Risk Manager, Compliance Second Line of Defense, Global Operations Enterprise Services

About the role

Amazon's Global Operations Enterprise Services (GOES) Compliance & Data Integrity (CDI) vertical is seeking a driven and detail-oriented Risk Manager to support the Compliance Second Line of Defense (2LOD) function. CDI's 2LOD provides continuous, independent verification that compliance standards are being met accurately and completely across CDI's full infrastructure portfolio, operating between Internal Audit cycles to maintain a live compliance posture at scale. This role owns difficult compliance assurance programs and risk projects within a defined strategy, partnering across teams to ensure ongoing audit readiness, manage finding remediation, and drive control improvements that strengthen portfolio-wide compliance health. This is an individual contributor role on a globally dispersed team. A successful candidate will be comfortable operating in ambiguity, treating unclear problems as opportunities to define the right approach rather than waiting for direction. They have solid risk or compliance experience, strong organizational skills, and the ability to manage cross-functional projects independently while seeking guidance as needed. The candidate should demonstrate comfort working with regulatory and audit frameworks, an ability to influence partner teams through data-driven documentation, and a track record of driving programs to completion. Key job responsibilities Program Ownership & Execution - Own difficult compliance assurance programs and projects where the strategy is defined but the specific business problem or solution may not be fully defined - Lead cross-functional project execution, including assurance planning, evidence gathering, walkthrough coordination, and information request management within assigned program areas - Build and maintain working-back schedules, status trackers, and decision logs that keep your programs running with minimal manager intervention - Manage program schedules, overcome blockers, keep scope under control, and accelerate progress by driving timely decisions - Track remediation progress for findings within your program area, ensuring closure is sustainable, well-documented, and treated as a system improvement rather than a one-time correction - Test and measure the effectiveness of controls within your program scope on a continuous basis, identifying and escalating gaps in risk assessment methodology or control design - Support the shift from manual, episodic audit workflows toward more consistent, repeatable assurance processes within your program area Risk Assessment & Decision Support - Identify key performance indicators for assigned assurance programs and track progress against them, with an emphasis on continuous compliance health rather than point-in-time readiness - Understand risk tolerance levels within your program area and make data-driven recommendations to partner teams - Use lateral thinking to navigate problems where the obvious path is blocked, bringing alternative approaches rather than waiting for direction - Prevent or mitigate consequences of decisions that could drive compliance risk above acceptable tolerance levels across your portfolio scope - Recognize when a proposed solution or remediation approach is too complex or risky, exercising judgement on which decisions to escalate as needed (high-stakes, cross-team, one-way doors) and which to make independently Cross-Functional Partnership - Work across CDI functions to gather assurance evidence, coordinate responses, and ensure findings are routed back into compliance execution priorities - Partner with Internal Audit to support fieldwork activities and respond accurately to audit inquiries, representing the independent assurance posture CDI maintains between audit cycles - Help partner teams adopt and maintain risk-reducing controls through data-driven documentation, such as legislation interpretation, competitor analysis, and cost-of-avoidance analysis - Contribute to assurance frameworks, evidence repositories, and finding remediation tracking systems maintained by the 2LOD team - Build strong working relationships with remote colleagues across time zones Communication & Stakeholder Management - Manage program-level communications, serving as a point of contact for assurance-related questions and escalations within your scope - Deliver clear, concise written and verbal updates on assurance status, finding remediation, and program risks to relevant stakeholders, reflecting current compliance posture rather than historical reporting - Contribute to and deliver program documentation including narratives, escalation responses, risk assessments, and remediation plans - Develop and deliver compliance assurance training to partner teams and peers where applicable Process Improvement & Operational Excellence - Identify opportunities to improve assurance processes, cross-team controls, and remediation workflows within your program area, with an emphasis on reducing manual dependencies and i

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at Amazon.com LLC? Share your experience