The American Express Global Privacy Oversight are trusted advisors on the American Express Data Protection & Privacy Principles. We work to raise privacy awareness, drive compliance with both internal privacy policies and regulatory expectations across the organization and establish privacy as a strategic differentiator for the American Express brand. As a second line of defense function, Global Privacy oversee, provide expertise in, and challenge the identification, management, and mitigation of privacy risks across the company in line with the privacy framework and the company’s vision to provide the world’s best customer experience every day.
This position is based in Gurgaon (India), and reports to the Director, Institutional Privacy.
Are you passionate about privacy and protecting American Express’ reputation for trust? The Global Privacy Office is hiring an Analyst responsible for ensuring legal and regulatory privacy compliance. This Analyst will work together with 1 Sr Manager and 1 Analyst to support the Institutional/ B2B areas of American Express (GMNS and Commercial aspect of ICS).
- Provide independent privacy risk oversight for Merchant and Commercial privacy activities across International.
- Support the monitoring, analysis, and reporting of privacy key risk indicators and other privacy risk management data.
- Partner with Compliance and other stakeholders to oversee privacy legal and regulatory change management activities.
- Foster a culture of privacy at American Express by advocating for privacy-by-design, integration of the American Express Data Protection & Privacy Principles, accountability, and sharing of best practices.
Minimum qualifications:
- 2 years hands-on privacy experience and knowledge of international Privacy-related regulations & current trends.
- Familiarity with American Express’ closed loop model and the payments industry, particularly B2B products and services.
- Strong analytical capabilities.
- Highly organized with strong written and verbal communication skills and the ability to manage multiple priorities simultaneously.
Ability to build relationships, influence stakeholders, mobilize cross-functional and regional teams, and work independently.
Preferred Additional:
- Privacy certification (e.g. CIPP/E, CIPP/M) .
- Prior work in compliance, audit, and/or risk management experience in a financial services, digital, or technology company.
- Knowledge of Internet and digital technologies (e.g., alternative payments, mobile apps, online advertising, tracking technologies, social media, and large data sets, with a focus on personal data flows).