American Express Global Business Travel Senior Application Security Specialist in Jefferson City, Missouri
Ability to perform, interpret and test results of vulnerability assessments.
Experience in application pentesting preferred so that they can act as trusted advisor to internal teams to ensure remediation of risk identified.
Experience in managing PCI scans process as well as crowd-sourced findings.
Perform perimeter threat analysis by researching and reporting threat trends and utilize the analysis for continuous security posture improvement.
Experience in reviewing security architectures, including cloud and carrying out application security risk assessments independently. Assessment to include threat modelling, documenting potential risk vectors, recommending and applicable and proportional controls and ensure risk identified if any is addressed.
Develop and enhance application risk assessment framework to satisfy business and regulatory requirements to comply with industry best practices and standards.
Provide technical consultation on security risk and recommendations, assist and/or provide direction to the team.
Proactively integrate with development teams to shift left. Identify applicable industry best practices and consult developers’ team on continuously improving the Risk posture.
Maintain risk tracker, identify and prioritize findings, proactively and meticulously track risks and produce metrics to drive visibility.
Help design workflows for process automation to scale assessments and make team’s day-to-day processes manageable.
Excellent communication skills and customer-centric service attitude.
Good analytical and problem-solving ability to troubleshoot and resolve security issues.
Skilled in time, priority and task management. Ability to multi-task and prioritize work.
Sound interpersonal and customer-centric communications skills to interact with customers and team members.
Detail oriented with focus on structured documentation. Experience working with standard packages such as Microsoft Word, Excel, etc.
Familiarity of NIST framework, PCI, ISO 27001, SOC, SOX, GDPR and global regulations preferred.
Master’s degree/coursework preferred.
Minimum 3 years of information security experience.
Security certificates: SANs/CISSP/CISA/CEH certifications preferred.
United States>Arkansas>Virtual Location
It is our policy to provide equal employment opportunities to all individuals based on job-related qualifications and ability to perform a job, without regard to age, gender, gender identity, sexual orientation, race, color, religion, creed, national origin, disability, genetic information, veteran status, citizenship or marital status, and to maintain a non-discriminatory environment free from intimidation, harassment or bias based upon these grounds.
GBT Recruitment Privacy Statement (https://www.amexglobalbusinesstravel.com/gbt-recruitment-privacy-statement/)
American Express Global Business Travel (GBT) is the world’s leading business partner for managed travel. We help companies and employees prosper by making sure travelers are present where and when it matters. We keep global business moving with the powerful backing of 16,000 travel professionals in more than 140 countries. Companies of all sizes, and in all places, rely on GBT to provide travel management services, organize meetings and events, and deliver business travel consulting.