Sr. Risk Manager, Leo Global Service Compliance

Amazon•Arlington, VA

1d•$121,200 - $163,900•Onsite

About The Position

We are seeking a Sr. Risk Manager to own and mature the risk, controls, and compliance framework within Amazon Leo's Global Service Compliance (GSC) organization, with a focus on Network and Security compliance obligations. Amazon Leo is an initiative to launch a constellation of Low Earth Orbit satellites that will provide low-latency, high-speed broadband connectivity to unserved and underserved communities around the world. We are seeking a Sr. Risk Manager to own and mature the risk and controls framework within our regulatory security and network compliance portfolio. This leader will identify, assess, and mitigate security and compliance risks across regulated product and service lines by designing scalable control environments, driving continuous risk monitoring, and ensuring adherence to applicable regulatory obligations. This individual will assess complex, competing priorities across security and network controls, regulatory obligations, and business timelines; making informed trade-offs that balance compliance rigor with operational agility. The role requires deep expertise in building risk-based control structures within highly regulated environments, partnering with security engineering, legal, and compliance teams to embed proactive risk management into operational processes. The ideal candidate brings a strong foundation in regulatory frameworks, control design and testing, and the ability to translate complex risk landscapes into actionable mitigation strategies and executive-ready reporting. We are looking for someone who is enthusiastic about technology, enjoys being continually challenged, and demonstrates sound judgment even in ambiguous situations.

Requirements

Experience in understanding performance metrics and developing them to measure progress against key performance indicators
Experience leading enterprise-level governance, risk and compliance (GRC) programs.
Experience assessing risk, internal controls, and compliance obligations
Experience owning end-to-end internal control lifecycle for Network and Security compliance domains.
6+ years of compliance, audit or risk management experience
U.S. citizen or national, U.S. permanent resident (i.e., current Green Card holder), or lawfully admitted into the U.S. as a refugee or granted asylum.

Nice To Haves

Experience dealing well with ambiguity, prioritizing needs, and delivering measurable results in an agile environment
Experience working within a technology or telecommunications organization.

Responsibilities

Creating and implementing a compliance control framework and owning the end-to-end internal control lifecycle for Network and Security compliance domains.
Determine appropriate testing cadence for controls, executing testing, completing quality reviews, and preparing performance reports to clearly communicate results to leadership.
Developing and continuously improving strategies to identify ineffective controls and create solutions that are scalable and right-sized.
Engage with internal teams and external stakeholders to proactively define and implement mitigations.
Use high judgement to provide recommendations to the organization to solve ambiguous, complex business problems.
Evaluate competing demands across internal control workstreams, regulatory timelines, and business objectives. Frame trade-offs clearly for leadership, recommend risk acceptance or mitigation paths, and document residual risk decisions with appropriate escalation.

Benefits

health insurance (medical, dental, vision, prescription, Basic Life & AD&D insurance and option for Supplemental life plans, EAP, Mental Health Support, Medical Advice Line, Flexible Spending Accounts, Adoption and Surrogacy Reimbursement coverage)
401(k) matching
paid time off
parental leave
sign-on payments
restricted stock units (RSUs)

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume