Director-Risk Management - GMNS Governance, Reporting, and Independent Review

At American Express, our culture is built on a 175-year history of innovation, shared values and Leadership Behaviors, and an unwavering commitment to back our customers, communities, and colleagues. As part of Team Amex, you'll experience this powerful backing with comprehensive support for your holistic well-being and many opportunities to learn new skills, develop as a leader, and grow your career. Here, your voice and ideas matter, your work makes an impact, and together, you will help us define the future of American Express. How we serve our customers is constantly evolving and is a challenge we gladly accept. Whether you’re finding new ways to prevent identity fraud or enabling customers to start a new business, you can work with one of the most valuable data sets in the world to identify insights and actions that can have a meaningful impact on our customers and our business. And, with opportunities to learn from leaders who have defined the course of our industry, you can grow your career and define your own path. Find your place in risk and analytics on #TeamAmex. Business Unit/Role Specific Info: The Global Risk & Compliance Organization (“GRC”) independently oversee the company’s risk-taking and risk management activities, including the comprehensive identification, management, and mitigation of risks within the Company’s risk appetite. GRC ensures the company operates in a safe, sound and fully compliant manner within all applicable regulatory expectations. We create and maintain the overall risk management framework while ensuring legal and regulatory compliance. We are passionate about our commitment to drive the company’s goals of growth and progress by creating a culture of awareness and proactivity around regulatory matters, and by partnering closely with business units across the enterprise to ensure we deliver maximum value to our shareholders and our customers efficiently and effectively. How will you make an impact in this role? We are seeking a highly motivated and detail-oriented colleague to lead our ERM Governance, Reporting and Independent Review team in the second line of defense aligned with our business units. The leader will play a critical role in supporting the Business Unit Chief Risk Officer (CRO) and the broader risk management framework. This position requires a deep understanding of financial products, business operations, and risk management principles, with a strong ability to translate complex risk concepts into actionable insights and credible challenge for the business units and their first line risk management SMEs. The successful candidate will be a proactive, analytical, and collaborative individual who can effectively partner with various stakeholders across the organization and lead and develop a team of highly motivated individuals. Key Responsibilities: Risk Identification & Assessment: Proactively identify, assess, monitor, and report on key risks inherent in the business unit's activities, including credit risk, market risk, operational risk, compliance risk, strategic risk, and reputational risk Provide independent review and challenge to the business unit’s risk ID and assessment process and outcomes to ensure completeness and accuracy and the effective identification of the business unit’s material, top and emerging risks Monitoring, Reporting and Communication: Analyze risk data across the business unit and identify key risk indicators (KRIs) to monitor key risks trends and enable the reporting and oversight related to the business unit Prepare comprehensive and clear risk reports for the business unit CRO, business unit leadership, and relevant risk committees Effectively communicate complex risk issues to both technical and non-technical audiences Leverage data visualization tools and reporting automation solutions where appropriate to enhance the efficiency and accuracy of risk reporting processes. Risk Governance and Independent Review: Develop and maintain a comprehensive understanding of the business unit's products, services, processes, and systems to effectively challenge how the business unit identifies and manages the associated risks Provide oversight on the business unit’s implementation of enterprise-wide frameworks including but not limited to risk appetite, concentration risks, risk governance framework, etc. and provide effective challenge as necessary Support the business unit CRO in establishing the minimum requirements and agenda topics for the business unit risk committees and validate execution Minimum Qualifications: Master's degree in risk management, business administration, communications, public relations, or a related field. 5+ years of experience in risk management functions. Knowledge of risk management frameworks, regulatory landscape, and methodologies. Qualifications: 4-5 years of hands-on programming experience meaningful to the assigned Technology Platform in a professional environment and/or comparable experience such as: Advanced hands-on experience with application solution architecture design and end-to-end software development of complex distributed (multi-tiered) systems Prior experience in multiple IT disciplines with a confirmed understanding of architectural concepts (business, data, technical and solution) and track record of implementation Extensive experience using a systems analysis and design methodology that is applicable to an agile product environment Bachelor’s Degree in computer science, engineering, information systems or related field required; advanced degree preferred Prior hands-on experience with one or more core technology stack components within the assigned portfolio, such as relevant frameworks and/or programming languages Advanced to authoritative level knowledge and understanding of solution architecture, complex application systems design and platform integration via modern approaches (i.e. RESTful APIs, event-driven layered Architecture, Message brokers ) Experience integrating with core banking systems, payment gateways, fraud/risk platforms, and external bank rails. Proven understanding of relevant supporting architecture domains required to align and deliver solutions (business, information, application, technical, etc.) Ability to perform system design reviews to ensure selection of appropriate technology, efficient use of resources, and alignment to strategic platform roadmaps Channel-specific solution architecture skills as required by the assigned platform, such as web, mobile, voice or interactive media Advanced skills with Open Source components, frameworks and complex systems integration Full understanding of Service Oriented Architecture design principles, execution patterns and performance optimization techniques Able to participate in the prevention, diagnosis, and resolution of system outages as a leader in the underlying architecture Experienced level understanding of relevant SDLC methodologies, practices and compliance policies/procedures Deep business capability domain knowledge relative to the assigned portfolio Able to acquire results with an emphasis on reducing cycle time and growing the speed to market of new products Excellent interpersonal skills (verbal and written), as well as effective consultative and influential leadership skills Well versed in current industry best practices regarding solution delivery disciplines Strong business insight with the ability to identify key issues and their impact in a broad business context