Information Security Manager-Third Party Security

American Express-posted about 1 year ago
$110,000 - $190,000/Yr
Full-time • Mid Level
Phoenix, AZ
Credit Intermediation and Related Activities
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

The Information Security Manager for Third Party Security at American Express is responsible for overseeing the cyber risk management associated with third-party engagements. This role involves collaborating with various stakeholders to enhance security diligence, manage risks, and ensure compliance with industry standards. The manager will lead initiatives to develop a robust third-party cyber risk operating model, ensuring that security solutions align with business and technology needs while minimizing exposure to risks.

  • Provide thought-leadership for all TRIS domains delivering an integrated view for the enterprise and partnering to deliver third-party security elements across the TLM lifecycle.
  • Partner with the General Counsel Organization (GCO) to assist across the contracting negotiations and product review lifecycles as needed, including by identifying mitigating controls, identifying potential control gaps across TRIS domains, and documenting processes.
  • Lead forums with key stakeholders to enhance third party security diligence oversight, contracting, documentation and risk memo processes.
  • Identify exciting opportunities for adopting new technologies to solve existing needs and predicting future challenges.
  • Evaluate emerging information security developments and help assess the impacts and relevance to American Express to stay ahead of new policies and regulations.
  • Partner with GCO to ensure up-to-date protections are in place for data protection and Information Security in third party contracts.
  • Assist in the strategic development and maturation of a robust third-party cyber risk operating model that enables the enterprise to develop and implement security solutions and capabilities that are clearly aligned with business, technology, and threat drivers.
  • Serve as the IS expert to assist key stakeholders, business unit leaders, and others in understanding the IS processes and requirements for third parties.
  • Bachelor's degree in computer science, computer engineering, or related field; or equivalent experience.
  • 2 years of experience with procurement, contracting, and negotiations processes.
  • 2 years of Third-Party Lifecycle Management experience.
  • 3 years of Control Management and/or Control Testing experience in a large organization.
  • 4 years of experience in Information Security operational roles with increase of responsibilities and scope at American Express.
  • Information Security Certifications including but not limited to; CISSP; CISM; MCTS; MCP; CCNA.
  • Strong communications skills, in both written and verbal form.
  • Strong understanding of IS risk and differences between Technology, IS, and other types of operational risk.
  • Familiarity with industry standard control frameworks, security assurance auditing standards, best practices guidelines, and third-party regulatory requirements, such as ISO27001, NIST CSF, SSAE16/18, CSA, CIS Top 20, OWASP Top 10, FFIEC, etc.
  • Knowledge of network architecture, proxy infrastructure, and programs to support network access and enablement, specifically related to how Third Parties connect to the American Express Network and beyond.
  • Paid parental leave
  • Health insurance
  • Dental insurance
  • Vision insurance
  • Life insurance
  • Retirement plan
  • Competitive base salaries
  • Bonus incentives
  • 6% Company Match on retirement savings plan
  • Free financial coaching and financial well-being support
  • Comprehensive medical, dental, vision, life insurance, and disability benefits
  • Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need
  • 20+ weeks paid parental leave for all parents, regardless of gender, offered for pregnancy, adoption or surrogacy
  • Free access to global on-site wellness centers staffed with nurses and doctors (depending on location)
  • Free and confidential counseling support through our Healthy Minds program
  • Career development and training opportunities
Track Jobs with Teal

Job Search Resources

Resume Builder
Resume Examples
Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service