Director Information Security
1 week ago
With the right backing, people and businesses have the power to progress in incredible ways.
When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other.
Here, you'll learn and grow as we help you create a career journey that's unique and meaningful to you with benefits, programs, and flexibility that support you personally and professionally.
At American Express, you'll be recognized for your contributions, leadership, and impact—every colleague has the opportunity to share in the company's success.
Together, we'll win as a team, striving to uphold our and powerful backing promise to provide the world's best customer experience every day.
And we'll do it with the utmost integrity, and in an environment where everyone is seen, heard and feels like they belong.
Join Team Amex and let's lead the way together.The Director of Risk ID, Assessment, and Testing will be responsible for identifying, testing, and owning the development and delivery of Information Technology and Information Security controls to preserve the confidentiality, integrity, and availability of data across the enterprise. This role will partner with second line and other technology leaders to drive improvements to the technology control environment ensuring that the Business Unit is following the PRSA Framework, and the policies/guidance issued by other relevant Governance groups. The function is also responsible for conducting risk assessments across processes and systems as part of enterprise programs such as PRSA and will partner with all lines of business on control types, creation, and relevancy ensuring risk mitigation.
Responsibilities
:
Lead the Technology Process Risk Self-Assessment (PRSA) program.
This includes setting for technology guidelines, procedures, training, tooling, and enforcement of the proper design and implementation of controlsEnhance the control environment at American Express through close partnership with Operational Risk Governance Group, Fortify the Controls Environment (FCE), Compliance, Issue Management and other Technology Risk leadersIdentify risk throughout business processes and systemsDevelop and recommend risk mitigation strategies to address identified risksPerforming on-going tracking, monitoring of progress, escalation, and governance of identified issues on a periodic basisIdentify and proactively flag areas of high risk for intervention (e.g.
automated alerts for near-threshold breaches)Influence partners to achieve targeted levels of information security, project oversight, controls, and complianceProvide guidance on information security processes, controls, and compliance, and information security risk management to key stakeholdersPartner with the Tech Risk & Info Sec Business Leadership Team to develop, implement, monitor and report on appropriate control ratings and compliance ratingsEnsure appropriate control ratings and compliance outcomes are achievedProvide guidance on information security processes, encryption, and IT General Controls, and compliance, and information security risk management to team members and internal clientsPartner with the Operational Excellence Operational Risk Events (ORE) and Customer Action Plans (CAP) to link events/CAPs to appropriate Process Risk Self-Assessment (PRSA)Partner with ORGG to develop, implement, and automate adequate IT General Controls and Information Security Data Protection controls within the Archer system of record for risks and controls.
Required Qualifications:8+ years of relevant professional work experience in Operational Risk Management with experience in Information Security and Technology Risk ManagementDeep knowledge of compliance, risk management and internal IT control frameworksBroad understanding of information security disciplines with emphasis on vulnerability management, data protection, identity and access, incident management, risk management, and data analyticsUnderstanding of regulatory landscape while able to link threats to risk tolerance and control efficiency measuresProven ability in extending and maintaining strong relationships in a complex multi-national corporationKnowledge/experience with GRC tools (preferably Archer) inclusive of reporting.
Ability to conceptualize complex control relationships and develop rigor in control development, design and testing practicesAbility to translate technical cyber security concepts to non-technical business leaders and influence in a matrix environmentCalm and decisive under pressure with strong operational leadership in stressful situationsAbility to prioritize actions for the benefit of the organization to remain focused on most critical issuesInitiative and energy to go beyond minimum requirements of effort and activity; a bias for action and for getting things doneStrong problem solver with the ability to use analytical methods to affect changeEducational Requirements
:
Bachelor's degree in information assurance, accounting, computer science or related field. Master's degree Preferred.
CPA, CISM, CISA, CRISC, or CISSP or equivalent certificationWe back our colleagues and their loved ones with benefits and programs that support their holistic well-being.
