American Express

Director-Tech Risk & Control (Software Development & Enterprise Architecture)

American Express$150K — $200K *
New York, NY 10025In-Person
Enterprise Technology
8 - 10 years of experience
Today
Be an Early Applicant
Job Overview by Ladders

Qualifications

  • Bachelor's degree in IT, information security, risk management, business, or related field; equivalent experience accepted.
  • 10+ years in technology risk management, operational risk, IT audit, software engineering, enterprise architecture, or cybersecurity.
  • 5+ years of leadership experience in risk, controls, governance, or technology.
  • Experience leading RCSA programs and technology risk assessments in large organizations.
  • Strong knowledge of software development methodologies and cloud environments.
  • Proven ability to influence senior executives and challenge strategic decisions effectively.
  • Exceptional analytical, problem-solving, and communication skills.

Responsibilities

  • Lead risk and control for software development and enterprise architecture.
  • Provide strategic risk advisory to senior technology leaders.
  • Execute RCSA, including risk identification and control assessment.
  • Maintain risk profiles and control inventories for engineering and architecture.
  • Ensure assessment quality and management across the domain.
  • Oversee risk assessments related to software delivery and third-party integrations.
  • Advise on risk implications of technology strategies and architectural decisions.

Benefits

  • Opportunity to influence technology risk management at a high level.
  • Engagement with cutting-edge AI and emerging technologies.
  • Collaboration with leaders across multiple disciplines and functions.
  • Development and mentorship of a team of risk professionals.
  • Visibility and communication with senior leadership and governance forums.
Full Job Description
Job Description

Role Overview

The Director, Technology Risk and Control (Software Development & Enterprise Architecture) is a senior leader within the Technology Governance & Control organization, accountable for risk advisory, governance, and control oversight across secure software development, engineering practices, enterprise architecture, and emerging technology domains.

This role partners with leaders across Technology, Engineering, Enterprise Architecture, Cybersecurity, Product, and Operational Risk to ensure technology risks are identified, assessed, governed, and mitigated through a robust Risk and Control Self-Assessment (RCSA) framework.

The successful candidate will bring deep expertise in technology risk management, software engineering and enterprise architecture practices, and governance of AI/ML and other emerging technology solutions within large, complex, and highly regulated environments.

Responsibilities

Risk Advisory Leadership
  • Serve as the accountable risk and control lead for software development and enterprise architecture domains.
  • Provide strategic risk advisory and credible challenge to senior technology leaders on risk identification, mitigation, and acceptance decisions.
  • Lead RCSA execution across the domain, including risk identification, control assessment, and residual risk evaluation.
  • Maintain risk profiles, taxonomies, and control inventories that support consistent oversight across engineering and architecture functions.
  • Drive quality and consistency in assessments, issue management, remediation, and reporting across the domain.

Technology Risk Assessment
  • Oversee risk assessments related to software delivery, engineering practices, application architecture, third-party integrations, and platform dependencies.
  • Support assessment of control design and operating effectiveness, and recommend enhancements where needed.
  • Advise leadership on the risk implications of technology strategy, architectural decisions, and transformation programs.

AI and Emerging Technology Risk Advisory
  • Provide risk advisory for AI/ML and emerging technology solutions, including AI use in software development such as code generation, test automation, documentation, and engineering workflow support.
  • Assess risks related to AI-assisted software development, including code quality, insecure code generation, data leakage, prompt and input handling, model provenance, third-party tools, lifecycle governance, explainability, privacy, regulatory compliance, and AI security.
  • Partner with engineering and enterprise architecture teams to embed risk-by-design principles, human review, approval controls, and secure development practices into AI-enabled software delivery processes.
  • Advise on governance frameworks, control standards, and auditability requirements that support the responsible use of AI in software development and broader enterprise adoption at scale.

Governance, Reporting, and Regulatory Engagement
  • Lead the preparation and presentation of risk insights, emerging themes, and recommendations for senior leadership and governance forums.
  • Develop meaningful risk metrics, key risk indicators, and management reporting to support informed decision-making.
  • Support internal audits, regulatory examinations, and external assessments with clear, well-structured risk and control narratives.
  • Ensure alignment with enterprise risk frameworks, policies, standards, and regulatory expectations.

Stakeholder Management
  • Build strong partnerships across Engineering, Architecture, Cybersecurity, Data, Product, Compliance, and Operational Risk.
  • Influence senior leaders and promote risk-informed decision-making across strategic initiatives.
  • Act as a trusted advisor on technology risk, governance, and transformation priorities.

