Information Security Analyst
1 month ago
You Lead the Way. We've Got Your Back.
With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, you'll learn and grow as we help you create a career journey that's unique and meaningful to you with benefits, programs, and flexibility that support you personally and professionally.
At American Express, you'll be recognized for your contributions, leadership, and impact—every colleague has the opportunity to share in the company's success. Together, we'll win as a team, striving to uphold our company values and powerful backing promise to provide the world's best customer experience every day. And we'll do it with the utmost integrity, and in an environment where everyone is seen, heard and feels like they belong.
Join Team Amex and let's lead the way together.
As part of our diverse tech team, you can architect, code and ship software that makes us an essential part of our customers' digital lives. Here, you can work alongside talented engineers in an open, supportive, inclusive environment where your voice is valued, and you make your own decisions on what tech to use to solve challenging problems. American Express offers a range of opportunities to work with the latest technologies and encourages you to back the broader engineering community through open source. And because we understand the importance of keeping your skills fresh and relevant, we give you dedicated time to invest in your professional development. Find your place in technology on #TeamAmex.
The objective of the Technology Control Management Governance team is to establish the Operational Risk and Controls strategy for Technology, set up a foundational governance structure that ensures operational risks are identified, assessed, and managed in compliance with enterprise Operational Risk Management programs and reporting.
Technology Control Management is looking for an Analyst of Governance focused on ensuring control management is embedded in the day-to-day operations of our organization. It will involve extensive collaboration with multiple partners across numerous business units, functional areas, and geographies.
The Analyst, Technology Governance will:
Support execution plans for operational risk management within the business unit (BU), including BU specific guidelines, project plans, etc.Track issues with KRI limits and risk appetite for Technology to ensure operational risks aremanaged within agreed thresholds, and leverage these metrics to help detect significant or concerning rises in emerging problems, e.g., upticks in reload complaints, then escalate and flag concerns accordinglyImplement the operational risk framework to enable effective risk management and decision making in the BUManage risk and controls governance forums for Technology, interfacing with org-wide governance processes and committees (e.g., Operational Risk Management Committee) and share insights and lessons learned across forumsHelp create BU-specific procedures and additional standards (i.e., escalation protocols), related to the execution of the Operational Risk Management programsFacilitate the understanding and use of the risk governance framework across BUs through regular communicationSupport the day-to-day internal and external exam management process, working with the Enterprise functions (e.g., data request compilation, action implementation, and regulatory adherence)
Aggregate reporting, approvals/exceptions and support "change-the-function" activities for the BU
Administer implementation of comprehensive training initiatives and clear career progression plans that align with Operational Risk Management
Manage processes to ensure and monitor the integration of regulatory changes & updates into the Operational Risk framework and training materialsSupport sharing insights, better practices, themes, etc. across the enterpriseQualifications:Bachelor's Degree in Risk Mgmt, Information Security, Business, or related field; advanced degrees (e.g., MBA, MSc) or certifications are advantageous5 years of relevant experience preferredExperience in operational risk management (e.g., within Risk and/or Internal Audit function) and understands critical operational risk management lifecycle activitiesExperience in at least one of the following in a supporting role: Translating operational risk strategy and appetite into execution guidelines; Tracking and identifying issues with Key Risk Indicator (KRI) limits and risk appetite to ensure operational risks are managed within agreed thresholds; Implementing the operational risk governance frameworks; Creating, communicating and ensuring understanding and adherence to operational risk procedures and standards; Supporting the operational risk exam management processesStrong analytical and problem-solving skills, with an ability to analyze data, identify trends, and evaluate risk scenarios effectivelyExperience in data analyticsAgile best practices understandingUnderstanding of NIST, ISO, PCI, etc.Excellent qualitative analytical skillsProject management skills
Excellent communication and interpersonal skills, with an ability to interact senior BU/tech counterpartsExperience in process governance, establishing and overseeing robust decision-making processes that align with policies, regulatory frameworks, and/or operational standardsCISA, CRISC, or CISM preferred ORMCM Salary Range: $85,000.00 to $150,000.00 annually + bonus + benefits The above represents the expected salary range for this job requisition. Ultimately, in determining your pay, we'll consider your location, experience, and other job-related factors. We back our colleagues and their loved ones with benefits and programs that support their holistic well-being. That means we prioritize their physical, financial, and mental health through each stage of life. Benefits include: Competitive base salaries Bonus incentives 6% Company Match on retirement savings plan Free financial coaching and financial well-being support Comprehensive medical, dental, vision, life insurance, and disability benefits Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need 20+ weeks paid parental leave for all parents, regardless of gender, offered for pregnancy, adoption or surrogacy Free access to global on-site wellness centers staffed with nurses and doctors (depending on location) Free and confidential counseling support through our Healthy Minds program Career development and training opportunities For a full list of Team Amex benefits, visit our Colleague Benefits Site. American Express is an equal opportunity employer and makes employment decisions without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, disability status, age, or any other status protected by law. We back our colleagues with the support they need to thrive, professionally and personally. That's why we have Amex Flex, our enterprise working model that provides greater flexibility to colleagues while ensuring we preserve the important aspects of our unique in-person culture. Depending on role and business needs, colleagues will either work onsite, in a hybrid model (combination of in-office and virtual days) or fully virtually. US Job Seekers/Employees - Click here to view the "Know Your Rights" poster and the Pay Transparency Policy Statement. If the links do not work, please copy and paste the following URLs in a new browser window: to access the three posters.