That means we prioritize their physical, financial, and mental health through each stage of life.Benefits include:
Competitive base salariesBonus incentivesSupport for financial-well-being and retirementComprehensive medical, dental, vision, life insurance, and disability benefits (depending on location)Flexible working model with hybrid, onsite or virtual arrangements depending on role and business needGenerous paid parental leave policies (depending on your location)Free access to global on-site wellness centers staffed with nurses and doctors (depending on location)Free and confidential counseling support through our Healthy Minds programCareer development and training opportunitiesAmerican Express is an equal opportunity employer and makes employment decisions without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, disability status, age, or any other status protected by law.
Offer of employment with American Express is conditioned upon the successful completion of a background verification check, subject to applicable laws and regulations.
-
Director - Information Security
1 week ago
Bengaluru, Karnataka, India Recrud Full timeJob Title : Director of Information Security. Company : On behalf of our esteemed client, a pioneering Fintech company, Recrud is seeking a highly experienced and dynamic individual to fill the role of Director of Information Security. This position is critical for safeguarding the company's digital assets and ensuring the integrity and confidentiality of...
-
Director Information Security
1 week ago
Bengaluru, Karnataka, India American Express Full timeWelcome to American Express!At American Express, we believe in supporting our people to reach their full potential. Joining our team means becoming part of a global community dedicated to delivering exceptional customer experiences and driving success together. We value your contributions and offer a supportive environment where everyone is recognized and...
-
Director - Information Security
1 week ago
Bengaluru, Karnataka, India Yo HR Consultancy Full timeRole : Director - Information Security Experience : 5-8 yearsLocation : BangaloreMust have : Experience working in a fast-paced B2B startup environment with an engineering team that has seen scale. Prior experience in running or managing a SOC Prior experience with global compliances across US, EU and UAE ISO 27001 PCI DSSJob Description : Skills : A...
-
Director - Information Security
1 week ago
Bengaluru, Karnataka, India Skill Connect HR Consulting Full timeDirector - Information SecurityRequired Experience : - 8 YearsSalary Range : 25 LPA - 40 LPALocation : Bangalore, Karnataka, IndiaIndustries & Domains : Enterprise/ SaaSSkills & Expertise : ISO 27001 PCI DSSPreferred Certifications : CISSP CCSP CISMMust to have : Experience working in a fastpaced B2B startup environment with an engineering team that has seen...
-
Director Information Security
1 week ago
Bengaluru, Karnataka, India American Express Full timeYou Lead the Way. We've Got Your Back.With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, you'll learn and grow as we help you create a career...
-
Director Information Security
1 week ago
Bengaluru, Karnataka, India AMEX Full timeYou Lead the Way. Weve Got Your Back.With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, youll learn and grow as we help you create a career...
-
Director Information Security
1 week ago
Bengaluru, Karnataka, India Pretium Full timePosition Summary: The Director of Information Security will provide strategic leadership in the development, implementation, and monitoring of the company's cybersecurity strategy, ensuring all assets and data remain secure against potential threats. This position will be responsible for overseeing the work of our India Security Team. This position requires...
-
Director Information Security
1 week ago
Bengaluru, Karnataka, India American Express Full timeYou Lead the Way. We've Got Your Back. With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, you'll learn and grow as we help you create a...
-
Director Information Security
1 week ago
Bengaluru, Karnataka, India American Express Full timeJoin Team Amex and let's lead the way together.It's more than safeguarding information, it's safeguarding individuals.Information Security Directors understand the paramount importance of security for our company, partners, and clients. With the rise in cyber-attacks and strict enforcement of compliance, they strive to stay ahead of potential threats to...
-
Director of Information Security
1 week ago
Bengaluru, Karnataka, India Zyoin group Full timeExperience: 20+ YearsMandate Skills: HIPAA, NIST, CISSP or CISM, Cyber security management, privacy policies, PCI-DSS, CIS, procedures.Essential Functions: Global Cybersecurity Strategy Alignment: Collaborate with both the India and US cybersecurity teams to align their strategies and initiatives. Ensure that the goals and actions of both teams are coherent...
