American Express

Director - Security Integration & Engineering-Application Security/ Vulnerability Management

American Express$150K — $200K *
New York, NY 10285In-Person
Information Technology
8 - 10 years of experience
Today
Be an Early Applicant
Job Overview by Ladders

Qualifications

  • 10+ years of progressive experience in cybersecurity, with senior roles in security engineering or application security.
  • Expertise in Application Security disciplines including SAST, DAST, SCA, and API Security.
  • Strong understanding of vulnerability management, threat modeling, and enterprise risk management.
  • Experience in enterprise-scale security platform integrations and automation using APIs and scripting languages.
  • Knowledge of cloud security, IAM, data governance, and network security fundamentals.
  • Proven ability in managing regulatory audits and compliance efforts.
  • Strong stakeholder management and communication skills for technical and executive audiences.

Responsibilities

  • Define and execute the multi-year strategy for Security Integration & Engineering.
  • Lead design and integration of enterprise security tooling, ensuring operational excellence.
  • Support integration across various security validation domains such as SAST, DAST, and API Security.
  • Ensure data models and reporting mechanisms are scalable and audit-ready.
  • Maintain alignment of Source Code Security Standards with enterprise security controls.
  • Lead responses to complex security events, coordinating across functions.
  • Build and mentor high-performing cybersecurity engineering teams.

Benefits

  • Collaborative work environment focused on professional development.
  • Access to cutting-edge tools and technologies in cybersecurity.
  • Opportunities to influence enterprise-level security strategies.
  • Support for continuous learning and certification opportunities.
  • Comprehensive health benefits and wellness programs.
Full Job Description
Job Description

How will you make an impact in this role?

American Express is committed to delivering secure, resilient, and scalable technology solutions that protect our customers and enable business growth. As part of this mission, the Director - Security Integration & Engineering will lead the engineering backbone of enterprise Security Posture Validation. This role drives the strategy, architecture, integration, automation, and sustained operation of the security tooling ecosystem that enables scalable, observable, and enforceable security controls across the software development lifecycle.

The Director will oversee the design and execution of application and code-to-cloud security integrations, ensuring that tooling, automation, and telemetry pipelines generate accurate, defensible insights while supporting developer velocity and regulatory compliance. This leader will collaborate across cybersecurity, engineering, infrastructure, and risk domains to mature posture validation capabilities and align security controls with enterprise standards and global regulatory expectations.

This position demands a strategic and technically deep leader who can operate at both executive and hands-on engineering levels, prioritize operational excellence alongside long-term transformation, and build high-performing teams that deliver measurable risk reduction.

Responsibilities

  • Define and execute the multi-year strategy and roadmap for Security Integration & Engineering aligned with enterprise cybersecurity and business priorities.
  • Lead the design, integration, automation, and continuous evolution of the enterprise security tooling platform, ensuring reliability, scalability, resiliency, and operational excellence.
  • Provide engineering enablement and integration support across security validation domains including:
  • Static Application Security Testing (SAST)
  • Software Composition Analysis (SCA)
  • Dynamic Application Security Testing (DAST)
  • API Security
  • Penetration Testing intake and integration
  • Infrastructure Vulnerability Management
  • External Attack Surface Management (EASM)
  • Sensitive Data Element (SDE) detection
  • Enterprise vulnerability reporting and executive dashboards
  • Ensure normalized data models, scalable automation, exception workflows, SLO enforcement, and audit-ready reporting across security telemetry pipelines.
  • Own and maintain the Source Code Security Standard and ensure alignment with enterprise security controls and architecture governance.
  • Support regulatory and audit engagements by delivering defensible evidence, metrics, and documentation aligned to global cybersecurity standards.
  • Lead response to complex security and operational events, coordinating cross-functional mitigation, root cause analysis, and control validation.
  • Partner with product, engineering, IAM, infrastructure, vulnerability management, and risk teams to embed security controls into CI/CD pipelines and business workflows.
  • Influence senior stakeholders to prioritize and implement security recommendations aligned with enterprise risk tolerance.
  • Build, mentor, and develop high-performing cybersecurity engineering teams, driving hiring strategy, talent retention, succession planning, and performance management.
  • Manage budgets, workforce planning, and resource allocation to support strategic and operational objectives.


