Director Information Security - Operational Risk Governance

You Lead the Way. We've Got Your Back.

With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, you'll learn and grow as we help you create a career journey that's unique and meaningful to you with benefits, programs, and flexibility that support you personally and professionally.

At American Express, you'll be recognized for your contributions, leadership, and impact-every colleague has the opportunity to share in the company's success. Together, we'll win as a team, striving to uphold our company values and powerful backing promise to provide the world's best customer experience every day. And we'll do it with the utmost integrity, and in an environment where everyone is seen, heard and feels like they belong.

Join Team Amex and let's lead the way together.

As part of our diverse tech team, you can architect, code and ship software that makes us an essential part of our customers' digital lives. Here, you can work alongside talented engineers in an open, supportive, inclusive environment where your voice is valued, and you make your own decisions on what tech to use to solve challenging problems. American Express offers a range of opportunities to work with the latest technologies and encourages you to back the broader engineering community through open source. And because we understand the importance of keeping your skills fresh and relevant, we give you dedicated time to invest in your professional development. Find your place in technology on #TeamAmex.

The Director of Operational Risk Governance will help build and improve the operational risk posture of Technology within American Express by developing consistent reporting and threshold key risk controls to provide oversight and dimension and to ensure an effective route for risk escalation and resolution. This role will have direct engagement and influence with over risk solutioning via the risk committees and other risk functions.

Responsibilities:

• Track and identify issues with KRI limits/risk appetite for Technology

• Lead risk and controls governance forums for the Technology, and collaborate with other governance processes and committees (e.g., ORMC)

• Handle the day-to-day internal and external exam process (e.g., data request compilation, action implementation, and reg. standard alignment) as it relates to Operational Risk requirements and inquiries

• Build Technology-specific procedures and additional standards (e.g., escalation protocols)

• Aggregate approvals and lead "change-the-function" activities for Technology

• Actively coordinate and handle the Tech/Privacy work including compliance planning and tracking.

Qualifications:

• 8+ years of relevant professional work experience within Operational Risk Management with experience in Information Security and Technology Risk Management

• Broad understanding of information security disciplines with emphasis on risk management and data analytics

• Understanding of regulatory landscape while able to link threats to risk tolerance and control efficiency gauges.

• Proven track record in extending and maintaining good relationships in an intricate multi-national corporation

• Ability to translate technical security concepts to non-technical vernacular for business leaders and influence in a matrix environment

• Calm and collected with outstanding operational leadership in stressful situations

• Ability to prioritize actions for the benefit of the organization to remain committed to the most critical issues

• Abundant initiative and energy to go beyond minimum requirements of effort and activity; a bias for action and for getting things done

• Strong problem solver with the ability to use analytical methods to affect change

Educational Requirements:

• Bachelor's in information assurance, accounting, computer science or related field. Master's degree or equivalent experience preferred.
• CPA, CISM, CISA, CRISC, or CISSP certification

Salary Range: $170,000.00 to $255,000.00 annually + bonus + equity (if applicable) + benefits

The above represents the expected salary range for this job requisition. Ultimately, in determining your pay, we'll consider your location, experience, and other job-related factors.

We back our colleagues and their loved ones with benefits and programs that support their holistic well-being. That means we prioritize their physical, financial, and mental health through each stage of life. Benefits include:

• Competitive base salaries

• Bonus incentives

• 6% Company Match on retirement savings plan

• Free financial coaching and financial well-being support

• Comprehensive medical, dental, vision, life insurance, and disability benefits

• Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need

• 20+ weeks paid parental leave for all parents, regardless of gender, offered for pregnancy, adoption or surrogacy

• Free access to global on-site wellness centers staffed with nurses and doctors (depending on location)

• Free and confidential counseling support through our Healthy Minds program

• Career development and training opportunities

For a full list of Team Amex benefits, visit our Colleague Benefits Site.

American Express is an equal opportunity employer and makes employment decisions without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, disability status, age, or any other status protected by law.

We back our colleagues with the support they need to thrive, professionally and personally. That's why we have Amex Flex, our enterprise working model that provides greater flexibility to colleagues while ensuring we preserve the important aspects of our unique in-person culture. Depending on role and business needs, colleagues will either work onsite, in a hybrid model (combination of in-office and virtual days) or fully virtually.

US Job Seekers/Employees - Click here to view the "Know Your Rights" poster and the Pay Transparency Policy Statement.

If the links do not work, please copy and paste the following URLs in a new browser window: https://www.dol.gov/agencies/ofccp/posters to access the three posters.

Employment eligibility to work with American Express in the U.S. is required as the company will not pursue visa sponsorship for this position.