Director - Privacy Regulatory Testing

At American Express, our culture is built on a 175-year history of innovation, shared values and Leadership Behaviors, and an unwavering commitment to back our customers, communities, and colleagues. As part of Team Amex, you'll experience this powerful backing with comprehensive support for your holistic well-being and many opportunities to learn new skills, develop as a leader, and grow your career.

Here, your voice and ideas matter, your work makes an impact, and together, you will help us define the future of American Express.

How will you make an impact in this role?

Responsible for contacting clients with overdue accounts to secure the settlement of the account. Also they do preventive work to avoid future overdues with accounts that have a high exposure.

The American Express Global Privacy Oversight are trusted advisors on the American Express Data Protection & Privacy Principles and related Privacy Laws, Rules and Regulations. We work to raise privacy awareness, drive compliance with both internal privacy policies and regulatory expectations across the organization and establish privacy as a strategic differentiator for the American Express brand. As a second line of defense function, Global Privacy oversee, provide expertise in, and challenge the identification, management, and mitigation of privacy risks across the company in line with the privacy framework and the company's vision to provide the world's best customer experience every day.

This position is based in Gurgaon, and reports to Vice President, Privacy Testing.

We are seeking an experienced privacy professional to join our Compliance team as a Director of Privacy Regulatory Testing. This role is responsible for the development and execution of privacy testing across multiple jurisdictions, ensuring business activities meet both regulatory expectations and internal compliance standards. The successful candidate will lead a team of testing professionals, support the development of the global testing framework, and work closely with senior stakeholders to drive a culture of compliance

Key Responsibilities:

Testing Program Execution:

• Lead the development and execution of risk-based Privacy Testing Plans across business units and regions.
• Execute testing lifecycle responsibilities in accordance with the Compliance Testing methodology, internal policies and standards, and regulatory expectations, whilst consistently delivering with quality and professionalism.
• Execute multiple simultaneous reviews of varying sizes and complexity across jurisdictions, legal entities, and business areas.

Risk Identification & Escalation:

• Identify, assess, and report on regulatory findings, utilizing professional skepticism and documenting test results clearly in accordance with procedures.
• Validate management's remediation plans to ensure identified issues are appropriately addressed.

Stakeholder Engagement:

• Develop a strong understanding of American Express' business model, products, services, and organisational structure.
• Work closely with other second line risk teams, GCO, and Audit to coordinate testing efforts and ensure alignment.
• Present results to senior management in a highly professional and proficient manner.

Team Leadership:

• Manage, coach, and develop a team of privacy testing colleagues across multiple locations, fostering professional growth and engagement.

Framework Development:

• Contribute to the enhancement of global Compliance Testing standards and procedures.
• Stay abreast of, and respond to, external privacy regulatory developments and evolving privacy industry practices.

Minimum Qualifications

• Extensive knowledge of global privacy regulations (e.g., GDPR, CCPA) and experience interpreting regulatory requirements into actionable compliance testing frameworks.
• Ten (10) or more years' experience in regulatory compliance, internal or external audit, or similar role in financial services, banking, or card products industries.
• Relevant privacy, audit or other compliance testing or assurance related professional certifications (e.g. Certified Information Privacy Professional (CIPP), Certified Public Accountant (CPA), Certified Internal Auditor (CIA), Certified Regulatory Compliance Manager (CRCM)).
• A proven understanding of global regulatory frameworks and compliance and regulatory expectations, relevant regulatory laws, regulations and standards affecting risk management of banks and financial institutions.
• Detailed knowledge of testing protocols for testing compliance controls and activities using various techniques, identifying deficiencies, and assessing the implementation of issue remediation to maintain alignment with legal obligations.
• Possesses a mindset of questioning assumptions, critically assessing information and seeking evidence to validate conclusions, so decisions are unbiased and well-founded, free from external pressures or conflicts of interest, and show integrity and objectivity.
• Ability to project confidence, credibility and authority in high-level discussions. An exceptional communicator that can influence decisions and perspectives, persuade stakeholders and manage relationships, embedding a strong risk-aware culture throughout the organisation and encouraging proactive risk management.
• Skills to identify, track, and challenges the effective remediation of risk-related issues in a timely manner, so as reduce risks to acceptable levels and prevent reoccurrence.
• An experienced people leader with a demonstrated ability to manage people in a way that inspires, develops, and delivers results.

We back you with benefits that support your holistic well-being so you can be and deliver your best. This means caring for you and your loved ones' physical, financial, and mental health, as well as providing the flexibility you need to thrive personally and professionally:

• Competitive base salaries
• Bonus incentives
• Support for financial-well-being and retirement
• Comprehensive medical, dental, vision, life insurance, and disability benefits (depending on location)
• Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need
• Generous paid parental leave policies (depending on your location)
• Free access to global on-site wellness centers staffed with nurses and doctors (depending on location)
• Free and confidential counseling support through our Healthy Minds program
• Career development and training opportunities

American Express is an equal opportunity employer and makes employment decisions without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, disability status, age, or any other status protected by law.

Offer of employment with American Express is conditioned upon the successful completion of a background verification check, subject to applicable laws and regulations.