The Amazon Security Awareness Checklist for Fulfillment Center Employees

The continued success of Amazon depends on our customers trusting that we will not lose their personal information which is considered Critical and Confidential Data under Amazon’s Information Security Policy. This document helps Fulfillment Center Associates understand their responsibilities when it comes to keeping customer data secure.

A written-down password can be found by someone and used without your consent. Lock your passwords in a drawer or keep them on your person.

Sequential passwords (1111, abcd, qwerty) or personally-identifiable passwords (name, nickname, family names) are easy to hack. To be secure, passwords should have eight characters. Use letters, numbers, and some symbols.

Sharing your passwords defeats the purpose of having passwords. While we’re all looking for ways to make work easier, someone committing a crime by using your password makes you responsible.

Logging in for other people distorts who is performing transactions and can lead to shared responsibility.

Shred all Critical and Highly Confidential Data. Identity thieves dumpster-dive to obtain customer credentials. Critical Data Highly Confidential Data

Credit card numbers

Gift messages

Customer bank account numbers

Multiple customers order history

Customer subscriptions

Customer Social Security Number, or

National ID Number

Vendor or seller bank account numbers

Claim codes

Customer 9-digit (Zip + 4) postal code, or

foreign equivalent

Victims of social engineering use flawed reasoning to trust individuals, and that misplaced trust can be used to get information from you. Avoid being a victim. Do not discuss Amazon information with strangers in the parking lot or elsewhere. Be aware of your surroundings when discussing work projects, such as in a restaurant or bar. Many believe the following myths:

I’m not technical, so information security doesn’t apply to me. Security is essential at every level of the company. Attacks and security breaches are not confined to technical environments and computer systems.

Someone else takes care of security at Amazon. Amazon’s success is a joint effort from all employees. Therefore it is your responsibility to keep the data you handle secure. Shred customer data.

I don’t have access to anything an attacker would want. You would be amazed by what attackers would want! Every Amazon employee has access to valuable information. Attackers are waiting for you to mishandle it! By reading this document and clicking acknowledge above, you confirm understanding that security is our shared responsibility at Amazon. If you have any questions about how you can follow these best practices, or if you feel you’ve been a victim of social engineering please contact your HR Representative who will work with you to contact https://phishing.amazon.com/.