & AD&D insurance and option for Supplemental life plans, EAP, Mental Health Support, Medical Advice Line, Flexible Spending Accounts, Adoption and Surrogacy Reimbursement coverage)
• 401(k) matching
• paid time off
• parental leave