Manager-Tech Risk & Control H/F
Create a free account to apply in seconds
The Regional Information Security Officer (RISO) organization is responsible for information security control enforcement, incident management, regulatory change, cybersecurity awareness, reporting and enablement for American Express European legal entities.
Responsibilities
• Supporting the interconnection between core enterprise technology risk and information security functions and American Express EMEA based legal entities.
• Deliver leadership reporting and risk metrics that demonstrate the effectiveness of the cyber security program to American Express European legal entities.
• Support regulatory audit and examinations for Info Sec and Tech functions, including close partnership with the Privacy Office, Compliance, General Council, CRO teams and the broader Information Security organization.
• Support on regulatory change management for topics such as DORA, Operational Resilience and EU AI Act.
• Support cyber incident management processes.
• Assess the design effectiveness and operating effectiveness of information security controls upon which the American Express European legal entities rely to protect Confidentiality, Availability, and Integrity of Information and Systems.
• Consult on EMEA Business & Technologies projects to ensure appropriate security protection.
• Operate as part of the extended Information Security team in support of all security and compliance initiatives.
• Maintain EMEA reporting boundaries and operate relevant governance processes.
Qualifications
• 5+ years of Information Security or Technology Risk Management experience.
• Fluency in French and English.
• Experience working with audits and regulators requirements and in complex, regulated businesses.
• Broad understanding of information security disciplines
• Experience in risk assessment and relevant methodologies including quantitative risk management techniques.
• Security-related certifications are desirable.
• Excellent verbal and written communication skills, including the ability to translate technical concepts into clean business language.
• Proven ability to build relationships and work collaboratively in a complex matrix environment.
• Strong organization and planning skills.
• Ability to work independently as part of a geographically dispersed team.
Employment eligibility to work with American Express in France is required as the company will not pursue visa sponsorship for these positions.