Information Security Analyst I

Get Referred

Job Description

Why American Express?

There’s a difference between having a job and making a difference.

American Express has been making a difference in people’s lives for over 160 years, backing them in moments big and small, granting access, tools, and resources to take on their biggest challenges and reap the greatest rewards.
We’ve also made a difference in the lives of our people, providing a culture of learning and collaboration, and helping them with what they need to succeed and thrive. We have their backs as they grow their skills, conquer new challenges, or even take time to spend with their family or community. And when they’re ready to take on a new career path, we’re right there with them, giving them the guidance and momentum into the best future they envision.

Because we believe that the best way to back our customers is to back our people.

The powerful backing of American Express.
Don’t make a difference without it.
Don’t live life without it.

Role Objective:

Support & orchestrate the Privileged Access Management (PAM) program and associated activities to deliver best-in-class enterprise PAM solutions and services to the AXP organization.

Organizational context:

The Privileged Access Management team is part of the AXP enterprise Identity & Access Management service portfolio within the broader IT Security organization. The team is engaged in providing best-in-class PAM services to the entire AXP organization.


Role Expectations:

The key expectations from the role are:

  • Drive & ensure adherence to our key service controls and metrices.

  • Responsible for the formulation, validation, review and evolution of our controls and metrics

  • Regular reporting of PAM service SLAs & KPIs and adherence to associated targets.

  • Participate in enterprise risk and tech-debt remediation by leveraging PAM solutions and services

  • Participate in all key activities related to service availability & continuity including DR exercises

  • Ensure that the PAM service, solutions & implementations are in complete adherence to AXP & regulatory controls and audit requirements (PCI DSS, SOX and others)

  • Participate in internal & external audits including but not limited to FRB, FDIC, OCC, SOX and others.

  • Lead efforts to drive the timely closure of internal/external audit findings

  • Support the leadership team in driving strategic initiatives

  • Work closely with other associated functional areas both within and outside IAM organization to ensure seamless PAM service delivery.

  • Propose, lead & drive initiatives that positively contribute to the overall IAM service portfolio & roadmap.


Qualifications (Minimum):

  • BE/MCA/M Tech/B Tech graduate with 3-7 years of overall IT experience with minimum 3 years of experience in IAM operations, controls and metrics reporting, risk & audit.

  • Deep competence in data analysis & business requirement analysis

  • Deep understanding of person & non-person identities & their management in Windows, Unix, DB & Mainframe platforms.

  • Hands-on experience in user access provisioning & management in large scale & diverse organizations

  • Good understanding of privileged access management concepts including password vaults, session brokering & management, application privilege identity & access management, integration with SIEM, discovery & management of end-points and privileged accounts

  • Good overall understanding of enterprise identity management, access management & MFA services besides PAM.

  • Good understanding of regulatory standards and associated audit requirements including PCI DSS, SOX, NIST and others (preferred)

  • Experience in BFSI & Retail industry (preferred)

  • Other key competences:

    • Agile Practices & SDLC Methodologies and Practices

    • Ability to execute repeatable control related activities with precision

    • To be able to interact with customers to resolve issues and address questions

    • Effectively communicate and document knowledge articles and other support related materials

    • Requirements gathering and analysis

    • Stakeholder management

    • Effective & open communication

    • Analytical Thinking

    • Problem Solving

    • Technology Industry Trends

    • Adaptability, collaboration & Teamwork

    • Continuous Improvement & Learning Agility

ReqID: 19020850
Schedule (Full-Time/Part-Time): Full-time
Date Posted: Dec 1, 2019, 8:49:27 PM