Employment eligibility to work with American Express in the U.S. is required as the company will not pursue visa sponsorship for these positions.
-
Information Security Analyst
1 week ago
New York, New York, United States Mhymatch Inc Full timeAbout the Role: As an Information Security Analyst at Mhymatch Inc, you will play a crucial role in protecting our organization's digital assets and ensuring the integrity of our information systems. Location: Remote Company Overview: Mhymatch Inc is a leading firm in the realm of cybersecurity, dedicated to delivering innovative solutions that safeguard...
-
Information Security Analyst
2 months ago
New York, New York, United States Michael Page Full timeClient will move quickly qualified candidatesCompetitive compensation and benefits About Our Client A new financial software company located in Manhattan. Job DescriptionOversee the firm's information security posture, providing regular updates to senior management.Conduct assessments to identify information security risks and recommend remediation...
-
Information Security Analyst
1 week ago
New York, New York, United States Noor Staffing Group Full timeThis position is based in a dynamic environment focused on safeguarding information assets.Please be aware that sponsorship is not available for this role, and we are not considering contract-to-contract candidates.The key responsibilities of this position involve identifying and evaluating security vulnerabilities, working collaboratively with various...
-
Information Security Analyst
1 week ago
New York, New York, United States Noor Staffing Group Full timeSalary: $125,000-$145,000Work Arrangement: On-Site Monday-Thursday / Remote FridaysPlease note that candidates must reside in the local area as relocation is not an option for this position.The Cybersecurity Specialist plays a crucial role in safeguarding, managing, and overseeing the security of the organization's enterprise infrastructure and network...
-
Information Security Analyst
1 week ago
New York, New York, United States Heidrick & Struggles Full timeAbout Us:Heidrick & Struggles (Nasdaq: HSII) stands as a leading provider of global leadership advisory and on-demand talent solutions, addressing the senior-level talent and consulting requirements of the world's foremost organizations. As trusted advisors in leadership, we collaborate with our clients to cultivate future-ready leaders and organizations,...
-
Information Security Analyst
1 week ago
New York, New York, United States Heidrick & Struggles Full timeAbout Us:Heidrick & Struggles (Nasdaq: HSII) stands as a leading provider of global leadership advisory and on-demand talent solutions, catering to the senior-level talent and consulting requirements of the world's foremost organizations. As trusted advisors in leadership, we collaborate with our clients to cultivate future-ready leaders and organizations,...
-
Information Security Analyst
1 week ago
New York, New York, United States Heidrick & Struggles Full timeAbout Us:Heidrick & Struggles (Nasdaq: HSII) stands as a leading provider of global leadership advisory and on-demand talent solutions, addressing the senior-level talent and consulting requirements of the world's foremost organizations. As trusted advisors in leadership, we collaborate with our clients to cultivate future-ready leaders and organizations,...
-
Information Security Analyst
1 month ago
New York, New York, United States American Express Full timeYou Lead the Way. We've Got Your Back.With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, you'll learn and grow as we help you create a career...
