At Audible, we believe stories have the power to transform lives. It’s why we work with some of the world’s leading creators to produce and share audio storytelling with our millions of global listeners. We are dreamers and inventors who come from a wide range of backgrounds and experiences to empower and inspire each other. Imagine your future with us.

ABOUT THIS ROLE:

As a Senior Technical Program Manager focused on Business Risk for Audible's Content organization, you'll serve as a strategic risk advisor to one of Audible's most critical business functions. The Content organization is responsible for building and maintaining Audible's content catalog—partnering with publishers, content providers, and vendors to deliver the audiobooks and content that millions of listeners enjoy. In this pivotal role, you'll work directly with Content organization senior leaders to help them understand the risks they face across security, fraud, content piracy, data protection, and operational domains.

You will leverage Audible's existing risk management frameworks—including established security, fraud defense, piracy prevention, and data regulation programs—to help the Content organization understand their risk exposure and make informed risk remediation decisions. You'll conduct comprehensive assessments of the Content organization's business processes, vendor relationships, and technology stack to identify risks and guide the organization toward established paved path solutions. Your deep understanding of the Content organization's strategy and roadmap will enable you to position risk management as a business enabler, helping the organization scale safely and achieve its growth objectives. You'll own risk reporting for the Content organization, providing transparency and insights that drive risk-informed decision-making at the leadership level.

ABOUT YOU
You thrive at the intersection of risk advisory and business enablement. You see risk not as a blocker but as a strategic lens that helps organizations grow safely and sustainably. You excel at building trusted relationships with senior business leaders, translating complex risk concepts into business language, and guiding organizations toward pragmatic solutions. You're naturally curious about how businesses operate—their processes, vendors, technologies, and strategic goals—and you use this understanding to provide contextual, actionable risk guidance. Transparency and consistency define your communication skills with both technical and non-technical audiences. You're meticulous in your approach to risk assessment while pragmatic in balancing risk mitigation with business goals. Your security background enables you to speak credibly with security teams and understand the technical nuances of risk across all domains.

• As a Senior Technical Program Manager, you will...
• Serve as the primary risk advisor to Audible's Content organization senior leadership, building trusted relationships and helping leaders understand risks across security, fraud, content piracy, data protection, and operational domains
• Partner with Content organization leaders to understand their business processes, vendor relationships, and technology stack, conducting comprehensive risk assessments to identify exposures across multiple risk domains
• Leverage Audible's established risk management programs (security, fraud defense, piracy prevention, data regulations) to help the Content organization understand their risk posture and guide them toward proven paved path solutions rather than building new programs
• Work closely with Content organization teams to assess risks associated with their content acquisition processes, publisher and vendor partnerships, content management systems, and technology platforms
• Guide the Content organization in onboarding to established paved path solutions for security, fraud prevention, data protection, and operational risk management, facilitating adoption and ensuring successful implementation
• Develop deep understanding of the Content organization's business strategy, roadmap, and growth objectives to position risk management as an enabler of business success rather than a barrier
• Identify opportunities where risk mitigation can help the Content organization scale more effectively, enter new markets safely, or accelerate strategic initiatives
• Own risk reporting for the Content organization, developing and maintaining risk metrics, dashboards, and executive reporting that provide transparency into the organization's risk posture
• Facilitate risk remediation decision-making by presenting risk information clearly to senior leaders, outlining options, trade-offs, and recommendations
• Collaborate with cross-functional risk, security, fraud, legal, privacy, and compliance teams to ensure the Content organization has access to expert guidance and established solutions
• Proactively identify emerging risks related to the Content organization's evolving business model, new vendor relationships, technology changes, or market expansion
• Serve as a bridge between the Content organization and Audible's risk management, security, fraud defense, and compliance teams, ensuring alignment and efficient use of resources
• Communicate risk posture, assessment findings, remediation progress, and program updates consistently and transparently to Content organization leadership and cross-functional stakeholders
• Apply technical program management discipline to risk initiatives, managing timelines, dependencies, stakeholder communications, and ensuring delivery of risk mitigation solutions

ABOUT AUDIBLE
Audible is the leading producer and provider of audio storytelling. We spark listeners’ imaginations, offering immersive, cinematic experiences full of inspiration and insight to enrich our customers daily lives. We are a global company with an entrepreneurial spirit. We are dreamers and inventors who are passionate about the positive impact Audible can make for our customers and our neighbors. This spirit courses throughout Audible, supporting a culture of creativity and inclusion built on our People Principles and our mission to build more equitable communities in the cities we call home.