Qualifications

Preferred Qualifications
  • 10+ years of progressive experience in cybersecurity, including senior leadership roles within security engineering or application security.
  • Deep expertise in Application Security disciplines including SAST, DAST, SCA, API Security, and secure CI/CD integration practices.
  • Strong understanding of vulnerability management practices, threat modeling methodologies, and enterprise risk management frameworks.
  • Experience designing and implementing enterprise-scale security platform integrations and automation using APIs and scripting languages (Python, Bash, PowerShell).
  • Knowledge of cloud security principles, identity and access management (IAM), data security governance, and network security fundamentals (TCP/IP, DNS, HTTP).
  • Experience building and managing security telemetry pipelines, metrics frameworks, and executive reporting dashboards.
  • Demonstrated success managing regulatory audits, control validation efforts, and global compliance requirements.
  • Proven ability to lead high-impact security incident response efforts and cross-functional remediation initiatives.
  • Strong stakeholder management skills with the ability to communicate effectively to both technical and executive audiences.
  • Experience with enterprise security tooling including vulnerability scanning platforms, EDR solutions (e.g., CrowdStrike, Carbon Black, SentinelOne, Defender), and endpoint protection technologies.
  • Lead the strategy and implementation of AI-driven security solutions, leveraging large language models (LLMs), machine learning, and automation to strengthen application security controls and accelerate secure software delivery.
  • Evaluate, develop, and champion innovative uses of generative AI and machine learning to enhance application security operations, improve developer experience, and reduce security risk at scale.
  • Bachelor's Degree in Computer Science, Cybersecurity, Information Systems, or related field; or equivalent professional experience.
  • Advanced degree preferred (MS, MBA, or related discipline).
  • Industry-recognized certifications preferred (CISSP, CISM, CCSP, or similar).
    Employment eligibility to work with American Express in the United States is required as the company will not pursue visa sponsorship for these positions.

About American Express

Amex provides industrial services to the coatings and linings sector, providing support for commercial, industrial, and maritime projects such as petrochemical, power, and water treatment industries. They offer painting services for steel structures, storage tank linings and coatings, pipelines, floors, and marine vessels such as ships, tugboats, and barges.

American Express Careers

Join the vibrant team at American Express, a global leader in financial services, and be part of a company that values innovation, leadership, and diversity. At American Express, we offer more than just job opportunities; we provide a platform for professional growth and a chance to be part of a culture that is committed to excellence and inclusive growth. Work You’ll Do At American Express, we are dedicated to helping our employees reach their full potential. With a variety of career paths available in areas such as technology, marketing, finance, and customer service, American Express is the perfect place to advance your career. Our team is composed of highly skilled professionals who thrive on innovation and collaboration. Join our team and contribute to a company known for its prestigious history of leadership in the credit card industry. Engage in meaningful work that makes a real impact on our global scale business operations. American Express Leadership and Development Programs We believe in nurturing the leadership skills of our employees with extensive training programs and leadership development opportunities. Our commitment to professional growth is evident in our comprehensive benefits package that supports both personal and professional development. Internship Opportunities Start your career with an internship at American Express and gain valuable industry experience. Our internships offer a chance to develop skills, work on challenging projects, and learn from leaders in the industry. Interns at American Express are considered integral members of the team and are given responsibilities that provide a real insight into their future career paths. Diversity and Inclusion At American Express, diversity and inclusion are at the core of our company culture. We are committed to building a diverse workforce and inclusive environment where every employee feels valued and inspired. We offer diversity training programs that empower our employees to thrive and lead in a global marketplace. Networking and Innovation Our employees enjoy unparalleled opportunities for networking and personal growth through our global connections and innovative projects. American Express encourages a culture of innovation that helps propel our company and your career forward. Career Benefits and Growth American Express is dedicated to the growth of its employees. We offer competitive benefits, including health, retirement plans, and family leave, ensuring that our team members have the support they need to succeed both at work and in their personal lives. Join Our Team Explore the job opportunities and open positions at American Express. We are continuously hiring talented individuals who are passionate about their careers and interested in working for a company that offers a dynamic and supportive environment. Stay Connected Keep up to date with the latest from American Express Careers by following our career blog and signing up for job alert emails. Tailor your subscription to receive updates that match your skills and interests. Discover the exciting and rewarding career opportunities that await at American Express. SEARCH AMERICAN EXPRESS JOBS Whether you are looking for a full-time position, an internship, or a leadership opportunity, American Express offers a path to a rewarding career. Join us and make a difference with your passion, creativity, and drive.
Learn more about American Express
Size
64,000 employees
Market Cap
$108.1 billion
Industry
Finance & Insurance
Net Income
$3.1 billion
Founded
1850
5 Year Trend
+3.5%
Revenue
$37 billion
NASDAQ
AXP
* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Jobs at American Express

More Information Technology Jobs

Find similar Director - Security Integration & Engineering-Application Security/ Vulnerability Management jobs:

NationwideNew York, NY