Information Security Analyst-data Protection - Phoenix, United States - Amex

Amex

Verified Company

Phoenix, United States

4 weeks ago

Posted by:

Mark Lane

beBee recruiter

Description

You Lead the Way. We've Got Your Back.
With the right backing, people and businesses have the power to progress in incredible ways.

When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other.

Here, you'll learn and grow as we help you create a career journey that's unique and meaningful to you with benefits, programs, and flexibility that support you personally and professionally.

At American Express, you'll be recognized for your contributions, leadership, and impact—every colleague has the opportunity to share in the company's success.

Together, we'll win as a team, striving to uphold our company values and powerful backing promise to provide the world's best customer experience every day.

And we'll do it with the utmost integrity, and in an environment where everyone is seen, heard and feels like they belong.

Join Team Amex and let's lead the way together.

As part of our diverse tech team, you can architect, code and ship software that makes us an essential part of our customers' digital lives.

Here, you can work alongside talented engineers in an open, supportive, inclusive environment where your voice is valued, and you make your own decisions on what tech to use to solve challenging problems.

American Express offers a range of opportunities to work with the latest technologies and encourages you to back the broader engineering community through open source.

And because we understand the importance of keeping your skills fresh and relevant, we give you dedicated time to invest in your professional development.

Find your place in technology on #TeamAmex.

Responsible for assisting with activities designed to systematically handle information security, such as security investigations, intelligence, assurance, and awareness, and/or other project oversight, including developing standard methodologies for information security standards and handling IT controls and compliance with regulatory guidance.

How will you make an impact in this role?

Interface directly and collaborate/partner with team members and key groups such as Operational Risk, Privacy Officer Groups, ERG, Global Security and other groups to drive and support Data Protection initiatives
Evaluate and monitor various events across multiple data channels for risk of data loss in violation of regulatory requirements, internal policies and standards, or safe business practices
Manage, track and periodically report opportunities for data loss and drive the use of alternative solutions
Develop and implement appropriate reporting metrics to measure data protection program and operational risk
Works individually and with teams on both structured and unstructured assignments
Participates in the evaluation and testing of controls and processes within the Data Protection Operations program.
Responsible for implementing and managing DPO processes, projects or programs that have objectives associated with protecting customer data and managing policy violations

Minimum Qualifications

Typically holds a Bachelor's degree in Computer Science, Information Systems, Business Administration or other related field (or equivalent work experience).
Professional Audit or Information Security certification preferred (e.g. CISA, CISSP, CISM, etc.)
Requires at least 2+ years of prior data protection experience
Knowledge of frameworks, standards, and best practices (i.e. NIST, PCI, ISO, COBIT, COSO, CMMI)
Requires knowledge of business and technical functional capabilities in the following areas: security architecture; security engineering; threat management; vulnerability management; computer and data breach incident management; security policies and standards; data security; network security; system security, technology operations, governance and compliance
Typically possesses prior IT and business work experience with exposure to various technical environments and business segments, and some experience working with auditors and regulators.
Superior skill in organizing, managing and interpreting data.
Proven communication skills, the ability to present both written and verbal information clearly and concisely to all levels of management both formally and informally
Strong time management skills with the ability to prioritize and multitask
Delivers strong results independently
Indepth experience with desktop software and office automation tools

Salary Range:
$85,000.00 to $150,000.00 annually + bonus + benefits

The above represents the expected salary range for this job requisition. Ultimately, in determining your pay, we'll consider your location, experience, and other job-related factors.

We back our colleagues and their loved ones with benefits and programs that support their holistic well-being. That means we prioritize their physical, financial, and mental health through each stage