Information Security Analyst I

2 months ago


Gurugram, India AMEX Full time

You Lead the Way. Weve Got Your Back.

With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, youll learn and grow as we help you create a career journey thats unique and meaningful to you with benefits, programs, and flexibility that support you personally and professionally.

At American Express, youll be recognized for your contributions, leadership, and impactevery colleague has the opportunity to share in the companys success. Together, well win as a team, striving to uphold our and powerful backing promise to provide the worlds best customer experience every day. And well do it with the utmost integrity, and in an environment where everyone is seen, heard and feels like they belong.

Join Team Amex and let's lead the way together.

The incumbent will be required to support TSM (Third-Party Security Management) processes which are executed and operated under TRIS (Technology, Risk, Information security). TSM team is responsible for assessing global third parties on their Information Security practices against Amex standards and derives risks to Amex data and systems. A brief job description for the same shall be:

·Support execution of information security assessments for in-scope suppliers (e.g. support with security assessments, assess the quality of IS/IT assessments conducted by other assessors, define risk ratings as appropriate to the control failures, treatment for risk mitigation etc.)

·Help the team in tracking overall assessments activities end-to-end (toll-gates, current status, IS critical assessments progress) against existing milestones and report on a regularly basis.

·Help in coordinating InfoSec gap remediation with stakeholders e.g. with BU relation managers, External Assessors, and third parties, etc. Able to review control evidence and provide suitable suggestions to the Business Partners

·Contribute in understanding and improving Standard Operating Procedures/Policies for the TSM.

·Coordinate and help in drafting training materials as needed (e.g. TSM or TRM Trainings, etc.).

·Acting as a process champion (buddy) for new person onboarding e.g. training, access needs, etc.

·Schedule, execute and document critical meeting minutes for both internal and external stakeholders (e.g. Team meetings, Operation/Calibration calls with Assessors, gap remediation calls, etc.)

·Finding and driving process efficiencies, optimal usage of resources, contributing in automation, etc.

Skills and Behavior:

·Possesses prior IT and business work experience with exposure to various technical environments and business processes

·Experience working with auditors and regulators is recommended

·Strong interpersonal skills as role involves dealing with multiple stakeholders in diversified geographies including external Assessors, ISO team etc.

·Excellent communication skills (both written and verbal).

·Task oriented skills with accountability and acumen to look at the bigger picture

·Flexibility and enthusiasm to take special projects and collaborate to drive success for the team

·Attention to detail in reading and drafting procedures/reports

·Superior skill in organizing, managing and interpreting data, and ability to effectively collaborate across teams and analyze complex information

Professional Requirements:

·4-5 years of overall experience (and 2-3 years in IT/InfoSec, Audits & assurance, Risk and Compliance, cyber security preferably)

·Experienced professional at responsible positions, including exposure to work with global teams

·Bachelors Degree in Computer Science or Engineering recommended / Chartered Accountant degree / Risk certifications such as ISO27001 CISSP, CISM, CISA, CRISC, CGEIT, COBIT, or PCI is highly recommended

We back our colleagues and their loved ones with benefits and programs that support their holistic well-being. That means we prioritize their physical, financial, and mental health through each stage of life. Benefits include:

Competitive base salaries Bonus incentives Support for financial-well-being and retirement Comprehensive medical, dental, vision, life insurance, and disability benefits (depending on location) Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need Generous paid parental leave policies (depending on your location) Free access to global on-site wellness centers staffed with nurses and doctors (depending on location) Free and confidential counseling support through our Healthy Minds program Career development and training opportunities

American Express is an equal opportunity employer and makes employment decisions without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, disability status, age, or any other status protected by law.

Offer of employment with American Express is conditioned upon the successful completion of a background verification check, subject to applicable laws and regulations.



  • Gurugram, India American Express Full time

    You Lead the Way. We’ve Got Your Back. With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, you’ll learn and grow as we help you create a...


  • Gurugram, India Sun Life Full time

    Job Description : Information Security Analyst (Band 5) The Information Security Analyst will be responsible for supporting Senior Information Security Advisors within the team in their day-to-day duties. Support work will include, but is not limited to analysis of security documentation/questionnaires from both vendor and internal teams, following up...


  • Gurugram, India Summit Consulting Services Full time

    Job Overview:As a Security Operations Analyst, you will be responsible for triaging security alerts, incidents, and tickets in accordance with established playbooks. You will play a key role in recommending, updating, and documenting improvements to information security playbooks, helping to create new alerts and reduce false positives. You will work with...


  • Gurugram, India Summit Consulting Services Full time

    Job Overview:As a Security Operations Analyst, you will be responsible for triaging security alerts, incidents, and tickets in accordance with established playbooks. You will play a key role in recommending, updating, and documenting improvements to information security playbooks, helping to create new alerts and reduce false positives. You will work with...


  • gurugram, India Summit Consulting Services Full time

    Job Overview:As a Security Operations Analyst, you will be responsible for triaging security alerts, incidents, and tickets in accordance with established playbooks. You will play a key role in recommending, updating, and documenting improvements to information security playbooks, helping to create new alerts and reduce false positives. You will work with...


