CrawlJobs Logo

Senior Auditor, Privacy

americanexpress.com Logo

Amex

Location Icon

Location:
United States , New York

Category Icon
Category:
Finance

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

78000.00 - 124750.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

Our Internal Audit group is seeking a Senior Auditor to assess financial, operational, and technological risks, ensure compliance with regulations, and improve internal controls. The ideal candidate will have strong problem- solving skills, excellent attention to detail, and the ability to utilize effective challenge when conducting audit work.

Job Responsibility:

  • Assist team leaders and Senior Managers/Managers in the execution of assigned audit tasks in line with American Express’ Internal Audit Methodology, internal policies and standards, and regulatory expectations throughout the audit lifecycle
  • Evaluate processes under review utilizing professional skepticism
  • execute audit tests and clearly document test results in accordance with internal policies and procedures
  • Hold walkthroughs with client personnel to understand, assess, evaluate, and document relevant risks and controls
  • Assist team leaders and Senior Managers/Managers with routine client status meetings, audit requests, and other administrative tasks
  • Assist team leaders and Senior Managers/Managers in documentation and evaluation of audit observations, findings
  • Validate management’s corrective action plans to address business-identified issues, audit findings and regulatory remediations
  • Contribute to the development and periodic reviews of analytic control testing and ad hoc analytics, to drive timely risk insights, testing efficiencies and increased audit coverage
  • Develop a strong understanding of American Express' business model, products, services, and organizational units
  • Maintain audit proficiency through ongoing professional development, including data analytics literacy skills, technology, banking best practices and regulatory expectations

Requirements:

  • 2+ years of relevant audit experience
  • Knowledge and experience in applying control theory and professional auditing practices throughout the audit lifecycle and special reviews
  • Understanding of regulatory, accounting, and financial industry best practices relevant to the business, including technology and data implications
  • Strong written and verbal communication skills to deliver audit deliverables with quality
  • Effectively works independently, within the team and across various teams in a fast-paced environment to drive business results
  • Ability to break-down complex problems into components and solve utilizing complex thought, process and risk/control knowledge

Nice to have:

  • Relevant audit experience within the financial services industry
  • Degree in accounting, finance, business, or another related field
  • Relevant audit and professional certifications (e.g., Certified Public Accountant, (CPA), Certified Internal Auditor (CIA), etc.
  • Experience with data analytic tools, data visualization, key risk indicators (KRIs), key performance indicators (KPIs), information systems / technology, and scorecards / dashboards, etc.
  • Interest in working with data, interpreting results, analytic best practices and experience with data analytics tools and data visualization
  • Audit experience assessing/auditing technology risk management or functions such as: enterprise architecture, technology resilience, employee digital workplace, API management, application development, and IT asset management
What we offer:
  • Competitive base salaries
  • Bonus incentives
  • 6% Company Match on retirement savings plan
  • Free financial coaching and financial well-being support
  • Comprehensive medical, dental, vision, life insurance, and disability benefits
  • Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need
  • 20+ weeks paid parental leave for all parents, regardless of gender, offered for pregnancy, adoption or surrogacy
  • Free access to global on-site wellness centers staffed with nurses and doctors (depending on location)
  • Free and confidential counseling support through our Healthy Minds program
  • Career development and training opportunities

Additional Information:

Job Posted:
March 24, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Amex - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Senior Auditor, Privacy

Senior IT Auditor

This is a brilliant opportunity for an IT Audit professional looking to lead on ...
Location
Location
Salary
Salary:
Not provided
auditandriskrecruitment.com Logo
Audit & Risk Recruitment
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-9 years’ IT auditing experience (internal and external) with a strong grasp of risk and controls
  • Background in Big 4/Consulting Firm with a large Listed company as a recent experience
  • Background in heavier industries like manufacturing, chemicals, automotives is advantageous
  • Certifications like CISA, CISSP, or CPA preferred
  • Strong communication skills with the ability to translate tech-speak into business value
  • A blended understanding of business audits and IT audits – how they interact
  • Fluent in English
  • One other language is preferred (French, German, Spanish, Polish)
  • Curious-mindedness and ability to share ideas
Job Responsibility
Job Responsibility
  • Leading and delivering risk-based IT Audits across the whole organisation, covering various IT systems
  • Delivering IT SOX projects and ITGC testing across the business
  • Executing cybersecurity and data privacy audits
  • Assessing and enhancing internal controls (especially, but not limited to, SOX) and business processes
  • Offer your findings and influence stakeholders, including CFO’s and other senior leadership
What we offer
What we offer
  • Travel of around 10%, mainly across the region and occasionally other global locations
  • Global exposure
  • Supportive, high-performing team
  • Fulltime
Read More
Arrow Right

