Job Information
American Express Information Security Specialist - Access Security (Sharepoint/ Confluence/ Github) in Phoenix, Arizona
Description
You Lead the Way. We’ve Got Your Back.
With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, you’ll learn and grow as we help you create a career journey that’s unique and meaningful to you with benefits, programs, and flexibility that support you personally and professionally.
At American Express, you’ll be recognized for your contributions, leadership, and impact—every colleague has the opportunity to share in the company’s success. Together, we’ll win as a team, striving to uphold our company values and powerful backing promise to provide the world’s best customer experience every day. And we’ll do it with the utmost integrity, and in an environment where everyone is seen, heard and feels like they belong.
As part of our diverse tech team, you can architect, code and ship software that makes us an essential part of our customers’ digital lives. Here, you can work alongside talented engineers in an open, supportive, inclusive environment where your voice is valued, and you make your own decisions on what tech to use to solve challenging problems. American Express offers a range of opportunities to work with the latest technologies and encourages you to back the broader engineering community through open source. And because we understand the importance of keeping your skills fresh and relevant, we give you dedicated time to invest in your professional development. Find your place in technology on #TeamAmex.
Responsible for architecting and engineering data access security controls that manage, monitor, measure, and report the data access security posture of the organization’s data estate. Specifically this role will focus on controlling access to semi-structured and unstructured data hosted on distributed servers, cloud, storage, file systems, file shares and collaboration repositories. Data access controls will cover person and non-person identities and their access, including but not limited to users, applications, APIs and GenAI.
Reports to the Director of Data Access Management. The Data Access Management team architects, engineers and operates data access controls for structured, semi-structured and unstructured data hosted on the mainframe, distributed servers, cloud, storage, file systems, file shares and collaboration repositories like SharePoint, Confluence, Slack, OneDrive, Github etc. Works across Technology Risk and Information Security, Privacy, Enterprise Data Governance, hosting platform teams to meet business, security, risk and compliance objectives for a Category 2 bank. The Data Access Management team functions in support of the broader Data Security Posture Management program.
Key Responsibilities
Conduct security assessments of User, System and Service IDs access to data
Security configuration setup and review of access security for SharePoint online, Confluence, Github Repository, NAS Shared drive, Slack and other Collaboration tools
Automate the reporting and alerting of excess permissions of users and service IDs to Collaboration tools like Confluence, SharePoint, Github etc.
Document current and desired future state capabilities, incorporating industry leading technologies that improve data access controls
Design, develop and deploy technology controls to drive least privilege access to data
Define data access control metrics
Provide ongoing awareness/education of industry efforts and statistics relevant to data access control
Work with all levels across Technology and Business to establish data access controls that align with enterprise strategies and compliance objectives
- Provide consultation to internal Business partners, customers and vendors in assessing data access risks and mitigating controls to protect corporate intellectual capital and other sensitive data
Bachelor’s Degree in Computer Science, Information Security (or equivalent work experience)
Experience architecting and engineering data access security controls
In-depth experience with MS Office365 collaboration tools with specific focus on SharePoint Online
In-depth experience with Access permission configuration and security review of platforms like Confluence, SharePoint, OneDrive, Slack, Github Repositories
Experience instantiating access security controls and measuring control effectiveness
Certification(s): Associate Google Cloud Certified, AWS Certified Cloud Practitioner, CISSP, MCSE, Microsoft 365 Certified: Teamwork Administrator Associate and/or Microsoft 365 Certified: Administrator Expert
Experience with process and / or reporting automation.
5 Years of hands-on experience.
Shares critical expertise and knowledge to support team
Uses breakthrough thinking to generate insights, alternatives and opportunities to prevent attacks
Analyzes complex information and identifies the most meaningful details
Identifies a number of ways to do things differently that will continuously strengthen the security posture
Takes initiative, handles problems and acts on own initiative without being prompted
Transparently leads through change, ambiguity and brings clarity
Prepares well in advance to maximize resource and time
Communications
Teamwork
Continuous Improvement
Courage
Curiosity
Ingenuity Tenacity
Technical
Technical Acumen
Emerging Technologies
System/Platform Domain Knowledge
Functional
Identity and Access Management
Leadership , Analytical Thinking
Business ,Regulatory Compliance , Industry and Company Knowledge
Competitive base salaries
Bonus incentives
6% Company Match on retirement savings plan
Free financial coaching and financial well-being support
Comprehensive medical, dental, vision, life insurance, and disability benefits
Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need
20 weeks paid parental leave for all parents, regardless of gender, offered for pregnancy, adoption or surrogacy
Free access to global on-site wellness centers staffed with nurses and doctors (depending on location)
Free and confidential counseling support through our Healthy Minds program
Career development and training opportunities
For a full list of Team Amex benefits, visit our Colleague Benefits Site .
American Express is an equal opportunity employer and makes employment decisions without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, disability status, age, or any other status protected by law.
We back our colleagues with the support they need to thrive, professionally and personally. That's why we have Amex Flex, our enterprise working model that provides greater flexibility to colleagues while ensuring we preserve the important aspects of our unique in-person culture. Depending on role and business needs, colleagues will either work onsite, in a hybrid model (combination of in-office and virtual days) or fully virtually.
US Job Seekers/Employees - Click here to view the “Know Your Rights” poster and the Pay Transparency Policy Statement.
If the links do not work, please copy and paste the following URLs in a new browser window: https://www.dol.gov/agencies/ofccp/posters to access the three posters.
Job: Technologies
Primary Location: US-Arizona-Phoenix
Schedule Full-time
Req ID: 24017633
American Express
- American Express Jobs