The individual in SIS-Gaps role leverages advanced fraud prevention, risk management, technical, and analytical skills to identify, mitigate, and prevent risk across Seller and Buyer journey events. To that end, the SIS is the subject matter expert in multiple tools/services (internal or externally licensed) to assess risk and propose solutions to stakeholders. Additionally, the individual in the role has in-depth understanding of security policies, privacy controls, and risk mitigation/prevention techniques. The SIS creates scalable, and continuous mechanisms which clearly articulate policy requirements and the root causes of abuse risks related to their work with Amazon’s business and engineering teams.
The scope of the SIS role is defined to protect Amazon’s business information and safeguard Customers’ trust, includes working closely with investigators and risk managers to identify and communicate root causes of gaps and leverage those learnings to support mitigation and prevention solution launches and post-launch monitoring.
The SPI-Gaps risk mitigation and prevention space is complex. Multiple sources including but not limited to, Systems, User Interfaces, Policies, Standard Operating Procedures, Guided Workflows, Permission Rules, Contextual Access Control, Audit Mechanisms etc. To that end, the SIS is solely responsible to leverage technical, security, risk management and program management skills to influence strategies and align across multiple teams within the org. The individual partners across different teams with different goals to deep dive risks and vulnerabilities in complex business workflows and regulatory requirements.
Key job responsibilities
Deep Dive risks and vulnerabilities using complex data sets (SQL, Python, R etc.). • Use high-level judgment to own our most complex risk mitigation and prevention initiatives. • Identify gaps and risks in Amazon's current mechanisms and policies and recommend solutions to engineering and stakeholder teams. • Use data and advanced technical skills to discover and create new ways to scale risk signals resulting in the identification of abuse risk. • Break problems into manageable pieces, meticulously prioritizing, and delivering results in an ambiguous and constantly changing environment. • Conduct large scale deep dives to derive insights about abuse, identifying gaps and risk in Amazon's current mechanisms, systems, and policies. • Discover solutions and convey detailed technical knowledge (verbally, in writing, and via diagram) to engineering, legal, and program/product management teams
A day in the life
Deep dive gap root causes and learn the mechanics, partner teams, and requirements.
Propose and gain alignment on mitigation and prevention plan with engineering teams, data teams, partner teams, and stakeholders.
Launch, monitor and communicate with stakeholders about the progress of current mitigation and prevention.
Influence stakeholders to adopt, integrate, or fix gaps in order to allow sunsetting of existing mitigations.
Monitor reporting of established mechanisms and evaluate for effectiveness.
Inspect metrics and anecdotes to find false positives and false negatives, then develop improvements to address misses.
Listen, learn, engage, communicate, execute, analyze, and influence.
About the team
The Special Projects and Investigations (SPI) team designs and implements policies, tools and technology innovations to protect customers by identifying and preventing abuse worldwide. Our growth requires highly skilled candidates who move fast, have an entrepreneurial spirit to create new solutions, a tenacity to get things done, and are capable of breaking down and solving complex problems. We value individual expression, respect different opinions, and work together to create a culture where each of us is able to contribute fully. Our unique backgrounds and perspectives strengthen our ability to achieve Amazon's mission of being Earth's most customer-centric company. Our team is comprised of experts in risk domains such as fraud, cybersecurity, data security, insider risk, regulatory compliance, etc. with a strong dependence on data analysis and or technical skills. We complement specialized industry skills with broad risk experiences to deliver results. We make mistakes, learn from them, and support each other. Our work is to solve hard puzzles - typically with data and always with a lot persistence and curiosity. If you like the sound of that, come join us.