Senior Compliance Manager/Director of Compliance

This is a unique opportunity to help build out Verkada’s global regulatory compl...
Location
Location
United States , San Mateo
Salary
Salary:
205000.00 - 275000.00 USD / Year
verkada.com Logo
Verkada
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree from a four-year university (computer science/engineering degree or equivalent IT background strongly preferred)
  • 8+ years of relevant compliance experience
  • Deep technical understanding of security engineering principles and architectures, specifically those related to cloud security, IoT, edge computing, AI/ML, and computer vision
  • Demonstrated experience managing compliance programs related to FTC regulations and consent decrees, and CCPA/CPRA risk assessment requirements
  • Ability to effectively and autonomously accomplish outcomes across cross-functional teams in ambiguous situations with minimal supervision
  • Proven understanding and experience with data privacy and security technologies/applications/tools
  • Significant experience with audits, risk, and compliance programs
  • Ability to multitask, prioritize work, and meet deadlines in a fast-paced environment
  • Focus on precision and accuracy, and the drive to clarify ambiguity
Job Responsibility
Job Responsibility
  • Act as the primary legal compliance partner for the Security team, translating legal and regulatory requirements (e.g., FTC, CCPA) into actionable security controls and procedures
  • Lead the internal audit function for regulatory security, privacy, and AI compliance, regularly assessing the effectiveness of security controls against legal obligations and providing detailed reports to the Chief Privacy Officer, Chief Information Security Officer, and other stakeholders in security and privacy governance leadership
  • Work with key privacy, security, and product leaders to develop and lead the company’s legal regulatory compliance program, ensuring ongoing compliance with Verkada’s evolving data privacy, security, risk and governance obligations
  • Develop and oversee the company's compliance framework with a focus on an ongoing FTC-mandated infosec program, as well as CCPA/CPRA risk requirements, ensuring all controls are documented, implemented, and tested
  • Implement and maintain tooling and processes in support of testing and continuous monitoring of legal and security controls across multiple domains: privacy, product, security, AI, IT, etc.
  • Participate in annual risk assessments with the security team, and assist them in preparing risk treatment plans, including escalation paths and remediation processes
  • Work closely with external auditors and assessors to educate them about and achieve continuous compliance over the control environment
  • oversee gathering and maintaining necessary evidence for the audit process
  • Create procedural documentation, including standard operating procedures and other process-related documentation
  • Communicate progress, escalations, and issue resolution to management and team stakeholders
What we offer
What we offer
  • Healthcare programs that can be tailored to meet the personal health and financial well-being needs - Premiums are 100% covered for the employee under at least one plan and 80% for family premiums under all plans
  • Nationwide medical, vision and dental coverage
  • Health Saving Account (HSA) with annual employer contributions and Flexible Spending Account (FSA) with tax saving options
  • Expanded mental health support
  • Paid parental leave policy & fertility benefits
  • Time off to relax and recharge through our paid holidays, firmwide extended holidays, flexible PTO and personal sick time
  • Professional development stipend
  • Fertility Stipend
  • Wellness/fitness benefits
  • Healthy lunches provided daily
  • Fulltime
Read More
Arrow Right
New

Senior Auditor - IAG Privacy

This Senior Auditor role is within the IAG Privacy team, which is part of the br...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
americanexpress.com Logo
Amex
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstratable audit experience
  • Strong written and verbal communication skills
  • Ability to work independently and across teams in a fast-paced environment
  • Ability to break-down problems and solve using data analysis, process, risk control knowledge
  • Knowledge and experience in applying control theory and professional auditing practices
  • Understanding of regulations, regulatory risks, and financial industry best practices
  • Employment eligibility to work with American Express in the UK
Job Responsibility
Job Responsibility
  • Participate as a key member of the IAG Privacy team, providing privacy subject matter expertise
  • Maintain and expand Internal Audit, Privacy, and data literacy proficiency
  • Develop familiarity of key privacy risks, requirements, and controls within American Express
  • Participate as a key team member on audit projects, independently owning audit tasks
  • Assist Senior Managers / Managers in the execution of assigned audit tasks
  • Review prior audit results and relevant business monitoring materials to support Audit Planning
  • Execute audit tests and clearly document test results
  • Identify and escalate issues as appropriate
  • Develop an understanding of American Express' business model, products, services
  • Assist in documenting and evaluating audit observations and issues
What we offer
What we offer
  • Competitive base salaries
  • Bonus incentives
  • Support for financial-well-being and retirement
  • Comprehensive medical, dental, vision, life insurance, and disability benefits
  • Flexible working model with hybrid, onsite or virtual arrangements
  • Generous paid parental leave policies
  • Free access to global on-site wellness centers
  • Free and confidential counseling support through Healthy Minds program
  • Career development and training opportunities
Read More
Arrow Right

