American Express Careers

VP - Privacy Officer - US

New York, New York

Apply Get Referred

Job Description

Privacy and information security are key contributors to loyalty, customer experience, and the American Express brand. Properly assessing, managing, and overseeing global privacy and information security risk is critical to the Company’s business. This position, based in New York, is part of the Global Risk and Compliance Organization – a second line of defense risk oversight function responsible for the independent management of risk globally. The role reports to the Global Head of Privacy, Information Security and Technology Oversight.

A successful candidate will be a deep privacy subject matter expert (with particular expertise in U.S. privacy regulation and the regulatory environment) and current on industry activities and emerging technologies which impact the collection and use of data. The VP - Privacy Officer - US will lead an experienced team of privacy professionals.

The position requires a strong team player who is comfortable interacting with other risk oversight functions, compliance, operational excellence, information security, public affairs and many other partners to drive best privacy practices throughout the enterprise.

A successful candidate will have demonstrated the ability to manage privacy risk strategically and tactically, and deliver initiatives that truly advance the maturity and soundness of the privacy control environment.
Essential Job Functions:
  • Lead independent privacy risk management for American Express’ US Banks and affiliates
  • Assist, advise, and guide the business in accomplishing information privacy risk management goals, including advising on best practice controls and risk mitigation strategies
  • Supporting the development, coordination and implementation of American Express’ global privacy program; combining thought leadership with practical implementation realities
  • Develop metrics/KRIs/KPIs to proactively monitor and identify privacy and program level risks
  • Ensure the company’s privacy risk remains within appetite and tolerance levels (monitoring privacy risk thresholds and accumulation of risk across markets and lines of business)
  • Escalate critical issues, emerging risks, outliers and identify shifts in the organization risk appetite
  • Collaborate with the President/Chief Executive Officer of American Express’ Banks and regulated legal entities globally, and in the overall administration of the US banks
  • Provide periodic updates, reports, and recommendations to Senior Management, the Board of Directors, and risk committees on various privacy risk topics
  • Interface with Bank regulators to provide updates on privacy risk management activities


  • Minimum five years experience in a senior privacy role required
  • Experience leading highly skilled, diverse teams and to indirectly lead and motivate others to work through complexity and road-blocks to drive results; effective prioritization, flexibility and time management will be key  
  • Superior problem-solving and analytical skills, strong learning agility, curiosity and willingness to embrace new challenges
  • Strong written and verbal communication skills and excellent relationship building skills with ability to influence across all levels of the organization
  • Extensive working knowledge of privacy risk identification, assessment and management frameworks
  • Experience working in a regulated environment and interfacing with regulators; knowledge of US federal financial guidelines such as FFIEC, OCC, & FDIC preferred
  • Bachelor's degree in law, public policy or other related field (or equivalent work experience)
  • Professional certification preferred (e.g. CIPP/US, CIPM)

Employment eligibility to work with American Express in the U.S. is required as the company will not pursue visa sponsorship for these positions.

ReqID: 18000369
Schedule (Full-Time/Part-Time): Full-time
Apply Get Referred