It's more than protecting systems and data.
It's protecting people.
Our Information Security Managers know that security is a top priority for our business and our partners and customers. Today, as cyber-attacks increase and compliance is more rigorously enforced, we look to them to stay ahead of what's next and to protect our business and our future. So if you are dedicated to the latest technology and motivating others, secure your career here.
You won't just see the problem coming, you'll see the solution.
New threats to our business, our partners and customers appear on the horizon every day, so no two days are the same. But there are some things you can count on doing:
Work with customers on known security risks and follow-up on mitigation, remediation, and closure
Manage operational work of both onshore and offshore team
Develop and maintain reports for leadership to demonstrate operational effectiveness and performance
Own all customer communication to customers, including developers, risk champions, application owners, and senior leadership.
Do you have what it takes to lead the way in cyber security?
3 years experience in Web Application Security, including knowledge of DAST and SAST, penetration testing, and offensive security
Experience in a SOC environment, especially as a mid or senior
Strong experience in leading, mentoring, and educating others on best practices for application security
Knowledge of security frameworks and standards, like OWASP, NIST, PCI, ISO, COBIT, and understanding of common mobile vulnerabilities
Superior skill in organizing, managing and interpreting data
Proven communication skills, the ability present information clearly and concisely to all levels of management both formally and informally
Requires experience in analyzing large amounts of data, interpreting results, and making recommendations
Strong communication and experience working across teams to achieve goals
Strong time management skills, and the ability to prioritize and multi-task.
Required Certifications: CISSP and OSCP
At the core of Information Security Management.
Every member of our team must be able to demonstrate the following technical, functional, leadership and business core competencies, including:
Business Process Improvement
Business Risk Management
Coaching and Mentoring
Business Case Development
Industry and Company Knowledge
Employment eligibility to work with American Express in the U.S. is required as the company will not pursue visa sponsorship for these positions