Information Security Manager

You Lead the Way. We’ve Got Your Back.

With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, you’ll learn and grow as we help you create a career journey that’s unique and meaningful to you with benefits, programs, and flexibility that support you personally and professionally.

At American Express, you’ll be recognized for your contributions, leadership, and impact—every colleague has the opportunity to share in the company’s success. Together, we’ll win as a team, striving to uphold our and powerful backing promise to provide the world’s best customer experience every day. And we’ll do it with the utmost integrity, and in an environment where everyone is seen, heard and feels like they belong.

Join Team Amex and let's lead the way together.

Information Security Manager (Regional Information Security Office)

The Information Security Manager function resides within the Regional Information Security Office and is responsible for control enforcement, cybersecurity awareness, reporting and enablement for American Express in Japan. The incumbent will be responsible for helping design and execute a regionalized information security risk management strategy closely informed by the APAC regulatory landscape and AXP business interests, including third party service providers, affiliates, and legal entities.

Key responsibilities include :

• Assist with the interconnection between core enterprise information security functions and American Express Asia-pacific legal entities
• Contribute to the first line information security risk management and reporting
• Assess the design and operating effectiveness of information security controls upon which the American Express Asia-pacific legal entities rely to protect Confidentiality, Availability, and Integrity of Information and Systems
• Collaborate with General Counsel, Market Compliance, and the American Express Privacy Office to support market regulatory requirements
• Lead the information security related aspects of regulatory changes and projects
• Identify, scope, and investigate new information security risks, including assisting with assessment of key American Express third-party providers in the region
• Deliver leadership reporting and risk metrics that demonstrate the effectiveness of the cyber security program to American Express Asia-pacific legal entities.
• Consult on market-specific Business & Technologies projects to ensure appropriate security protection
• Craft responses to Information Security audit and examination requirements for the market
• Operate as part of the extended Information Security team in support of all security and compliance initiatives
• Collaborate with global teams to publish market specific Information Security KPIs / KRIs
• Participate in represent regional information security office in APAC risk committees
• Participate in meetings with regulatory bodies in Japan and present Information security posture of American Express

Required Skills :

Required Work Experience, Education, Certification / Training :

Required Knowledge, Skills and Abilities :

We back our colleagues and their loved ones with benefits and programs that support their holistic well-being. That means we prioritize their physical, financial, and mental health through each stage of life. Benefits include :

Offer of employment with American Express is conditioned upon the successful completion of a background verification check, subject to applicable laws and regulations.