Director Information Security
1 week ago
You Lead the Way. We’ve Got Your Back.
With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, you’ll learn and grow as we help you create a career journey that’s unique and meaningful to you with benefits, programs, and flexibility that support you personally and professionally.
At American Express, you’ll be recognized for your contributions, leadership, and impact—every colleague has the opportunity to share in the company’s success. Together, we’ll win as a team, striving to uphold our and powerful backing promise to provide the world’s best customer experience every day. And we’ll do it with the utmost integrity, and in an environment where everyone is seen, heard and feels like they belong.
Join Team Amex and let's lead the way together .
Responsible for owning the development and/or delivery of information security initiatives, projects, or programs that have objectives associated with preserving the confidentiality, integrity, and availability of systems and data across the enterprise. Responsible for designing and implementing processes to understand, measure, and improve the organization’s ability to avoid data exfiltration, corruption, or other exploitation.
Develops and executes end-to-end information security and IT risk management processes that are optimized for maturity. Works across many organizations, both internal and external, to meet business needs and compliance goals. Leads cross department initiatives, covering a wide range
of business/technical functions.
How will you make an impact in this role?
American Express is on an exciting Cloud transformation led by a high-energy, delivery-focused teamdelivering security as code and integration to enable on-premise equivalent security models for cloud workloads. The Cloud Security Engineeringgroup builds and deliverstechnology which enables shift left security integration through partnership and collaboration across Technology Risk and Information Security, as well as multiple Technology teams. The Director Cloud Security Engineeringwill lead the program, design, and develop tools to deliver security controls for the enterprise, and will ensure the success of the American Express journey towards hybrid multi cloud.The Director and their team will be accountable for securely enabling the cloud journey through a delivery-based programbased on automation and guardrail-based approaches.
To be successful, you and your team will work very closely with other Technology Risk and Information Security functions, as well as Cloud Security Governance, Cloud Security Architecture, Cloud Operations, and many other Technology and non-Technology teams to identify, solution, and deliver security code elements. You will mature a program which aims to drive automation, zero touch, and idempotency through “everything-as-code" across cloud platforms and infrastructure components. This position demands a well-organized; action-oriented team player with the ability to prioritize daily work; work on multiple initiatives simultaneously; establish and maintain an outward looking view on new and evolving network edge technologies; and an ability to mature and operate business critical, end-to-end processes and solutions – while ensuring a great colleague user experience.
Design and mature a Cloud Security Engineering program created to deliver security code elements across private and public multi-cloud Provide security and engineering expertise and guidance to the Cloud Programs, including Infrastructure as a Service (IaaS), Platform as a Service (PaaS), Secure Software Development Lifecycle, and Cloud Application Architecture subprograms. Collaborate with platform engineers, enterprise architects and SMEs to deliver complete security controls for public cloud, Kubernetes, and software supply chains, architecture solutions. Lead Cloud Security engineering team which designs and develops tools to delivery security requirements for the enterprise. Own all technical aspects of software development (architecture, design and development of systems) for assigned applications. Lead a team who delivers hands-on software development, typically spending about 80% of time writing code, APIs, doing proof of concepts and conducting code reviews Identify exciting opportunities for adopting new technologies to solve existing needs and predicting future challenges.Minimum Qualifications
7+ years of software development experience using any of the following languages: Java, JavaScript (Node.js), Python, Golang (2+ years minimum). Must have a deep understanding of the language and its ecosystem. 3+ years of experience in Information Security roles with increase of responsibilities and scope. 5 years of experience using one or more prominent software frameworks. Demonstrated experience in a manager-level role. Understanding of classical or cloud-native design patterns is required. Kubernetes and Infrastructure as Code is required. Understanding of Cloud Native security controls, including organizational policies. Knowledge of security configuration management, container security, endpoint security and secrets management as they are applied to cloud applications. Knowledge of network architecture, proxy infrastructure, and programs to support network access and enablement. Knowledge of secure software development lifecycles and secure software supply chains. Demonstrated ability to manage large financial portfolios, specifically managing year-over-year budget for BAU operations, new investments and contract renewals. Capture requirements; build functional specifications, timelines, adoption plans and other artifacts to support security implementation. Partner with Architecture teams to build cloud-optimized security patterns and contribute to Enterprise Architecture governance. Partner with and support the Governance team to drive and execute results in a timely manner. Experience with multiple Information Security domains, such as Infrastructure Vulnerability, Data Loss Prevention, End User Security, Network Security, Internet Security, Identity & Access Management, etc. Bachelor’s Degree in computer science, computer engineering, or related field; or equivalent experience. Information Security or Cloud Certification preferred - CISSP, CISM, CCSP, CKS or similar. Cloud Engineering or Security Certification preferred – AWS Certified DevOps Engineer Professional, AWS Certified Security Specialty, GCP Cloud DevOps Engineer, GCP Cloud Security Engineer or similarWe back our colleagues and their loved ones with benefits and programs that support their holistic well-being. That means we prioritize their physical, financial, and mental health through each stage of life. Benefits include:
Competitive base salaries Bonus incentives Support for financial-well-being and retirement Comprehensive medical, dental, vision, life insurance, and disability benefits (depending on location) Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need Generous paid parental leave policies (depending on your location) Free access to global on-site wellness centers staffed with nurses and doctors (depending on location) Free and confidential counseling support through our Healthy Minds program Career development and training opportunitiesAmerican Express is an equal opportunity employer and makes employment decisions without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, disability status, age, or any other status protected by law.
