Director – Risk and Information Security Position Available In Mecklenburg, North Carolina

Job Description:

The Global Risk & Compliance Organization (“GRC”) is anindependent risk management function, led by the Chief RiskOfficer, with the objective of ensuring that American Expressoperates in a safe, sound, and fully compliant manner within allapplicable regulatory expectations. GRC creates and maintains theoverall risk management framework, performs independent riskmanagement assessments, and monitors applicable risks. Colleaguesat GRC are passionate about our commitment to drive the Company’sgoals of growth and progress by creating a culture of riskawareness and proactivity around regulatory matters. By partneringclosely with business units across the enterprise, we help delivermaximum value to our shareholders and our customers througheffective risk management and oversight activities. GRC’sCybersecurity, Technology, and Resiliency Risk Oversight (CTRRO)organization is responsible for independent risk managementprocesses over Information Technology, Information Security, andResiliency risks at American Express. CTRRO is led by the Head ofCTRRO & Vendor Risk Oversight. CTRRO is hiring a new Director whowill support and provide 2nd line oversight for InformationSecurity and Technology Risk Policies and Frameworks acrossAmerican Express. The Director will provide reporting to technologyrisk committees and other forums. The Director will lead a team ofdirect reports responsible for executing their assigned oversightprocesses and programs.

Responsibilities :

• Support oversight ofsecond line technology policies, standards, and procedures overcybersecurity and technology risks
• Support committee governanceand reporting while working with first line and second linestakeholders on content, accuracy, and timeliness
• Support secondline reporting, including quarterly memo and board reporting
• Leadassigned reviews of first line control effectiveness overinformation security processes.
• Consulting with technologyoversight teams over processes to ensure first line adherence tosecond line policies and standards
• Partner with technologyoversight teams on risk appetite maintenance and reporting andexecution of new governance and policies
• Lead and nurture aglobal team of direct reports and maintain performance management
• Develop strong working relationships with all levels of theorganization, handle and resolve conflict, to achieve results andenact wide-scale impact across the organization
• Understand andkeep pace with global regulatory expectations and trends fortechnology risk governance at large banks

Minimum Qualifications:

• 8 years of risk management experience in cybersecurity ortechnology across one or more lines of defense
• Bachelor’s degreein business or technology or equivalent
• Experience leading anddelivering positive outcomes for a global team
• Strong written andverbal communication skills

Preferred Qualifications:

• Second-linerisk management experience within a large financial servicesorganization
• A cybersecurity, technology, or risk managementcertification (CISSP, CCSP, CEH, CISM, CISA, etc.

)

Salary Range:

$170,000.00 to $255,000.00 annually bonus equity (if applicable)benefits The above represents the expected salary range for thisjob requisition. Ultimately, in determining your pay, we’llconsider your location, experience, and other job-related factors.

We back you with benefits that support your holistic well-being soyou can be and deliver your best. This means caring for you andyour loved ones physical, financial, and mental health, as well asproviding the flexibility you need to thrive personally andprofessionally:

• Competitive base salaries
• Bonus incentives
• 6%Company Match on retirement savings plan
• Free financial coachingand financial well-being support
• Comprehensive medical, dental,vision, life insurance, and disability benefits
• Flexible workingmodel with hybrid, onsite or virtual arrangements depending on roleand business need
• 20 weeks paid parental leave for all parents,regardless of gender, offered for pregnancy, adoption or surrogacy
• Free access to global on-site wellness centers staffed withnurses and doctors (depending on location)
• Free and confidentialcounseling support through our Healthy Minds program
• Careerdevelopment and training opportunities