Global Data Privacy Counsel

We are looking for a senior attorney with extensive experience in global data pr...
Location
Location
United States , Atlanta
Salary
Salary:
Not provided
arrive.com Logo
Arrive
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Juris Doctor degree from a reputable, accredited U.S. law school
  • Active license in good standing with one or more U.S. state bars (Georgia preferred)
  • 10+ years of progressive experience in data privacy and cybersecurity legal matters, with significant in-house experience at a high-growth, technology-driven company
  • Deep expertise and knowledge of and hands-on experience with U.S. and international data privacy, cybersecurity, and compliance laws and frameworks (including GDPR, CCPA/CPRA, PCI-DSS, ISO certifications, and other relevant global standards) and leading-edge AI regulations and frameworks
  • Demonstrated success in providing strategic legal counsel that balances risk management with enabling innovation and business growth, particularly in payments and data-driven initiatives
  • Proven experience leading global privacy and data protection programs, including managing privacy and data protection risk frameworks and governance
  • Experience managing external counsel, auditors, and regulators
  • Proven ability to lead, develop, and inspire diverse, global teams, including direct leadership experience with Data Protection Officers and other privacy professionals
  • Strong business acumen with the ability to translate complex legal concepts into clear, actionable advice that aligns with business objectives and supports deal-making and sales acceleration
  • Excellent communication and interpersonal skills, with the ability to influence stakeholders at all levels, including senior executives and cross-functional teams globally
Job Responsibility
Job Responsibility
  • Serve as a trusted strategic legal advisor to executive leadership, business unit and function heads, and the governance committees on global privacy, data protection, and cybersecurity risks, as well as opportunities aligned with rapid business growth and innovation
  • Design, lead, and continuously evolve the global privacy and data protection program, ensuring it not only meets regulatory requirements but also supports scalable growth and competitive advantage in a fast-paced, high-growth environment
  • Partner closely with product, technology, payments, data, software and hardware sales, marketing, and strategy teams to embed privacy-by-design and data governance principles into all data-driven and payment-related initiatives
  • Advise on privacy, data protection, cross-border data processing, and emerging technologies (AI and machine learning), in connection with parking, public transport and other urban mobility technologies and data services (B2B, B2C), to help the company navigate these complex regulatory environments while accelerating innovation
  • Balance risk management with enabling agility—help business units achieve their ambitious growth objectives without compromising compliance or customer trust
  • Lead and manage a global, unified privacy and data protection team, including the EU Data Protection Officer and EU Privacy Program Manager, and serve as the global privacy and data protection leader responsible for harmonizing privacy and data protection practices across all regions
  • Act as the company’s U.S. and Canada Privacy Officer, overseeing all U.S.-specific and Canada-specific aspects of the global privacy and data protection program
  • Own enterprise-wide development, implementation, and continuous improvement of privacy and data protection policies, standards, and frameworks aligned with relevant global privacy and data protection-related regulations
  • Develop and maintain a privacy and data protection risk management framework and a dashboard of key privacy metrics to inform leadership decision making and monitor program effectiveness in a high-growth environment
  • Lead privacy and data protection audits and program assessments to ensure compliance and identify areas for improvement aligned with rapid company growth
Read More
Arrow Right
New

Chief Auditor Technology & Business Enablement International and Wealth International Technology

