Profiles search
Edward Chee
Information Security Manager, Third Party Risk at American Express
Scottsdale, AZ, United States
Details
Experience:
Performed cyber security risk assessments on third party partners within the American Express Sentinel (highest risk) portfolio. Conducted both on-site and virtual control testing of cyber security domains with a focus on web, mobile, public cloud, and white label channels. Identified gaps and reviewed gap remediation proposals for closure. Redesigned and refreshed control design to stay current with the evolving security threat landscape. Improved the assessment process through normalization and streamlining of the TPRM process (pre/post assessment scheduling, coordination, execution, gap management, gap closure decision, reporting). Provided cross-training between assessors and support teams.
2018 : Present
American Express
Information Security Manager, Third Party Risk
Managing a team conducting Security and Technical Architecture Reviews of third party vendors and internal project risks, from initial risk assessment through post-implementation periodic audits. Performed on-site physical inspections and logical assessment/audit reviews of vendors and internal company locations. Produced playbook documentation.
Install an eGRC platform to incorporate Vendor and Internal Project assessments, Risk and Exceptions Management, Policy Management, RCSA, Threat Modeling, Vulnerability Assessments and BCP/DR components.
Conduct end-to-end RFPs, from candidates identification, request issuance, evaluation, selection, and contracting.
2014 : 2018
American Express Global Business Travel
Global Cyber Security Manager - GRC
Lead reviewer of vendor security compliance technical reviews (GRC). Reviewed over 70 vendor partners during time in this role.
Technical Architect, responsible for HR Technology portfolio oversight. Implemented over 50 global vendor solutions to the core enterprise service offerings.
Technical Architect, providing primary support of the secure File Exchange hub implementation
Project Manager, managed third party integration of a B2B solution for Corporate Purchasing Card portfolio.
2002 : 2014
American Express
Vendor Risk Assessor | Lead Technical Architect | Project Manager
Created a global network strategy to support Business Continuity Planning and Active Directory migration.
2002 : 2002
JDA Software
IT Consultant
Opened a new technology consulting practice in Phoenix. Grew practice to over 15 consultants supporting over 10 new clients within first year.
Created software development framework utilized on multiple projects for rapid application development (RAD)
Provided on-site technology consulting services to multiple clients.
1994 : 2001
Fujitsu Global
Associate Director
2018 : Present
American Express
Information Security Manager, Third Party Risk
Managing a team conducting Security and Technical Architecture Reviews of third party vendors and internal project risks, from initial risk assessment through post-implementation periodic audits. Performed on-site physical inspections and logical assessment/audit reviews of vendors and internal company locations. Produced playbook documentation.
Install an eGRC platform to incorporate Vendor and Internal Project assessments, Risk and Exceptions Management, Policy Management, RCSA, Threat Modeling, Vulnerability Assessments and BCP/DR components.
Conduct end-to-end RFPs, from candidates identification, request issuance, evaluation, selection, and contracting.
2014 : 2018
American Express Global Business Travel
Global Cyber Security Manager - GRC
Lead reviewer of vendor security compliance technical reviews (GRC). Reviewed over 70 vendor partners during time in this role.
Technical Architect, responsible for HR Technology portfolio oversight. Implemented over 50 global vendor solutions to the core enterprise service offerings.
Technical Architect, providing primary support of the secure File Exchange hub implementation
Project Manager, managed third party integration of a B2B solution for Corporate Purchasing Card portfolio.
2002 : 2014
American Express
Vendor Risk Assessor | Lead Technical Architect | Project Manager
Created a global network strategy to support Business Continuity Planning and Active Directory migration.
2002 : 2002
JDA Software
IT Consultant
Opened a new technology consulting practice in Phoenix. Grew practice to over 15 consultants supporting over 10 new clients within first year.
Created software development framework utilized on multiple projects for rapid application development (RAD)
Provided on-site technology consulting services to multiple clients.
1994 : 2001
Fujitsu Global
Associate Director
Company:
American Express
About
A seasoned third party assessor, Ed brings over 10 years of direct experience conducting, managing and designing onsite cyber security assessments of physical and logical controls, within the financial sector.
His prior experience in technical architecture, project management, governance and compliance (GRC), software development, consulting services and leadership positions establishes a solid foundation of knowledge and supporting skills.
Profile Photo
