Manager CyberOps and Assurance

At American Express, our culture is built on a 175-year history of innovation, shared values and Leadership Behaviors, and an unwavering commitment to back our customers, communities, and colleagues. From delivering differentiated products to providing world-class customer service, we operate with a strong risk mindset, ensuring we continue to uphold our brand promise of trust, security, and service.

As part of Team Amex, you'll experience this powerful backing with comprehensive support for your holistic well-being and many opportunities to learn new skills, develop as a leader, and grow your career. Here, your voice and ideas matter, your work makes an impact, and together, you will help us define the future of American Express.

How will you make an impact on this role

Responsible for contacting clients with overdue accounts to secure the settlement of the account. Also, they do preventive work to avoid future overdue with accounts that have a high exposure

A PCI Penetration Tester, often referred to as a security expert or ethical hacker, is responsible for simulating real-world cyberattacks on systems and networks to identify vulnerabilities related to the Payment Card Industry Data Security Standard (PCI DSS). Their role involves performing vulnerability assessments, exploiting weaknesses, and providing actionable recommendations for remediation to ensure compliance with PCI DSS requirements

Key Responsibilities:

PCI DSS Compliance:

• Ensuring that systems and networks meet the security requirements outlined in PCI DSS standards
  

• Vulnerability Assessment:
  

• Identifying and classifying security flaws in systems, networks, and applications within the Payment Card Industry (PCI) environment
  

Penetration Testing:

• Simulating attacks on systems and networks to exploit identified vulnerabilities and assess their impact.
  

Reporting and Recommendations:

• Documenting findings, including risk assessments, and providing detailed recommendations for improving security posture and addressing identified weaknesses.
  

Compliance and Security:

• Collaborating with IT and development teams to implement security measures and ensure compliance with PCI DSS and other relevant standards.
  

Staying Updated:

• Keeping abreast of the latest security threats vulnerabilities, and testing methodologies to enhance their expertise.
  

Specific Tasks:

• Network Scanning: Using tools like Nmap to identify open ports, services. and potential vulnerabilities within the network.
  

Application Testing:

• Evaluating web applications, mobile apps, and APIs for security weaknesses and potential exploitation points.
  

• Reporting: Creating detailed reports, including risk assessments, technical findings, and remediation recommendations, for stakeholders.
  

Skills and Qualifications:

• Bachelor's degree in computer science, Information Systems, Business 10+ years of experience in cyber security Penetration testing Strong understanding of PCI DSS requirements and compliance.
  

• Application and Infrastructure penetration Testing, PCI- DSS a plus
  

• Experience in penetration testing methodologies and tools.
  

• Proficiency in network protocols, operating systems, and web application technologies
  

• Knowledge of common security vulnerabilities and exploitation techniques Ability to communicate technical findings clearly and concisely. Certifications: Industry certifications like CEH (Certified Ethical Hacker), OSCP (Offensive Security Certified Professional), or similar can be beneficial.
  

We back you with benefits that support your holistic well-being so you can be and deliver your best. This means caring for you and your loved ones physical, financial, and mental health, as well as providing the flexibility you need to thrive personally and professionally:

• Competitive base salaries
  

• Bonus incentives
  

• Support for financial well-being and retirement
  

• Comprehensive medical, dental, vision, life insurance, and disability benefits (depending on location)
  

• Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need
  

• Generous paid parental leave policies (depending on your location)
  

• Free access to global on-site wellness centers staffed with nurses and doctors (depending on location)
  

• Free and confidential counseling support through our Healthy Minds program
  

• Career development and training opportunities
  

American Express is an equal opportunity employer and makes employment decisions without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, disability status, age, or any other status protected by law.

Offer of employment with American Express is conditioned upon the successful completion of a background verification check, subject to applicable laws and regulations.