-
Senior Information Security Analysts
3 weeks ago
New York, New York, United States American Express Full timeAmerican Express Travel Related Services Company, Inc.seeks Senior Information Security Analysts to provide analytical and technical support for issue management, project assessment, and reporting.Support user access control and data analysis activities for monitoring and reporting purposes.Evaluate and automate products and procedures to enhance...
-
Junior Information Security Specialist
1 week ago
New York, New York, United States MORS Full timePosition OverviewThe role of the Information Security Analyst Tier 1 at MORS involves executing fundamental threat detection and incident response tasks to uphold the organization's security framework. Responsibilities include:Identifying and addressing security vulnerabilities by analyzing security events and alerts.Implementing incident response protocols...
-
New York, New York, United States eJangar Full timePosition: Information Security Risk Management SpecialistExperience Required: Minimum of 4+ years in ITEssential Skills:• 4+ years of experience as a Cybersecurity/Risk Analyst, focusing on information risk evaluation and data privacy impact assessments.• 2+ years of proficiency with Resource Access Control Facility (RACF).• 2+ years of hands-on...
-
Senior Information Security Analyst
3 weeks ago
New York, New York, United States American Express Full timeYou Lead the Way.We've Got Your Back.With the right backing, people and businesses have the power to progress in incredible ways.When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other.Here, you'll learn and grow as we help you create a career...
-
New York, New York, United States Citigroup Inc Full timePosition Overview: Citi, a premier global financial institution, serves approximately 200 million customer accounts across more than 160 countries and jurisdictions. We offer a comprehensive suite of financial products and services, including consumer banking, corporate and investment banking, securities brokerage, transaction services, and wealth...
-
Senior Security analyst with training experience
1 month ago
New York, New York, United States Berrysoft Consulting Full timeNYS Department of Financial Services- 30 Months - One State Street Plaza, Second Floor, New York, NY % remoteShort description:The Security Analyst will directly support the New York State Department of Financial Services (DFS) Information Security Program, responsible for ensuring the confidentiality, integrity, and availability of information and...
-
IT Compliance and Security Analyst
1 week ago
New York, New York, United States Beacon Hill Inc Full timeIT Compliance and Security AnalystContract OpportunityCompensation: $75/hour, W2Work Arrangement: Hybrid (4 days/week onsite)Key Responsibilities:Compliance Evaluation: Conduct thorough assessments across all IT security control domains to ensure adherence to both external obligations and internal policies.Assessment Management: Oversee the planning,...
-
Director of Information Security
3 weeks ago
New York, New York, United States Open Systems Technologies Full timeA non-profit organization is looking for a Director of Information Security to join their team in New York, NY.Compensation:$160-170kThe Director of Information Security is responsible for the development, implementation, and management of the Information Security program at an enterprise level.The Director of Information Security serves as a departmental...
-
Senior Business Systems Analyst
6 days ago
New York, New York, United States Fidelity Information Services Full timeJOB DESCRIPTIONPosition Type :Full timeType Of Hire :Experienced (relevant combination of work and education)Education Desired :Bachelor's Degree in Computer Science or related fieldTravel Percentage :0%Senior Business Systems AnalystAre you inquisitive, driven, and innovative? At Fidelity Information Services, you will have the chance to tackle some of the...
-
Director, Information Security
3 weeks ago
New York, New York, United States Global Relay Full timeFor over 20 years, Global Relay has set the standard in enterprise information archiving with industry-leading cloud archiving, surveillance, eDiscovery, and analytics solutions.Reporting to the Chief Information Security Officer (CISO), you will play a key role in ensuring the successful implementation and completion of security initiatives alongside Global...
-
Information Security Architect
1 week ago
New York, New York, United States Dreamforce Services, Inc Full timeAbout the Role: Information Security ArchitectJob Overview:As an Information Security Architect, you will play a pivotal role in enhancing the security posture of our organization. Your expertise will guide the design and implementation of robust security frameworks that protect our critical information assets.Key Responsibilities:Evaluate and enhance the...
-
Senior Security Risk Analyst
1 month ago
New York, New York, United States Justworks Full timeWho We AreAt Justworks, you'll enjoy a welcoming and casual environment, great benefits, wellness program offerings, company retreats, and the ability to interact with and learn from leaders in the startup community. We work hard and care about our most prized asset - our people.We're helping businesses get off the ground by enabling them to focus on running...
