Analyst-Compliance

As part of the Enterprise Shared Services (ESS), the Global Supply Management (GSM) organization partners with American Express (AXP) business units to identify the right third parties to support their strategic objectives, negotiate contracts and protect the company from third-party risk. GSM’s vision is to offer outstanding procurement, third-party risk management, and payments services to all American Express colleagues.

Within GSM, the Third-Party Center of Excellence (COE) is comprised of the Third-Party Lifecycle Management (TLM) Operations, Third-Party Risk Management (TPRM), and Third-Party Governance & Control teams, which collectively play a crucial role in managing third-party risk for the company.

In this role you will be provide regulatory/audit support to the governance and controls team within the Third-Party Center of Excellence (COE) team which supports Business Units with the management of risk associated with the use of third parties.  This includes managing regulatory, process, quality control and bypass risk.

The governance and controls team ensures robust third-party governance, risk management, and compliance through industry-leading controls, cross-functional collaboration, and continuous process improvement.

Focus:

·      Support 2nd line of defense reviews, internal audits, and regulatory exams of the Third-Party Risk Management program.

·      Protect organizational integrity and minimize risk exposure.

·      Enhance operational efficiencies and regulatory compliance.

·      Strengthen governance frameworks and proactively mitigate risks.

·      Foster seamless collaboration between compliance, procurement, legal, and business units.

Additional Areas of Support:

·      Bypass testing in accordance with AEMP 10 Third Management policy requirements.

·      Quality Control at key points within the third-party management lifecycle.

·      E2E Third-Party Contracting Process Risk Self-Assessment (PRSA) and controls.

·      Operational Risk Event (ORE) and finding remediation for issues identified during audits and exams of the third-party program.

Communicate Clearly & Effectively:

·      Communicate clearly with the ability to influence business partners and draw linkages across different risk disciplines.

·      Translate complex information into easily understandable terms.

Minimum Qualifications:

·      Risk mindset: Previous experience in a risk/control related field such as but not limited to: Third-Party.

·      Risk Management, Operational Risk Management, Compliance, and Audit.

·      Bachelors is required.

Preferred Qualifications:

·      Experience with Regulatory Exam Management.

·      Experience with audit/regulatory request response.

·      Experience with 3rd Party Lifecycle Management.

• Competitive base salaries 
• Bonus incentives 
• Support for financial-well-being and retirement 
• Comprehensive medical, dental, vision, life insurance, and disability benefits (depending on location) 
• Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need 
• Generous paid parental leave policies (depending on your location) 
• Free access to global on-site wellness centers staffed with nurses and doctors (depending on location) 
• Free and confidential counseling support through our Healthy Minds program 
• Career development and training opportunities