-
Information Security Manager
1 week ago
Bengaluru, Karnataka, India Morae Full timePOSITION OVERVIEWThisInformation Security GRC Expert – Associate Managercontributes to Morae success byimplementing, and maintaining people, process and technology-oriented policies, procedures, andcontrols to ensure ongoing security and compliance of Morae's innovative technology solutions and information assets.As a part of highly skilled Information...
-
Director - Cyber Security
1 week ago
Bengaluru, Karnataka, India Saaki Argus & Averil Consulting Full timeJob Description: · Strong expertise in cloud security, DNS, DDoS, IDS/IPS, email security, and email and web advance threat protection. Improving defence by examining email, DNS, and DDoS attack patterns. Monitoring baseline changes for external threat threats detection and automating preventive mitigation. · DMARC and outgoing email enforcement...
-
Information Security Analyst
1 week ago
Bengaluru, Karnataka, India Nike Full timeRejoignez l'équipe NIKE, Inc. Loin de se contenter d'équiper les plus grands athlètes mondiaux, NIKE, Inc. explore les potentiels, abolit les frontières et repousse les limites du possible. L'entreprise recherche des personnes capables d'évoluer, de réfléchir, de rêver et de créer. L'épanouissement de sa culture repose sur son ouverture à la...
-
VP, Chief Information Security Officer
1 week ago
Bengaluru, Karnataka, India Odessa Full timeJob DescriptionChief Information Security OfficerLOCATION:Bangalore , IndiaLEVEL:Senior Vice PresidentAbout OdessaOdessa is headquartered in Philadelphia, USA with offices in different locations across the globe. Our leasing solutions power a client base comprised of leading global financial institutions that operate across market segments.We transform bold...
-
Information Security
1 week ago
Bengaluru, Karnataka, India Nityo Infotech Full timeAuditing , Communication , English , Management , Risk Management , Training , Testing , Ability , Activities , Adaptability , Administrative , Application , Application Security , Auditing , Awareness , Business , Business Continuity , Business Continuity Planning , CISA , CISSP , Certifications , Change , Client , Cloud , Cloud Security , Communication ,...
-
Information Security
1 week ago
Bengaluru, Karnataka, India Nityo Infotech Full timeAuditing , Communication , English , Hiring , Interviewing , Leadership , Management , Newsletters , Risk Management , Risk Assessment , Testing , Ability , Activities , Adaptability , Address , Administrative , Analysis , Annual , Assessment , Associates , Auditing , Author , Availability , Awareness , Bangalore , Basis , Blogs , Bulletins , Business , CISA...
-
Information Security
1 week ago
Bengaluru, Karnataka, India Nityo Infotech Full timeAuditing , Communication , English , Hiring , Interviewing , Leadership , Management , Newsletters , Risk Management , Risk Assessment , Testing , Ability , Activities , Adaptability , Address , Administrative , Analysis , Annual , Assessment , Associates , Auditing , Author , Availability , Awareness , Bangalore , Basis , Blogs , Bulletins , Business , CISA...
-
Information Management Director
1 week ago
Bengaluru, Karnataka, India Arcadis Full timeArcadis: the leading company worldwide in delivering sustainable design, engineering, and consultancy solutions for natural and built assets with the mission of improving quality of life globally. Role Description: Join a talented team at Arcadis Global Excellence Centre (GEC), collaborating with individuals from India, Romania, and Philippines, to...
-
Information Security
1 week ago
Bengaluru, Karnataka, India Nityo Infotech Full timeBusiness Intelligence , Databases , Linux , Management , Network Security , SQL , Troubleshooting , Windows , Web Development , A , AWS , Ability , Active , Active Directory , Advantage , Ansible , Application , Application Development , Applications , Architecture , Automation , Awareness , Azure , Bamboo , Based , Business , Business Intelligence , CI , Cd...
-
Information Security Leader
1 week ago
Bengaluru, Karnataka, India Bert Labs Full timeWe are looking for a detail-oriented Information Security Leader, who leads and manages Bert Labs's overall approach to data security and information protection. Plans, analyses, designs, configures, tests, implements, and maintains Company's information security infrastructure responsive to business requirements and applicable regulations. Responsibilities...