Offer of employment with American Express is conditioned upon the successful completion of a background verification check, subject to applicable laws and regulations.
-
Director - Information Security
2 weeks ago
Bangalore, India Recrud Full timeJob Title : Director of Information Security. Company : On behalf of our esteemed client, a pioneering Fintech company, Recrud is seeking a highly experienced and dynamic individual to fill the role of Director of Information Security. This position is critical for safeguarding the company's digital assets and ensuring the integrity and...
-
Director - Information Security
2 months ago
Bangalore, India Recrud Full timeJob Title : Director of Information Security. Company : On behalf of our esteemed client, a pioneering Fintech company, Recrud is seeking a highly experienced and dynamic individual to fill the role of Director of Information Security. This position is critical for safeguarding the company's digital assets and ensuring the integrity and...
-
Director - Information Security
2 months ago
Bangalore, Karnataka, India NetSysCon Full timeWe are looking for a Director Information Security for our client which is a VC funded Fintech PlatformJob Profile :- Ensure effective functioning of the Information Security function - managing policies & procedures, hardening of infrastructure and SDLC processes- Develop and maintain an information security strategy and roadmap aligned with organizational...
-
Director - Information Security
2 weeks ago
Bangalore, India NetSysCon Full timeWe are looking for a Director Information Security for our client which is a VC funded Fintech PlatformJob Profile : - Ensure effective functioning of the Information Security function - managing policies & procedures, hardening of infrastructure and SDLC processes- Develop and maintain an information security strategy and roadmap aligned with organizational...
-
Director - Information Security
2 days ago
Bangalore, India NetSysCon Full timeWe are looking for a Director Information Security for our client which is a VC funded Fintech PlatformJob Profile : Ensure effective functioning of the Information Security function managing policies & procedures, hardening of infrastructure and SDLC processes Develop and maintain an information security strategy and roadmap aligned with organizational...
-
Director - Information Security
2 months ago
Bangalore, India NetSysCon Full timeWe are looking for a Director Information Security for our client which is a VC funded Fintech PlatformJob Profile : - Ensure effective functioning of the Information Security function - managing policies & procedures, hardening of infrastructure and SDLC processes- Develop and maintain an information security strategy and roadmap aligned with organizational...
-
Director - Information Security
2 weeks ago
Bangalore, Karnataka, India NetSysCon Full timeWe are looking for a Director Information Security for our client which is a VC funded Fintech PlatformJob Profile :- Ensure effective functioning of the Information Security function - managing policies & procedures, hardening of infrastructure and SDLC processes- Develop and maintain an information security strategy and roadmap aligned with organizational...
-
Director - Information Security
2 months ago
Bangalore, Karnataka, India Yo HR Consultancy Full timeRole : Director - Information SecurityExperience : 5-8 yearsLocation : BangaloreMust have : - Experience working in a fast-paced B2B startup environment with an engineering team that has seen scale.- Prior experience in running or managing a SOC- Prior experience with global compliances across US, EU and UAE- ISO 27001- PCI DSSJob Description :Skills :- A...
