American Express Global Business Travel is seeking a motivated and driven individual to join a team responsible for providing information security support during pre-sales, sales, and ongoing customer assessment processes. This role will have direct responsibility to support, lead and enhance and enable GBT's ability to support GBT’s clients by maturing a global portfolio of information security information support services. The Information Security Manager is a business leader within the Cyber GRC Security team, focused on providing experienced consultation and relationship management specific to GBT’s information security program and customer facing information security support process. This position partners with key business leaders, project and integration teams, technical leads, finance, third parties and customers.
This position will be supporting an existing customer facing security support function and the time will be split between supporting pre-sales and post-sales security requests. You will be involved in supporting information security customer assessments, audits, customer security RFP responses and represent the company during customer security engagements. Will be directly working with customers and GBT’s supporting personnel across many different teams and functions. This will include a combination of virtual meetings, conference calls that will require presentation of information as well as information gathering.
You will also be required to create and document information security processes and information pertinent to customer facing security requests which could include whitepapers, questionnaires, FAQ, architectural documentation and collection of supporting evidence. Experience successfully communicating with internal and external customers.
Job Description:
- Maintaining an understanding of GBT's different computing environments including the controls in place
- Communicate with customers on their questions surrounding information and application security
- Understanding of GBT's security controls, policies and procedures as it relates to internal processes and across customer products and services
- Drafting of responses to security questionnaires received from customers, prospects and vendors
- Stay abreast and knowledgeable of changing security landscape internally and externally as an SME
- Standardize and improve existing customer support process and underling documentation/content with inputs from across the Information Security team in order to deliver accurate and effective descriptions of GBT’s technical environment, security posture and capabilities
- Ability to evaluate requirements against existing solutions to address customer security concerns and recommends necessary changes to enhance information systems security
Experience Requirements:
- Bachelors Degree is required. Preference is for IT/Security relevant fields. Previous experience in supporting similar technical functions is highly desirable
- Strong written and verbal communication skills are required.
- 7+ years of relevant technology experience or similar support function
- Strong leadership skills and ability to work effectively with a multi-disciplinary set of stakeholders across different levels and with minimal supervision
- Familiar with frameworks such as COBIT, ISO 27001/2, NIST Cybersecurity, PCI DSS, General security practices.
- Solid understanding of the business impact of security tools, processes and policies
- Previous experience in supporting similar technical functions is highly desirable
- Team player; able to work closely and effectively with and through others at all levels in an organization; demonstrable ability to influence others and move toward a common vision or goal.
- Technical knowledge of IT and Information Security processes to be able to interpret information received and processed for a response
- Solid understanding of technical security safeguards.
- Solid business acumen, flexibility, and judgment to evaluate issues/problems of high complexity and make sound decisions.
- Solid project management and people management skills.
- Solid analytical skills and understanding of processes, technology and operational concepts.
Location
United States - Virtual Location
The US national annual base salary range for this position is from $70,000 to $140,000. The national range provided includes the base salary that GBT expects to pay for the role. Actual base salary will be based on factors including the scope and complexity of the role and the successful candidate’s relevant experience, skills, knowledge, and work location.
In addition to base salary, this role is eligible for our Annual Incentive Award plan, which rewards participants based on company and individual performance. For information about our comprehensive US benefits programs and eligibility, please review our Benefits-at-a-Glance document.
GBT 2023 Benefits-at-a-Glance
It is our policy to provide equal employment opportunities to all individuals based on job-related qualifications and ability to perform a job, without regard to age, gender, gender identity, sexual orientation, race, color, religion, creed, national origin, disability, genetic information, veteran status, citizenship or marital status, and to maintain a non-discriminatory environment free from intimidation, harassment or bias based upon these grounds.