Manager of Information Security - M&A Focus

Are you passionate about using your expertise in Information Security to shape the future of Mergers and Acquisitions? At Amex GBT, we are committed to making travel a force for good and are looking for a dynamic individual to lead our Information Security team dedicated to M&A activities. Join us in an inspiring and collaborative environment where your contributions will matter. In this role, you will take charge of enhancing our security services portfolio while ensuring the growth and protection of the Amex GBT brand. You will work as a key business leader within the Cyber GRC Security team, providing expert consultation and managing essential relationships during M&A activities. What You’ll Be Doing: Oversee the complete lifecycle of security integration activities, including coordination with stakeholders and resolution of issues. Raise awareness of interdependencies across functions and prioritize plans to minimize operational disruptions. Standardize and improve due diligence and security integration processes to effectively evaluate target organizations’ security environments. Document best practices and lessons learned to refine acquisition processes over time. Conduct risk assessments focusing on data types, regulatory demands, technology uses, and security posture. Develop solutions that strike a balance between business needs and cybersecurity requirements. Advise on necessary changes to enhance information system security in alignment with business objectives. What We’re Looking For: Bachelor's degree in Information Security, Risk Management, or a related field (or equivalent experience). 7+ years of experience in Governance, Risk, and Compliance (GRC) within cybersecurity. Deep understanding of cybersecurity frameworks (such as NIST, ISO 27001, SOC 2, GDPR, PCI DSS) and compliance standards. Experience with risk management processes, assessments, and internal control reviews. Strong analytical skills for identifying control gaps and assessing remediation plans. Familiarity with security technologies (e.g., SIEM, firewalls, vulnerability management). Excellent communication skills to effectively present to stakeholders. Embrace the opportunity to make a significant impact within our organization. Apply today and be part of a team that values your contribution!