Information Security Analyst - Data Privacy Management

You Lead the Way. We’ve Got Your Back.

With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other.

Here, you’ll learn and grow as we help you create a career journey that’s unique and meaningful to you with benefits, programs, and flexibility that support you personally and professionally.

At American Express, you’ll be recognized for your contributions, leadership, and impact every colleague has the opportunity to share in the company’s success.

Together, we’ll win as a team, striving to uphold our and powerful backing promise to provide the world’s best customer experience every day.

And we’ll do it with the utmost integrity, and in an environment where everyone is seen, heard and feels like they belong.

Join Team Amex and let's lead the way together.

As part of our diverse tech team, you can architect, code and ship software that makes us an essential part of our customers’ digital lives.

Here, you can work alongside talented engineers in an open, supportive, inclusive environment where your voice is valued, and you make your own decisions on what tech to use to solve challenging problems.

American Express offers a range of opportunities to work with the latest technologies and encourages you to back the broader engineering community through open source.

And because we understand the importance of keeping your skills fresh and relevant, we give you dedicated time to invest in your professional development.

Find your place in technology on #TeamAmex.

American Express relies on and is entrusted with information from customers, merchants, colleagues, and third parties. As such, the Company aims to safeguard the confidentiality, integrity, and availability of this information.

The new Enterprise Data Governance Program aims to focus on the reliability of trusted data for the most critical use cases such as Risk Models, Financial Reporting, and Customer Profile, which pose the highest operational risks if using unmanaged data.

The Data Risk Management Team within the Technology Risk & Information Security (TRIS) organization is critical to the elevation of technology and data risk by embedding and centralizing Technical & Business Data Architecture into core data life cycle activities, expand Data Governance Operating Model beyond highest risk data, and centralize processes and tooling across all critical domains.

Responsibilities :

• Implement Privacy Risk monitoring, notification, remediation and reporting.
• Support and deliver against privacy risk management goals, best practices, and risk mitigation strategies
• Subject matter expert (SME) within the first line risk function
• Collaborate with Global Privacy Oversight
• Identify and support mitigation of risk, including AI and Gen AI related risks, to guide the business
• Support creation and maintenance of key metrics and dashboard to ensure internal and external stakeholders remain informed on progress and deliverables

Qualifications :

• 3-5 years’ experience in a Risk Management / Compliance / Audit role or a highly regulated domain
• Experience in Privacy risk management and familiarity with key regulations including GDPR and CCPA
• Demonstrated ability to manage risk and deliver initiatives to advance the maturity and soundness of the control environment
• Excellent written and verbal communication and presentation skills, able to create compelling arguments and influence across all levels of the organization
• Excellent relationship building skills to partner effectively across diverse, cross-functional teams in complex and rapidly changing environments
• Strong problem-solving and analytical skills, with strong learning agility and willingness to embrace change
• Working knowledge of privacy risk identification, assessment, and management frameworks, including designing and implementing privacy related controls preferred
• Experience working in a highly controlled environment and supporting policies and procedures preferred

Educational Requirements :

• Bachelor’s Degree in related field
• CISM, CISA, CRISC, CISSP or equivalent privacy certifications preferred

Salary Range : $85,000.00 to $150,000.00 annually + bonus + benefits

The above represents the expected salary range for this job requisition. Ultimately, in determining your pay, we’ll consider your location, experience, and other job-related factors.

We back our colleagues and their loved ones with benefits and programs that support their holistic well-being. That means we prioritize their physical, financial, and mental health through each stage of life. Benefits include :

• Competitive base salaries
• Bonus incentives
• 6% Company Match on retirement savings plan
• Free financial coaching and financial well-being support
• Comprehensive medical, dental, vision, life insurance, and disability benefits
• Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need
• 20+ weeks paid parental leave for all parents, regardless of gender, offered for pregnancy, adoption or surrogacy
• Free access to global on-site wellness centers staffed with nurses and doctors (depending on location)
• Free and confidential counseling support through our Healthy Minds program
• Career development and training opportunities
30+ days ago