Incident Response Senior Enterprise Cloud Security Engineer

Get Referred

Job Description

Why American Express?

There’s a difference between having a job and making a difference.

American Express has been making a difference in people’s lives for over 160 years, backing them in moments big and small, granting access, tools, and resources to take on their biggest challenges and reap the greatest rewards.

We’ve also made a difference in the lives of our people, providing a culture of learning and collaboration, and helping them with what they need to succeed and thrive. We have their backs as they grow their skills, conquer new challenges, or even take time to spend with their family or community. And when they’re ready to take on a new career path, we’re right there with them, giving them the guidance and momentum into the best future they envision.

Because we believe that the best way to back our customers is to back our people.

The powerful backing of American Express.

Don’t make a difference without it.

Don’t live life without it.

American Express is embarking on an exciting Cloud transformation led by a high-energy, delivery-focused team. This group is nimble and creative, with the power to define our technology and product roadmap.

You will drive Cloud Security Incident Response capabilities, working with multi-functional and cross-enterprise teams that define requirements, develop architecture specifications, select and pilot new technologies, develop enterprise-scale deployment plans and lead initial implementations.

You will work closely with other Information Security departments, architecture and development teams, and external cloud providers on requirements, design, integration and delivery of these solutions.

Responsibilities Include:

  • Working with incident response teams, lead the identification and integration of data sets for security monitoring, developing of use cases, creation of alerts, writing of playbooks, and the response capabilites.

  • Provide security and engineering expertise and guidance to the Cloud Program supporting Incident response capabilites, including Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Cloud Application Architecture subprograms for both private and public cloud providers.

  • Collaborate with enterprise architects and SMEs to deliver complete security incident response solutions.

  • Interface with Cloud Engineering teams to provide security perspective during design 

  • Lead the technical design and deployment of global projects including security solutions for internal and external IaaS and PaaS clouds.

  • Capture requirements; build functional specifications, timelines, adoption plans and other artifacts to support security implementation.

  • Build cloud-optimized architecture patterns and contribute to Enterprise Architecture governance to drive secure enablement of technology

  • Evaluate various private, public cloud technologies and tools for technical, functional and financial feasibility.

  • Drive proof of concepts that assess the suitability of solutions and demonstrate to our product partners how technology can be leveraged.

  • Partner with and support the Engineering team to drive and execute results in a timely manner.


Minimum Qualifications

  • Expertise in cloud architecture and security fundamentals including containers, software-defined networks, high availability design, public cloud, service mesh, and server less compute.

  • Expertise in incident response capabilities including data collection methods and protocols, , and investigations.

  • Experience with network architecture, network security, and TCP/IP.

  • 3+ years of experience with incident response and cloud security

  • Hands-on experience with Docker and Kubernetes preferred.

  • Experience with a broad range of application architectures, languages, and payments technologies a plus.

    Educational Requirement:

  • Bachelor’s Degree in computer science, computer engineering, or related field; or equivalent experience.

  • Information Security Certification preferred, CISSP or similar.

Employment eligibility to work with American Express in the U.S. is required as the company will not pursue visa sponsorship for these positions. 

Tags: CFE-11160
ReqID: 20006425
Schedule (Full-Time/Part-Time): Full-time
Date Posted: Sep 21, 2020, 6:01:12 PM

EEO Statement

American Express is an equal opportunity employer and makes employment decisions without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability status, age, or any other status protected by law.