Basic Qualifications

• 5+ years of technical product or program management experience
• BS in Cybersecurity, Information Security, Computer Science, Engineering, or other relevant degree
• 6+ years of experience in cyber and information security functions, including areas such as Governance, Risk and Controls (GRC), security risk management, Privacy, insider threat, identity and access management, third-party risk, incident response, threat modeling, and security assessments
• Experience working with or within security teams and demonstrated understanding of information security concepts, practices, and frameworks
• Understanding of AI/ML technologies and associated risks, including experience assessing risks related to AI systems, generative AI applications, data privacy in AI contexts, model security, and responsible AI practices
• Experience conducting risk assessments across multiple domains including security, fraud, data protection, operational risk, and emerging technology risks (including AI/ML)
• 5+ years of technical program management working directly with software engineering teams, business operations teams, and cross-functional stakeholders
• 2+ years of experience in a risk management or information security leadership role
• Understanding of risk mitigation and risk issue management, policy and standards, security and risk frameworks (e.g., NIST, ISO, COSO, NIST AI RMF, etc.), and business risk management
• Experience working with business organizations to understand their processes, vendor relationships, and technology stack
• Understanding of web and mobile application security, cloud technologies threats and risks, fraud patterns, content piracy risks, and operational vulnerabilities
• Experience managing programs across cross-functional teams, building processes and coordinating across multiple stakeholders
• Experience in mentoring and advising technical and non-technical communities on complex security and risk issues

Preferred Qualifications

• MS in Cybersecurity, Information Security, Risk Management, Computer Science, Engineering, or other relevant degree
• 5+ years of project management disciplines including scope, schedule, budget, quality, along with risk and critical path management experience
• Experience serving as a risk advisor to business organizations, helping leaders understand and make risk-informed decisions
• Experience conducting AI/ML risk assessments, including evaluating risks associated with generative AI applications, large language models, AI-powered content creation tools, AI vendor solutions, or machine learning systems
• Knowledge of AI governance frameworks, responsible AI principles, and emerging AI regulations (e.g., EU AI Act, NIST AI Risk Management Framework)
• Understanding of AI-specific security and risk concerns including prompt injection, model poisoning, data leakage, adversarial attacks, bias and fairness issues, and AI hallucination risks
• Experience assessing risks in AI-powered business processes, including content generation, recommendation systems, or automated decision-making systems
• Experience conducting vendor risk assessments and third-party risk management, including evaluation of AI/ML vendor solutions
• Ability to identify business risks across multiple domains (security, fraud, piracy, data, operational, AI/ML) and guide organizations toward established mitigation solutions
• Knowledge of content industry risks including piracy, fraud, data protection, and vendor management
• Experience with risk reporting, developing risk metrics, and presenting risk information to senior leadership
• Demonstrated experience using communication skills to advocate risk management and security for both technical and non-technical audiences, including explaining complex AI risks in business terms
• Experience in driving risk assessment and remediation initiatives across large, complex business organizations
• Sharp analytical abilities and proven skills in translating business strategy and emerging technology trends (including AI adoption) into risk considerations
• Experience defining KPIs/metrics for risk management programs and reporting to senior leadership
• Relevant industry certifications (e.g., CISSP, CISA, CRISC, CFE, SANS/GIAC, AWS, PMP, CSM)
• Strong organizational and communication skills, with demonstrated ability to work in a multi-tasking dynamic environment while maintaining high levels of ownership and accountability
• Excellent writing and verbal communication skills with ability to communicate risk concepts to both technical and non-technical audiences, including senior leadership

Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.

Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.

The base salary range for this position is listed below. Your Amazon package will include sign-on payments and restricted stock units (RSUs). Final compensation will be determined based on factors including experience, qualifications, and location. Amazon also offers comprehensive benefits including health insurance (medical, dental, vision, prescription, Basic Life & AD&D insurance and option for Supplemental life plans, EAP, Mental Health Support, Medical Advice Line, Flexible Spending Accounts, Adoption and Surrogacy Reimbursement coverage), 401(k) matching, paid time off, and parental leave. Learn more about our benefits at https://amazon.jobs/en/benefits.

USA, NJ, Newark - 163,600.00 - 221,300.00 USD annually