-
Director - Information Security
2 weeks ago
Bangalore, India Yo HR Consultancy Full timeRole : Director - Information Security Experience : 5-8 yearsLocation : BangaloreMust have : - Experience working in a fast-paced B2B startup environment with an engineering team that has seen scale.- Prior experience in running or managing a SOC- Prior experience with global compliances across US, EU and UAE- ISO 27001- PCI DSSJob Description : Skills...
-
Director - Information Security
2 months ago
Bangalore, India Yo HR Consultancy Full timeRole : Director - Information Security Experience : 5-8 yearsLocation : BangaloreMust have : - Experience working in a fast-paced B2B startup environment with an engineering team that has seen scale.- Prior experience in running or managing a SOC- Prior experience with global compliances across US, EU and UAE- ISO 27001- PCI DSSJob Description : Skills...
-
Director - Information Security
2 weeks ago
Bangalore, India Skill Connect HR Consulting Full timeDirector - Information SecurityRequired Experience : 5 - 8 YearsSalary Range : 25 LPA - 40 LPALocation : Bangalore, Karnataka, IndiaIndustries & Domains : Enterprise/ SaaSSkills & Expertise : - ISO 27001- PCI DSSPreferred Certifications :- CISSP- CCSP- CISMMust to have :- Experience working in a fast-paced B2B startup environment with an engineering team...
-
Director - Information Security
2 weeks ago
Bangalore, Karnataka, India Yo HR Consultancy Full timeRole : Director - Information SecurityExperience : 5-8 yearsLocation : BangaloreMust have : - Experience working in a fast-paced B2B startup environment with an engineering team that has seen scale.- Prior experience in running or managing a SOC- Prior experience with global compliances across US, EU and UAE- ISO 27001- PCI DSSJob Description :Skills :- A...
-
Director - Information Security
2 weeks ago
Bangalore, Karnataka, India Skill Connect HR Consulting Full timeDirector - Information SecurityRequired Experience : 5 - 8 YearsSalary Range : 25 LPA - 40 LPALocation : Bangalore, Karnataka, IndiaIndustries & Domains : Enterprise/ SaaSSkills & Expertise : - ISO 27001- PCI DSSPreferred Certifications :- CISSP- CCSP- CISMMust to have :- Experience working in a fast-paced B2B startup environment with an engineering team...
-
Director Information Security
4 weeks ago
bangalore, India Pretium Full timePosition Summary: The Director of Information Security will provide strategic leadership in the development, implementation, and monitoring of the company's cybersecurity strategy, ensuring all assets and data remain secure against potential threats. This position will be responsible for overseeing the work of our India Security Team. This position requires...
-
Director Information Security
3 weeks ago
bangalore, India AMEX Full timeYou Lead the Way. Weve Got Your Back. With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, youll learn and grow as we help you create a...
-
Director of Information Security
2 weeks ago
Bangalore, India Zyoin group Full timeExperience: 20+ YearsMandate Skills: HIPAA, NIST, CISSP or CISM, Cyber security management, privacy policies, PCI-DSS, CIS, procedures.Essential Functions: - Global Cybersecurity Strategy Alignment: Collaborate with both the India and US cybersecurity teams to align their strategies and initiatives. - Ensure that the goals and actions of both teams are...
-
Director of Information Security
2 months ago
Bangalore, India Zyoin group Full timeExperience: 20+ YearsMandate Skills: HIPAA, NIST, CISSP or CISM, Cyber security management, privacy policies, PCI-DSS, CIS, procedures.Essential Functions: - Global Cybersecurity Strategy Alignment: Collaborate with both the India and US cybersecurity teams to align their strategies and initiatives. - Ensure that the goals and actions of both teams are...
-
Director Information Security
2 weeks ago
bangalore, India AMEX Full timeYou Lead the Way. Weve Got Your Back. With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, youll learn and grow as we help you create a...
-
Director Information Security
4 weeks ago
bangalore, India AMEX Full timeYou Lead the Way. Weve Got Your Back. With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, youll learn and grow as we help you create a...
-
Information Security Manager
1 month ago
bangalore, India Morae Full timePOSITION OVERVIEWThis Information Security GRC Expert – Associate Manager contributes to Morae success byimplementing, and maintaining people, process and technology-oriented policies, procedures, andcontrols to ensure ongoing security and compliance of Morae’s innovative technology solutions and information assets.As a part of highly skilled...