Team Leadership
  • Lead and develop risk professionals supporting technology risk and control activities.
  • Foster a culture of accountability, continuous improvement, and strong risk awareness.
  • Build team capability through coaching, development planning, and succession management.


Qualifications

  • Bachelor's degree in information technology, information security, risk management, business, or a related discipline And/ Or equivalent experience required
  • 10+ years of experience in technology risk management, operational risk, IT audit, software engineering, enterprise architecture, cybersecurity, or closely related fields.
  • 5+ years of leadership experience in risk, controls, governance, and technology functions.
  • Demonstrated experience leading RCSA programs and technology risk assessments in large, complex organizations.
  • Strong understanding of software development methodologies, cloud environments, and enterprise architecture practices.
  • Proven ability to influence senior executives and provide effective challenge on strategic technology decisions.
  • Strong analytical and problem-solving skills, with the ability to translate complex technical and regulatory concepts into clear risk insights.
  • Exceptional executive communication, stakeholder management, and presentation skills.


Preferred Qualifications
  • Experience leading technology risk governance across software development, SDLC, engineering, architecture, and emerging technology domains.
  • Experience supporting regulatory examinations and internal or external audits.
  • Professional certifications such as CISA, CISSP, CRISC, CISM, CGEIT, or equivalent.
  • Advanced degree in information security, risk management, business, or a related discipline.
  • IT/IS background - SDLC or Architecture is a plus

About American Express

Amex provides industrial services to the coatings and linings sector, providing support for commercial, industrial, and maritime projects such as petrochemical, power, and water treatment industries. They offer painting services for steel structures, storage tank linings and coatings, pipelines, floors, and marine vessels such as ships, tugboats, and barges.

American Express Careers

Join the vibrant team at American Express, a global leader in financial services, and be part of a company that values innovation, leadership, and diversity. At American Express, we offer more than just job opportunities; we provide a platform for professional growth and a chance to be part of a culture that is committed to excellence and inclusive growth. Work You’ll Do At American Express, we are dedicated to helping our employees reach their full potential. With a variety of career paths available in areas such as technology, marketing, finance, and customer service, American Express is the perfect place to advance your career. Our team is composed of highly skilled professionals who thrive on innovation and collaboration. Join our team and contribute to a company known for its prestigious history of leadership in the credit card industry. Engage in meaningful work that makes a real impact on our global scale business operations. American Express Leadership and Development Programs We believe in nurturing the leadership skills of our employees with extensive training programs and leadership development opportunities. Our commitment to professional growth is evident in our comprehensive benefits package that supports both personal and professional development. Internship Opportunities Start your career with an internship at American Express and gain valuable industry experience. Our internships offer a chance to develop skills, work on challenging projects, and learn from leaders in the industry. Interns at American Express are considered integral members of the team and are given responsibilities that provide a real insight into their future career paths. Diversity and Inclusion At American Express, diversity and inclusion are at the core of our company culture. We are committed to building a diverse workforce and inclusive environment where every employee feels valued and inspired. We offer diversity training programs that empower our employees to thrive and lead in a global marketplace. Networking and Innovation Our employees enjoy unparalleled opportunities for networking and personal growth through our global connections and innovative projects. American Express encourages a culture of innovation that helps propel our company and your career forward. Career Benefits and Growth American Express is dedicated to the growth of its employees. We offer competitive benefits, including health, retirement plans, and family leave, ensuring that our team members have the support they need to succeed both at work and in their personal lives. Join Our Team Explore the job opportunities and open positions at American Express. We are continuously hiring talented individuals who are passionate about their careers and interested in working for a company that offers a dynamic and supportive environment. Stay Connected Keep up to date with the latest from American Express Careers by following our career blog and signing up for job alert emails. Tailor your subscription to receive updates that match your skills and interests. Discover the exciting and rewarding career opportunities that await at American Express. SEARCH AMERICAN EXPRESS JOBS Whether you are looking for a full-time position, an internship, or a leadership opportunity, American Express offers a path to a rewarding career. Join us and make a difference with your passion, creativity, and drive.
Learn more about American Express
Size
64,000 employees
Market Cap
$108.1 billion
Industry
Finance & Insurance
Net Income
$3.1 billion
Founded
1850
5 Year Trend
+3.5%
Revenue
$37 billion
NASDAQ
AXP
* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Jobs at American Express

More Enterprise Technology Jobs

Find similar Director-Tech Risk & Control (Software Development & Enterprise Architecture) jobs:

NationwideNew York, NY