  • Gurugram, India Summit Consulting Services Full time

    Job Overview: As a Security Operations Analyst, you will be responsible for triaging security alerts, incidents, and tickets in accordance with established playbooks. You will play a key role in recommending, updating, and documenting improvements to information security playbooks, helping to create new alerts and reduce false positives. You will work with...


  • gurugram, India Summit Consulting Services Full time

    Job Overview: As a Security Operations Analyst, you will be responsible for triaging security alerts, incidents, and tickets in accordance with established playbooks. You will play a key role in recommending, updating, and documenting improvements to information security playbooks, helping to create new alerts and reduce false positives. You will work with...


  • Gurugram, India Ameriprise Financial Full time

    Part of a team that establishes, supports and continuously improves the enterprise information security policies, practices and standards. Participate in on-going operational activities that serve to establish appropriate access to and provide the appropriate protection, confidentiality, integrity and availability of enterprise systems and data through...


  • gurugram, India Summit Consulting Services Full time

    Job Overview:As a Security Operations Analyst, you will be responsible for triaging security alerts, incidents, and tickets in accordance with established playbooks. You will play a key role in recommending, updating, and documenting improvements to information security playbooks, helping to create new alerts and reduce false positives. You will work with...

  • Information Security

    1 month ago


    gurugram, India VMock Full time

    Job Summary:We are seeking a highly motivated Information Security & Compliance Manager to join our dynamic team at VMock. You will leverage your technical expertise and communication skills to ensure our information security program meets or exceeds industry regulations and standards while directly addressing client concerns and requirements. You will be a...


  • Gurugram, India Ameriprise Financial Full time

    Information Security Engineer required for Security Infrastructure Management team, with relevant experience in Security tools Operations (DLP, UEBA/Securonix, Zscaler) Key responsibilities: i) Configure and manage security tools Securonix,DLP, Zscaler ii) Perform independent assignments - RIN installation, upgrades, DLP policy configuration iii) Ensure...

  • Security Analyst

    3 weeks ago


    Gurugram, India Vizlogic Digital Solutions Private Limited Full time

    The primary function of Security Analyst is to analyse any incidents escalated by various security tools and services and undertake the detailed investigation of the Security Event. The Security Analyst shall determine whether the security event will be classified as an incident. Once an incident is classified, he/she will be coordinating with the IT and...

  • Information Security

    4 weeks ago


    gurugram, India VMock Full time

    Job Summary: We are seeking a highly motivated Information Security & Compliance Manager to join our dynamic team at VMock. You will leverage your technical expertise and communication skills to ensure our information security program meets or exceeds industry regulations and standards while directly addressing client concerns and requirements. You will be...

  • Information Security

    1 month ago


    gurugram, India VMock Full time

    Job Summary: We are seeking a highly motivated Information Security & Compliance Manager to join our dynamic team at VMock. You will leverage your technical expertise and communication skills to ensure our information security program meets or exceeds industry regulations and standards while directly addressing client concerns and requirements. You will be...

  • Information Security

    1 month ago


    Gurugram, India VMock Full time

    Job Summary:We are seeking a highly motivated Information Security & Compliance Manager to join our dynamic team at VMock. You will leverage your technical expertise and communication skills to ensure our information security program meets or exceeds industry regulations and standards while directly addressing client concerns and requirements. You will be a...


  • gurugram, India OpSec Security Full time

    OpSec Security are the world leader in brand protection, with over 4 decades of history and an integral part of Crane NXT, a $1.5 billion dollar business with over 4,750 associates worldwide. We safeguard the revenues and reputations of more than half of the Fortune 100. We effectively address Brand, Piracy, and Fraud risks that brands face due to to the...


  • Gurugram, India OpSec Security Full time

    OpSec Security are the world leader in brand protection, with over 4 decades of history and an integral part of Crane NXT, a $1.5 billion dollar business with over 4,750 associates worldwide. We safeguard the revenues and reputations of more than half of the Fortune 100. We effectively address Brand, Piracy, and Fraud risks that brands face due to to the...


  • Gurugram, India OpSec Security Full time

    OpSec Security are the world leader in brand protection, with over 4 decades of history and an integral part of Crane NXT, a $1.5 billion dollar business with over 4,750 associates worldwide. We safeguard the revenues and reputations of more than half of the Fortune 100. We effectively address Brand, Piracy, and Fraud risks that brands face due to to the...


  • gurugram, India OpSec Security Full time

    OpSec Security are the world leader in brand protection, with over 4 decades of history and an integral part of Crane NXT, a $1.5 billion dollar business with over 4,750 associates worldwide. We safeguard the revenues and reputations of more than half of the Fortune 100. We effectively address Brand, Piracy, and Fraud risks that brands face due to to the...


  • Gurugram, India OpSec Security Full time

    OpSec Security are the world leader in brand protection, with over 4 decades of history and an integral part of Crane NXT, a $1.5 billion dollar business with over 4,750 associates worldwide. We safeguard the revenues and reputations of more than half of the Fortune 100. We effectively address Brand, Piracy, and Fraud risks that brands face due to to the...