Back

Information Security Manager

Get Referred

Job Description

American Express invites you to share your resume to be considered for future Information and Cyber Security Specialist roles within our Global Risk and Compliance (GRC) organization based out of New York, NY or Phoenix, AZ.


We are currently building a talent network of individuals with strong information technology and information security domain expertise.  In these roles, you will act as a key contributor to the success of the team and ultimately enhance our loyalty, trust, customer experience, and the American Express brand. Accurately assessing, managing, and overseeing the global information technology and information security risk is essential to meeting our business objectives.


Responsibilities:
  • Conduct independent risk assessment of the information security and information technology programs and provide effective challenge to the design and execution of technical and procedural controls.
  • Provide periodic updates, reports, and recommendations regarding standard methodology information security and information technology controls, risk assessment and risk remediation strategies
  • Actively evaluate and supervise information security and information technology controls
  • Contribute to the annual risk assessment and benchmark and coordinate risk-based investigations of controls
  • Conduct industry benchmarking, regulatory requirement gathering and peer-based analysis of available controls, risk assessment methodologies and risk mitigation practices to assess for coverage gaps
  • Support the development of information security and information technology metrics including; KRIs and KPIs, to continuously monitor and guide program level risks


Minimum Qualifications

  • A minimum of 3 years of Information and/or Cyber Security experience; preferably within banking or financial services
  • Bachelor's degree from an accredited college/university or equivalent work experience; Advanced degree and/or technical certification such as CISSP, CEH, CISM, GCIH or GCFE preferred
  • Demonstrated knowledge and experience with cybersecurity and risk frameworks and standards including NIST CSF, NIST RMF, CoBIT, OWASP, NIST, MITRE, etc
  • Strong working knowledge of information security and technology risk assessment tools, and methods
  • Experience designing secure networks, systems and applications
  • Knowledge of cloud security and technologies; FedRAMP preferred
  • Experience developing security documentation such as business continuity plan (BCP), business impact analysis (BIA), disaster recovery plans (DRP) and system plans
  • Experience planning, researching and developing security policies, standards and procedures
  • Professional experience in a system administration role supporting multiple platforms and applications
 

Why American Express?


There’s a difference between having a job and making a difference.


American Express has been making a difference in people’s lives for over 160 years, backing them in moments big and small, granting access, tools, and resources to take on their biggest challenges and reap the greatest rewards.


We’ve also made a difference in the lives of our people, providing a culture of learning, collaboration, and helping them with what they need to succeed. We have their backs as they grow their skills, conquer new challenges, or even take time to spend with their family or community. And when they’re ready explore a new career path, we’re right there with them, giving them the guidance and momentum into the best future they envision.


Because we believe that the best way to back our customers is to back our people.


The powerful backing of American Express.


Don’t make a difference without it.


Don’t live life without it.


Employment eligibility to work with American Express in the U.S. is required as the company will not pursue visa sponsorship for these positions.



American Express is an equal opportunity employer and makes employment decisions without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability status, age, or any other status protected by law.


ReqID: 20006796
Schedule (Full-Time/Part-Time): Full-time
Date Posted: Sep 22, 2020, 12:57:22 PM

EEO Statement

American Express is an equal opportunity employer and makes employment decisions without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability status, age, or any other status protected by law.