Hobbsnews
Overview
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day. Bank of America is committed to an in‑office culture with specific requirements for office‑based attendance and a level of flexibility based on role‑specific considerations. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us! Position : Information Security Officer within the Business Information Security Officer (BISO) organization, working closely with line of business Front Line Units (FLU) / CIO executives to develop a deep understanding of the business and enable risk‑based information security discussions. This role provides guidance on information security topics, policies and controls to align with the bank's risk management and compliance programs. Responsibilities / Scale & Scope
Contribute to ongoing information security initiatives and the development, implementation and maintenance of information security for FLU/Ops. Serve as an Information Security subject matter expert and participate in the development, implementation and maintenance of information security for FLU/Ops. Align to Fraud Authentication, Financial Center, and Automated Teller Machines channel segments to drive a security strategy and ensure appropriate security by design requirements execution. Provide guidance and advocacy regarding the prioritization of investments that impact information security. Advise management on risk issues related to information security and recommend actions in support of the bank's wider risk management and compliance programs. Monitor information security trends internal and external to the bank and keep leadership informed. Manage quality control and reporting; ensure compliance with policies and laws. Required Skills
Information Security & Technology professional with 10+ years’ experience. 7+ years of risk management experience with proven ability to apply risk principles to challenging business situations. Subject matter expertise in application security, vulnerability testing and development of risk appetite. Experience evaluating cyber security controls and providing guidance for platform or distributed computing platforms (Cloud, PaaS). Experience evaluating third party information security control and providing guidance to reduce risk on identify observations. Experience with information security for NoSQL, Big Data, and unstructured data stores (Cassandra, Hadoop, Teradata). Knowledge in Windows, Midrange and Mainframe Platforms with emphasis on security application controls. Exceptional executive presentation and communication skills; strong influencing and problem resolution skills. Ability to communicate risk to LOB management and align actions with risk management and compliance programs. Comfort delivering messages across a wide spectrum of technical understanding; strong leadership and collaboration skills with peers and management. Desired Skills
Bachelor’s and/or Master’s degree in Computer Science, Information Technology or related field. Experience working on cloud control assessment in Microsoft Azure, Amazon Web Services and Google Cloud Platform environments. Risk Management
Drives GIS/FLU/Ops risk deliverables; collaborates with risk partners on information security critical priorities. Participates in senior FLU/Ops risk management & business continuity routines. Identifies and measures global information security (GIS) controls on the most critical business processes or channels. Leadership / Strategy
Ability to build strong partner relationships with peer technology groups and supported FLU/Ops. Supports the triage process with clients and helps them understand the GIS support structure. Drives required risk culture and partnerships with peer technology teams and supported FLU/Ops. Participates in key operating routines to drive information security risk strategy. Shift & Hours
Shift:
1st shift (United States of America) Hours Per Week:
40 Pay Transparency & Location
Locations include: Denver CO, Washington DC, Chicago IL. Pay range: $141,700.00 – $206,900.00 annualized salary, offers to be determined based on experience, education and skill set. Discretionary incentive eligible. This role is eligible to participate in the annual discretionary plan depending on performance and company results. Benefits are available where eligible.
#J-18808-Ljbffr
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day. Bank of America is committed to an in‑office culture with specific requirements for office‑based attendance and a level of flexibility based on role‑specific considerations. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us! Position : Information Security Officer within the Business Information Security Officer (BISO) organization, working closely with line of business Front Line Units (FLU) / CIO executives to develop a deep understanding of the business and enable risk‑based information security discussions. This role provides guidance on information security topics, policies and controls to align with the bank's risk management and compliance programs. Responsibilities / Scale & Scope
Contribute to ongoing information security initiatives and the development, implementation and maintenance of information security for FLU/Ops. Serve as an Information Security subject matter expert and participate in the development, implementation and maintenance of information security for FLU/Ops. Align to Fraud Authentication, Financial Center, and Automated Teller Machines channel segments to drive a security strategy and ensure appropriate security by design requirements execution. Provide guidance and advocacy regarding the prioritization of investments that impact information security. Advise management on risk issues related to information security and recommend actions in support of the bank's wider risk management and compliance programs. Monitor information security trends internal and external to the bank and keep leadership informed. Manage quality control and reporting; ensure compliance with policies and laws. Required Skills
Information Security & Technology professional with 10+ years’ experience. 7+ years of risk management experience with proven ability to apply risk principles to challenging business situations. Subject matter expertise in application security, vulnerability testing and development of risk appetite. Experience evaluating cyber security controls and providing guidance for platform or distributed computing platforms (Cloud, PaaS). Experience evaluating third party information security control and providing guidance to reduce risk on identify observations. Experience with information security for NoSQL, Big Data, and unstructured data stores (Cassandra, Hadoop, Teradata). Knowledge in Windows, Midrange and Mainframe Platforms with emphasis on security application controls. Exceptional executive presentation and communication skills; strong influencing and problem resolution skills. Ability to communicate risk to LOB management and align actions with risk management and compliance programs. Comfort delivering messages across a wide spectrum of technical understanding; strong leadership and collaboration skills with peers and management. Desired Skills
Bachelor’s and/or Master’s degree in Computer Science, Information Technology or related field. Experience working on cloud control assessment in Microsoft Azure, Amazon Web Services and Google Cloud Platform environments. Risk Management
Drives GIS/FLU/Ops risk deliverables; collaborates with risk partners on information security critical priorities. Participates in senior FLU/Ops risk management & business continuity routines. Identifies and measures global information security (GIS) controls on the most critical business processes or channels. Leadership / Strategy
Ability to build strong partner relationships with peer technology groups and supported FLU/Ops. Supports the triage process with clients and helps them understand the GIS support structure. Drives required risk culture and partnerships with peer technology teams and supported FLU/Ops. Participates in key operating routines to drive information security risk strategy. Shift & Hours
Shift:
1st shift (United States of America) Hours Per Week:
40 Pay Transparency & Location
Locations include: Denver CO, Washington DC, Chicago IL. Pay range: $141,700.00 – $206,900.00 annualized salary, offers to be determined based on experience, education and skill set. Discretionary incentive eligible. This role is eligible to participate in the annual discretionary plan depending on performance and company results. Benefits are available where eligible.
#J-18808-Ljbffr