The Managing Director, Chief Auditor Technology & Business Enablement Internatio...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 15 years of diversified management experience in audit or a related role with a focus on cyber, technology resilience and data
  • Demonstrable technology experience, including that related to the design and operation of risk and controls frameworks
  • Demonstrable product knowledge of Markets, Services, Payments Infrastructures, Corporate and Consumer Banking and Wealth Management, including the provision of technology services within these areas
  • International experience is preferred within highly respected, diversified and complex institutions
  • Proven experience working with regulators and managing regulatory audits or inspections
  • A strong level of technical knowledge related to cyber security, resilience, current and emerging technologies and systems development best practices
  • Strong knowledge of IT governance and control frameworks (e.g. COBIT, NIST, SANS)
  • Good understanding of AI and machine learning concepts, algorithms and techniques
  • Familiarity with data governance principles, data quality management and data privacy practices
  • Strong understanding of internal audit standards (e.g. IIA Standards) and risk management frameworks (e.g. COSO)
Job Responsibility
Job Responsibility
  • Timely development, risk assessment, and periodic refresh of the audit plan for the scope of the role’s area of responsibilities
  • Coordination and delivery of high-quality, value-add multiple concurrent risk-based audits
  • Engagement with senior stakeholders upon receipt of supervisory letters/other regulatory communications
  • Timely delivery of high-quality and comprehensive regulatory and internal audit issue validation
  • Support and endorse the IA Quality Assurance (QA) team to address and resolve issues found by QA
  • Ensure that IA activity is sufficient and relevant to delivering timely assurance
  • Appropriately assess risk when business decisions are made
  • In collaboration with the IA International team, ensure that country-specific technology, cyber and resilience regulatory requirements are understood
  • In collaboration with the Chief Auditor for US Wealth, USCC & Functions, support the integrated risk assessment, audit plan creation and opinion for the Global Wealth business
  • Working in close collaboration with the QA team, lead the processes across Technology & Business Enablement to assess the quality outcomes of assurance work
  • Fulltime
Read More
Arrow Right
New

Chief Auditor Technology & Business Enablement International and Wealth International Technology

The Managing Director, Chief Auditor Technology & Business Enablement Internatio...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 15 years of diversified management experience in audit or a related role with a focus on cyber, technology resilience and data
  • Demonstrable technology experience, including that related to the design and operation of risk and controls frameworks
  • Demonstrable product knowledge of Markets, Services, Payments Infrastructures, Corporate and Consumer Banking and Wealth Management, including the provision of technology services within these areas
  • International experience is preferred within highly respected, diversified and complex institutions
  • Proven experience working with regulators and managing regulatory audits or inspections
  • Bachelor’s degree/University degree in computer science, data science, finance, accounting, science or a related field, or equivalent experience
  • Master’s degree preferred
  • Related certifications such as Certified Information Systems Auditor (CISA), Certified Internal Auditor (CIA), Certified in Risk and Information Systems (CRISC) or similar
  • Technical Skills: A strong level of technical knowledge related to cyber security, resilience, current and emerging technologies and systems development best practices
  • Strong knowledge of IT governance and control frameworks (e.g. COBIT, NIST, SANS)
Job Responsibility
Job Responsibility
  • Assurance Risk Assessment, Strategy & Coverage: Timely development, risk assessment, and periodic refresh of the audit plan
  • Responsible for the coordination and delivery of high-quality, value-add multiple concurrent risk-based audits
  • Engagement with senior stakeholders upon receipt of supervisory letters/other regulatory communications
  • Timely delivery of high-quality and comprehensive regulatory and internal audit issue validation
  • Support and endorse the IA Quality Assurance (QA) team
  • Ensure that IA activity is sufficient and relevant to delivering timely assurance
  • Appropriately assess risk when business decisions are made
  • In collaboration with the IA International team, ensure that country-specific technology, cyber and resilience regulatory requirements are understood
  • In collaboration with the Chief Auditor for US Wealth, USCC & Functions, support the integrated risk assessment, audit plan creation and opinion for the Global Wealth business
  • Working in close collaboration with the QA team, lead the processes across Technology & Business Enablement to assess the quality outcomes of assurance work
  • Fulltime
Read More
Arrow Right

