Attention prospective job seekers! Beware of fraudulent offers Read more

Information Security Analyst

Bangalore, Karnataka, India
Apply
Information Security Analyst - CREQ188067
Description
P1-C3-STS

Information Security Managers know security is a top priority for our business, our partners, and customers. As cyber-attacks increase and compliance is rigorously implemented, they strive to stay ahead of what is next to protect our brand and future. The IT Risk Assessment Operational Risk Event Management Team has the responsibility for coordinating the issue management function across all American Express Technology functions. The team provides end-to-end resolution and governance for all Operational Risk Events (ORE) and Corrective Action Plans (CAP) including strengthening the control environment while enabling growth and ensuring flawless customer experiences.

Skills: Archer, Documentum, MS Office Suite, MS SharePoint, MS One Drive, Power Automate, Project Management
3-5 years of risk management, controls analysis, and/or 5+ years issue management/remediation experience required

Experience with the development and/or assessment of IT General Controls

Deep understanding of compliance, risk management and internal IT control frameworks

Outstanding ability to engage, educate, influence, and collaborate across organizations

Experience in assessing technology risks and responding through development of controls

Experience working with audit, compliance, operational risk, regulatory, and/or control functions

Solid ability to synthesize large amounts of data into short key messages and identify and analyze related trends

Consistent record of adjusting quickly to shifting priorities, multiple demands, ambiguity and rapid change

Strong interpersonal and partnership skills / ability to develop relationships with peers in business unit and central operational risk management group

Cyber security knowledge

CISA, CISM, or CRISC


Perform hands-on issue resolution management, guidance, and monitoring of various Capabilities to ensure ORE and CAP guidelines and landmarks are met timely and align with governance and compliance mandates.

Collaborate with key team members on operational risk processes for Technology, such as loss events and compliance issues and ownership of events.

Manage and facilitate ownership issues and concerns in risk and Bank forums.

Facilitate and Lead Technology Ops Excellence risk and governance forums
Support Technology partners to ensure that effective Issue resolution (via Loss Event and Corrective Action management) is implemented
Build and maintain excellent relationships across Technology and Business Unit Operational Excellence teams
Work closely with senior leaders and their representatives to ensure appropriate risk management, mitigation and/or elimination
Ensure deliverables satisfy objectives and the expectations of a variety of partners, including the CIO, CISO and other senior leaders within Technology and other areas.
Partner with key technology leads to implement process improvements and controls across Technology as related to OREs.
Perform thematic root cause analysis and collaborate on recurring technology caused events to identify unmitigated risks and areas for control enhancements.
Lead process redesign efforts to ensure detailed and timely documentation and analysis of OREs and CAPS which includes the identification of relevant risks and implementation of mitigating controls.


Skill
Risk Management
Archer, Documentum
Power Automate
Cyber Security



Primary Location
Bangalore, Karnataka, India
Job Type
Experienced
Primary Skills
Cloud Risk & Compliance Management
Years of Experience
4
Qualification

P1-C3-STS

Information Security Managers know security is a top priority for our business, our partners, and customers. As cyber-attacks increase and compliance is rigorously implemented, they strive to stay ahead of what is next to protect our brand and future. The IT Risk Assessment Operational Risk Event Management Team has the responsibility for coordinating the issue management function across all American Express Technology functions. The team provides end-to-end resolution and governance for all Operational Risk Events (ORE) and Corrective Action Plans (CAP) including strengthening the control environment while enabling growth and ensuring flawless customer experiences.

Skills: Archer, Documentum, MS Office Suite, MS SharePoint, MS One Drive, Power Automate, Project Management
3-5 years of risk management, controls analysis, and/or 5+ years issue management/remediation experience required

Experience with the development and/or assessment of IT General Controls

Deep understanding of compliance, risk management and internal IT control frameworks

Outstanding ability to engage, educate, influence, and collaborate across organizations

Experience in assessing technology risks and responding through development of controls

Experience working with audit, compliance, operational risk, regulatory, and/or control functions

Solid ability to synthesize large amounts of data into short key messages and identify and analyze related trends

Consistent record of adjusting quickly to shifting priorities, multiple demands, ambiguity and rapid change

Strong interpersonal and partnership skills / ability to develop relationships with peers in business unit and central operational risk management group

Cyber security knowledge

CISA, CISM, or CRISC


Perform hands-on issue resolution management, guidance, and monitoring of various Capabilities to ensure ORE and CAP guidelines and landmarks are met timely and align with governance and compliance mandates.

Collaborate with key team members on operational risk processes for Technology, such as loss events and compliance issues and ownership of events.

Manage and facilitate ownership issues and concerns in risk and Bank forums.

Facilitate and Lead Technology Ops Excellence risk and governance forums
Support Technology partners to ensure that effective Issue resolution (via Loss Event and Corrective Action management) is implemented
Build and maintain excellent relationships across Technology and Business Unit Operational Excellence teams
Work closely with senior leaders and their representatives to ensure appropriate risk management, mitigation and/or elimination
Ensure deliverables satisfy objectives and the expectations of a variety of partners, including the CIO, CISO and other senior leaders within Technology and other areas.
Partner with key technology leads to implement process improvements and controls across Technology as related to OREs.
Perform thematic root cause analysis and collaborate on recurring technology caused events to identify unmitigated risks and areas for control enhancements.
Lead process redesign efforts to ensure detailed and timely documentation and analysis of OREs and CAPS which includes the identification of relevant risks and implementation of mitigating controls.


Skill
Risk Management
Archer, Documentum
Power Automate
Cyber Security

Travel
No
Job Posting
01/07/2024

Join Virtusa

 

Please enter a valid email address to begin your application.

Thank you for verifying your email. Please proceed with the steps below to apply.

We only accept the following file extensions: .pdf, .docx or .doc
Maximum file size: 1 MB
File name must not include special characters or spaces (e.g. “name_resume.pdf”)

Please attach your CV/Resume, ensure it is in the correct format and smaller than 1MB.
We only accept the following file extensions:

Thank you. You already have an active account with Virtusa's hiring system. Please login to our portal to proceed with your application or apply for more opportunities.

LoginClick to Login

About Virtusa

Teamwork, quality of life, professional and personal development: values that Virtusa is proud to embody. When you join us, you join a team of 30,000 people globally that cares about your growth — one that seeks to provide you with exciting projects, opportunities and work with state of the art technologies throughout your career with us.

Great minds, great potential: it all comes together at Virtusa. We value collaboration and the team environment of our company, and seek to provide great minds with a dynamic place to nurture new ideas and foster excellence.

Virtusa was founded on principles of equal opportunity for all, and so does not discriminate on the basis of race, religion, color, sex, gender identity, sexual orientation, age, non-disqualifying physical or mental disability, national origin, veteran status or any other basis covered by appropriate law. All employment is decided on the basis of qualifications, merit, and business need.

Learn more