Manager-Control Management - Privacy
Job Details
With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, you’ll learn and grow as we help you create a career journey that’s unique and meaningful to you with benefits, programs, and flexibility that support you personally and professionally.
At American Express, you’ll be recognized for your contributions, leadership, and impact—every colleague has the opportunity to share in the company’s success. Together, we’ll win as a team, striving to uphold our company values and powerful backing promise to provide the world’s best customer experience every day. And we’ll do it with the utmost integrity, and in an environment where everyone is seen, heard and feels like they belong.
Join Team Amex and let's lead the way together.
Global Commercial Services (GCS) is the global leader in providing payments solutions for small, medium, and large businesses. The Control Management (CM) team strives to ensure that GCS has a robust first line of defense, playing an active role in supporting the growth of business, meet its objectives and demonstrating an effective control framework.
The objective of the GCS Control Management Privacy Risk team is to efforts within the GCS business unit, focusing on the Americas. This includes the design, implementation and assessment of privacy risks and ensuring that GCS is managing those risks in accordance with our company’s risk appetite. The successful candidate will have demonstrated success in either Privacy or other compliance activities or risk management programs.
The Manager, GCS Control Management Privacy Risk will:
- Support subject matter expects in sharing of knowledge/guidance and participate in conversations with BU on privacy topics
- Conduct initial review of planned guidance for BUs to ensure alignment with standards set by centralized specialist risk-strip teams
- Facilitate activities to comply with enterprise policies and programs pertaining to specific risk types, including AEMP 54, AEMP 48, and internal standards such as Privacy Choice, Global Notices.
- Compile and review topical risk information, including emerging trends, best practices, and regulatory updates relevant to each area of expertise, and support the day-to-day activities required to maintain the repository of topical risk information
- Compile materials to support design and assist in dissemination of targeted training and awareness programs to increase understanding and management of specific risk topics within GCS
- Support more senior team members in compiling and reviewing topical risk knowledge to share with BU process owners to enable BU to strengthen and embed relevant ORM considerations into processes
- Support gathering topical risk strategies and procedures to align with changes in the business environment and regulatory landscape
- Support sharing insights, better practices, themes, etc. across the enterprise
Required Qualifications:
- 3+ years of experience in operational risk management (e.g., within Risk and/or Internal Audit function) and understanding critical operational risk management lifecycle activities
- Strong project management, communication, and interpersonal skills
- Experience in process governance, establishing and overseeing robust decision-making processes that align with policies, regulatory frameworks, and/or operational standards
- Proficient analytical and problem-solving skills, with an ability to analyze data, identify trends, and evaluate risk scenarios effectively
Preferred Qualifications:
- Bachelor's Degree in Finance, Business, Risk Mgmt., or related field; advanced degrees (e.g., MBA, MSc) or certifications are advantageous
- Experience in at least one of the following:
- Supporting go-to subject matter experts in sharing subject matter expertise, specifically privacy, within the BU on decentralized risks
- Facilitating activities to comply with enterprise policies and programs pertaining to specific risk types
- Support advising on decentralized risk types into broader operational risk policies and programs
- Experience in financial services industry
- IAPP Certification or other Privacy Certification would be preferred
ORMCM
Salary Range: $80,000.00 to $155,000.00 annually + bonus + benefits
The above represents the expected salary range for this job requisition. Ultimately, in determining your pay, we’ll consider your location, experience, and other job-related factors.
Employment eligibility to work with American Express in the U.S. is required as the company will not pursue visa sponsorship for these positions
We back our colleagues and their loved ones with benefits and programs that support their holistic well-being. That means we prioritize their physical, financial, and mental health through each stage of life. Benefits include:
- Competitive base salaries
- Bonus incentives
- 6% Company Match on retirement savings plan
- Free financial coaching and financial well-being support
- Comprehensive medical, dental, vision, life insurance, and disability benefits
- Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need
- 20+ weeks paid parental leave for all parents, regardless of gender, offered for pregnancy, adoption or surrogacy
- Free access to global on-site wellness centers staffed with nurses and doctors (depending on location)
- Free and confidential counseling support through our Healthy Minds program
- Career development and training opportunities
For a full list of Team Amex benefits, visit our Colleague Benefits Site.
American Express is an equal opportunity employer and makes employment decisions without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, disability status, age, or any other status protected by law.
We back our colleagues with the support they need to thrive, professionally and personally. That's why we have Amex Flex, our enterprise working model that provides greater flexibility to colleagues while ensuring we preserve the important aspects of our unique in-person culture. Depending on role and business needs, colleagues will either work onsite, in a hybrid model (combination of in-office and virtual days) or fully virtually.
US Job Seekers/Employees - Click here to view the “Know Your Rights” poster and the Pay Transparency Policy Statement.
If the links do not work, please copy and paste the following URLs in a new browser window: https://www.dol.gov/agencies/ofccp/posters to access the three posters.