Senior Internal Auditor

At Vodafone, we’re not just shaping the future of connectivity for our customers...
Location
Location
Türkiye , İstanbul
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years' work experience in External and/or Internal audit in multi-national corporations
  • Preferably with experience on the Telecom and/or Technology industries
  • Proven experience leading and executing complex audit engagements across various business functions
  • Experience in risk management, governance and compliance auditing
  • Previous experience in mentoring or supervising junior audit staff is desirable
  • Bachelor’s degree in Accounting, Finance, Business Administration or related field
  • A Master’s degree or MBA is highly desirable
  • Certified Internal Auditor (CIA) or actively pursuing the certification
  • Other certifications such as CISA and CRMA would be considered as a plus
  • Strong understanding of internal control frameworks (e.g., COSO), risk management practices
Job Responsibility
Job Responsibility
  • Lead and execute complex but comprehensive internal audits across various departments and functions, ensuring the accuracy, completeness, and effectiveness of internal controls in light of Business objectives and Compliance requirements
  • Identify risks, assess the adequacy of control frameworks, and recommend insightful improvements that enhance operational efficiency and governance
  • Provide clear, actionable audit findings and communicate effectively with senior management to drive remediation actions, either through high quality Audit Reports or any other interactions
  • Maintain internal audit “working papers” in accordance with Vodafone Internal Audit Methodology and the IIA Standards
  • Support the Internal Audit Manager in strategic audit planning, resource allocation, and performance monitoring
  • Mentor and guide junior audit staff, fostering professional growth and a culture of continuous improvement within the team
  • Demonstrate leadership potential by contributing to Internal Audit departmental initiatives, driving process improvements, and supporting organizational risk management strategies
  • Ability to work independently as well as the ability to work with other team members in other locations as required
  • Pro-actively develop relationships with key stakeholders across Vodafone that fosters acceptance and buy-in of the Internal Audit function, in line with the Vodafone Internal Audit strategy
  • Understand, develop and implement data analytics projects on-going or planned within the department with minimal direction, perform in-depth and conclusive audit testing and documentation for all assigned jobs
What we offer
What we offer
  • Vflexy: Flexible Benefits Program
  • Hybrid working kit
  • Ergonomic kit allowance
  • Digital meal voucher
  • Flexible transportation allowance
  • Employee assistance hotline & counselling
  • Comprehensive and flexible private health insurance
  • Discounted price deals for wide range of products & services
  • Fulltime
Read More
Arrow Right

Security GRC Analyst

We’re looking for a Security GRC Analyst to help support and advance Intercom’s ...
Location
Location
Ireland , Dublin
Salary
Salary:
Not provided
intercom.com Logo
Intercom
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience building collaborative relationships with a diverse range of stakeholders, including executive leadership, management, Legal, Privacy, Engineering, and external auditors
  • Experience with cloud security practices, including tooling, strategy, and methodology
  • experience with AWS security is preferred
  • Knowledge of information security technologies, compliance and regulatory requirements, information governance, and privacy best practices
  • Knowledge of common information security management frameworks, such as ISO/IEC 27001, SOC 2, and HIPAA, as well as NIST frameworks including 800-53 and the NIST Cybersecurity Framework
  • Demonstrates a high level of personal integrity, with the ability to handle confidential information professionally and exercise sound judgment and maturity
  • Demonstrates the ability to scope, plan, and delegate work effectively
  • Demonstrates strong cross-functional communication skills, both written and verbal
  • Demonstrates a high degree of autonomy and ownership in their approach to work
Job Responsibility
Job Responsibility
  • Develop, enhance, and operationalise entity-level security and privacy policies, processes, and controls to mitigate risk and comply with applicable laws and regulations
  • Continuously monitor and assess Intercom’s security and privacy controls, working closely with teams such as Legal, Engineering, Sales, and Customer Support to refine and improve control design
  • Drive the implementation of security assurance strategies, including ownership of internal and external assurance resources and improvements to Intercom’s security assurance materials
  • Maintain and manage the enterprise security risk register, partnering with senior leaders to identify, assess, and reduce security risks
  • Improve operational efficiency through process improvements, technical solutions, and automation where possible
What we offer
What we offer
  • Competitive salary and equity in a fast-growing start-up
  • We serve lunch every weekday, plus a variety of snack foods and a fully stocked kitchen
  • Regular compensation reviews – we reward great work!
  • Pension scheme & match up to 4%
  • Peace of mind with life assurance, as well as comprehensive health and dental insurance for you and your dependents
  • Flexible paid time off policy
  • Paid maternity leave, as well as 6 weeks paternity leave for fathers, to let you spend valuable time with your loved ones
  • If you’re cycling, we’ve got you covered on the Cycle-to-Work Scheme, with secure bike storage too
  • MacBooks are our standard, but we also offer Windows for certain roles when needed
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy