Devices and Services Trust, Privacy, and Accessibility (TPA) is responsible for maintaining and raising the trust bar for Amazon customers across a diverse set of 30+ Devices and Services (D&S). TPA offers horizontal services for builders to ensure trust, privacy, and accessibility is built into our products and services. We also build customer-facing capabilities that provide customers with control and transparency and reduce privacy risk, while enabling partner teams to innovate with appropriate guardrails for content moderation, privacy, accessibility, and trust.
TPA is seeking a Privacy Specialist to document and assess privacy controls and hold owners accountable for their effectiveness and health. The ideal candidate should feel excited and empowered to solve complex problems to protect customer privacy, hold control owners accountable for enforcement outcomes, and assess, record, track, and report our compliance posture to senior executives and regulators. The ideal owner is detail-oriented and has excellent writing, critical thinking, and project and stakeholder management skills.
Key job responsibilities
Responsibilities include working with senior team members, builders, engineer, product, legal, PR, marketing, and other privacy and security teams across Amazon to:
- Document privacy controls, map them to customer promise and policy requirements, and develop a risk-based, prioritized testing plan
- Develop test plans for privacy controls in coordination with counsel, PR, product owners, technical program managers, and software development engineers
- Conduct assessments of privacy controls to evaluate their operational effectiveness
- Validate that privacy controls align with our customer promises and internal policies
- Identify gaps in privacy control implementations and recommend corrective actions
- Drive corrective actions to closure by establishing owners, dates, and escalating effectively to leaders
- Draft, publish, and regularly update privacy policies and standards to align with findings
- Conduct change management to ensure awareness and implementation of privacy requirements
- Monitor privacy regulations, industry frameworks and best practices, and business developments to update or create privacy requirements as needed
- Raise business awareness of privacy requirements
- Assess and monitor the health and performance of privacy requirements implementation
A day in the life
This is an inherently cross-functional role where you will work directly with engineers, product managers, policy and compliance specialists, legal, PR, marketing, and other Amazon builders to help them identify the need for new or changed privacy policies and hold them accountable for implementing mechanisms to enforce them. You will use your investigative and/or analytical experience and demonstrate your excellent writing skills and experience driving alignment among diverse stakeholders. You should be comfortable working in a fast-paced, rapidly evolving environment with fast delivery time, rapid iteration, and data-driven decision-making.
About the team
This role is a part of Trust Fundamentals’ Privacy GRC team within TPA. Our GRC team is dedicated to supporting new members. We have a broad mix of experience levels and tenures, and are building an environment that celebrates knowledge sharing and mentorship. We care about your career growth and strive to assign projects based on what will help each team member develop into a better-rounded professional enabled to take on increasingly complex tasks as their careers progress.
