Information Security Manager - Mergers and Acquisitions

Amex GBT is a place where colleagues find inspiration in travel as a force for good and – through their work – can make an impact on our industry. We’re here to help our colleagues achieve success and offer an inclusive and collaborative culture where your voice is valued.

Amex GBT is seeking a motivated and driven individual to build and lead an Information security team focused on Mergers and Acquisitions. This role will have direct responsibility to enhance and enable Amex GBT's ability to expand and protect the brand by maturing a global portfolio of information security services. The Information Security Manager is a business leader within the Cyber GRC Security team, focused on providing expert consultation and relationship management specific to M&A activity. This position partners with key business leaders, project and integration teams, technical leads, finance, and third parties.

What You'll Do:

• Manage the full life cycle of day-to-day security integration activities including coordination of detailed functional plans, communication with key stakeholders, and issue resolution. Create awareness of cross- functional inter-dependencies and establish prioritization for plan execution to minimize disruption on daily operations.
• Standardize and improve existing due diligence and security integration methods with inputs from across the Information Security team in order to comprehensively assess the target organization's technical environment, security posture and capabilities, and inherit internal and third-party risks. Capture best practices and lessons learned throughout the due diligence period for continuous improvement for future acquisitions.
• Perform acquisition risk assessments that include discovery and consideration of data types, regulatory requirements, organization size, business process, technology use and organizational security posture.
• Create solutions that balance business requirements with information and cyber security requirements
• Ability to weigh business needs against security concerns and recommends necessary changes to enhance information systems security

What We're Looking For:

• Bachelor’s degree in information security, risk management, or a related field (or equivalent experience).
•  7+ years of experience in Governance, Risk, and Compliance (GRC) within a cybersecurity context. 
• In-depth knowledge of cybersecurity frameworks (NIST, ISO 27001, SOC 2, GDPR, PCI DSS, etc.) and regulatory compliance requirements (GDPR, PCI DSS).
• Experience with risk management processes, including risk assessments, mitigation plans, and monitoring.
• Ability to conduct routine testing and internal control reviews.
• Strong analytical skills to identify control gaps and evaluate remediation plans.
• Familiarity with various security technologies and tools (e.g., SIEM, firewalls, vulnerability management, identity management systems).
• Excellent communication and reporting skills, with the ability to present findings to stakeholders.

Location

The US national annual base salary range for this position is from $70,000 to $140,000.  The national range provided includes the base salary that GBT expects to pay for the role.  Actual base salary will be based on factors including the scope and complexity of the role and the successful candidate’s relevant experience, skills, knowledge, and work location.

In addition to base salary, this role is eligible for our Annual Incentive Award plan, which rewards participants based on company and individual performance.  For information about our comprehensive US benefits programs and eligibility, please review our Benefits-at-a-Glance document.

Benefits at a glance

The #TeamGBT Experience

Work and life: Find your happy medium at Amex GBT.

• Flexible benefits are tailored to each country and start the day you do. These include health and welfare insurance plans, retirement programs, parental leave, adoption assistance, and wellbeing resources to support you and your immediate family.

• Travel perks: get a choice of deals each week from major travel providers on everything from flights to hotels to cruises and car rentals.

• Develop the skills you want when the time is right for you, with access to over 20,000 courses on our learning platform, leadership courses, and new job openings available to internal candidates first.

• We strive to champion Inclusion in every aspect of our business at Amex GBT. You can connect with colleagues through our global INclusion Groups, centered around common identities or initiatives, to discuss challenges, obstacles, achievements, and drive company awareness and action.

• And much more!

All applicants will receive equal consideration for employment without regard to age, sex, gender (and characteristics related to sex and gender), pregnancy (and related medical conditions), race, color, citizenship, religion, disability, or any other class or characteristic protected by law.

Click Here for Additional Disclosures in Accordance with the LA County Fair Chance Ordinance.

Furthermore, we are committed to providing reasonable accommodation to qualified individuals with disabilities. Please let your recruiter know if you need an accommodation at any point during the hiring process. For details regarding how we protect your data, please consult the Amex GBT Recruitment Privacy Statement.

What if I don’t meet every requirement? If you’re passionate about our mission and believe you’d be a phenomenal addition to our team, don’t worry about “checking every box;" please apply anyway. You may be exactly the person we’re looking for!