Security Analyst – American Express Jobs

Job Type: Security Analyst from home
Location: New York work from home
Company: American Express

Position Description:

This is a full-time, entry-level opportunity to demonstrate and apply knowledge obtained in a vibrant, hardworking Technology Risk & Information Security team. Responsible for assisting with activities designed to run information security systematically, such as security investigations, intelligence, assurance, and/or other project oversight, including developing standard methodologies for information security standards and handling IT controls and regulatory mentorship.

Responsibilities:

• Threat Intelligence/Incident Response in Security
• Serve as the first line of defense for American Express, defending the brand, staff, assets, and card members around the world against attacks. 24/7/365
• Reduce the risk of cyber assaults by focusing on threat detection and response.
• Monitor, detect, and respond to global security events and incidents affecting AXP.
• Security for infrastructure, applications, networks, and the cloud
• Reduce risk by quickly identifying and repairing vulnerabilities throughout the organization.
• Provide secure network solutions that enable our customers’ secure operations and highly available products and services.
• Continuous monitoring and testing of production application environments protects AXP data, customers, and brand.
• Data Loss Avoidance
• Safeguard our clients, partners, and coworkers from sensitive data loss caused by routine business operations and/or criminal actors.
• Where legal, monitor and prevent sensitive data loss.
• Management of Identity and Access/Authentication
• Provide tools for centralized Enterprise Identity and Access Management.
• Allow for authentication, authorization, and full lifecycle management.
• Minimize, manage, and monitor the risk of identity and access to AXP resources.
• Services for Cryptography and Encryption
• Secure all types of sensitive information across all platforms, resulting in brand and information asset protection as well as regulatory compliance.
• Manage and run safe cryptographic platforms, as well as provide cryptographic and key management solutions.
• Promote continual data protection improvement
• Governance, Risk Management, and Compliance
• Bridge traditional cyber and IT risk boundaries while increasing collaborations between IT and the business to drive risk reduction across the organization.
• Improve risk management through tooling and process automation; broaden the possibilities of technology risk management.
• Expand risk management and control knowledge beyond the realms of information security to IT development organizations and the business.

Skills/Experience

• Education and/or experience in cyber security is preferred.
• Excellent oral and written communication abilities
• Information security, compliance, assurance, and/or other security best practices and principles knowledge or awareness
  Requirements/Qualifications
• Bachelor’s or Master’s degree in Cyber Security, Computer Science, Software Engineering, Information Systems, or a related discipline is desirable.
• Students must graduate between December 2022 and June 2023.