Global Information Security IAM Team Manager

Bank Of America Corporation Addison , TX 75001

Posted 5 days ago

Job Description:

As an experienced professional, provide advice to client management with regard to moderately complex security issues. Assists in the review, development, testing and implementation of security plans, products and control techniques. Coordinates the reporting data security incidents. Provides technical support to the client and management and staff in risk assessments and implementation of appropriate data security procedures and products. Monitors existing and proposed security standard setting groups. State and Federal legislation and regulations. Identifies and escalates changes that will affect information security policy, standards and procedures. Executes security controls to prevent hackers from infiltrating company information or jeopardizing e-commerce programs. Researches attempted efforts to compromise security protocols. Administers security policies to control access to systems and maintains the company firewall. Works on complex problems where analysis of situations or data requires an in-depth evaluation of various factors. Exercises judgment within broadly defined practices and policies in selecting methods, techniques, and evaluation criterion for obtaining results. Work leadership may be provided by assigning work and resolving problems. Typically 5-7 years of IT experience.

Job Description and Responsibilities:

Are you interested in working with the best information security team in the world? Bank of America is hiring top talent to join our team.

The Cyber Security Defense (CSD) function within Global Information Security is responsible for all aspects of the threat intelligence and monitoring, application and network security, and insider threat. In addition, the CSD team drives out the enterprise-wide cyber exercise program.

The Access Management Operations (AMO) function within CSD is responsible for enabling simplification of our access processes, standardizing solutions and risk reduction across the enterprise, as well as collaborating with internal partners to encourage adoption of the bank's cybersecurity standards by external stakeholders.

Candidate will be responsible for understanding, following, and implementing Enterprise Access standards, baseline, security procedures and policies. Managerial leadership position, responsible for supporting the daily application access management operations of the Access Services team. Lead the program to define requirements and drive implementation of automate application provisioning. While ensuring the stable continuance of ongoing legacy operations, lead the process redesign and measurement for provisioning access to applications. The successful candidate will possess a minimum of 5-10 years' experience in leading operational functions, reporting, data analysis, and project management in large-scale environments. A risk oriented perspective is required, along with the ability to support BAU processes and maintenance of Enterprise Access platforms. Self-starter and highly analytical thinker required. Ability to work well in teams as well as with business partners to support and enhance Access Service experience. Utilizes technical and business knowledge to support secure, risk-based practices, exercising judgment within broadly defined practices and policies. Results oriented, business focused, and successful at interfacing across multiple organizational units, at various levels. Self-starter who is comfortable working as part of a highly-leveraged team across geographic locations.

Required Skills:

Knowledge/experience/exposure with information security topics, including the design, development, testing, implementation or governance of information security practices and solutions.

Candidates that can demonstrate a track record (or proficient knowledge of) access management / risk identification and mitigation /project management skills will be considered.

  • Expert skills with Microsoft Office automation products for daily and ad-hoc reporting (e.g. Excel, PowerPoint, and Access), and visualization and reporting platforms such as Tableau, Spotfire, and Crystal Reports.

  • Impeccable communication skills, able to translate data into visualizations, crafting of presentations for executive management, and a demonstrated record of strong leadership capability in a matrixed, multi-layered organization.

  • Bachelor's degree in Information Technology or related field.

  • Detailed, bank specific access administration knowledge in Windows, Midrange and Mainframe Platforms with emphasis on security and access controls.

  • Strong analytical skills/problem solving/conceptual thinking.

  • Ability to work with Technical and Non-Technical business owners.

  • Assist with internal efficiencies projects and development.

  • Deep experience with Identity and Access Management as a focus area within Information Security.

  • Ability to navigate and work effectively across a complex, geographically dispersed organization.

  • Ability to build consensus and cooperation as well as to influence, interact and negotiate with senior leadership in the organization.

  • Knowledge of change and project management methodologies and principles and the ability to integrate them into project design.

  • Broad knowledge of Information Security technologies, techniques and processes.

  • Familiarity with Six Sigma tools and vocabulary.

  • Experience leading complex technical projects, meeting target timelines, facilitating project meetings, authoring project documentation, issue resolution, and project resource identification.

  • Demonstrable ability to self-direct project outcomes, with minimal supervision to achieve program goals.

  • Excellent process design capability to improve overall efficiency, mitigate resource conflicts, and improve customer/client experience.

Desired Skills:

  • Extremely well organized; ensures projects stay on target, escalating and identifying roadblocks.

  • Proficient in Windows, Midrange and Mainframe access provisioning and security systems.

  • Must be able to identify, analyze and address problems to resolve issues whenever possible in way that minimizes negative impact and risk to the organization.

  • A broad knowledge of information security principles (e.g. access control).

  • Ability to work independently on initiatives with little oversight. Motivated and willing to learn.

  • Strong analytical skills/problem solving/conceptual thinking

  • Effective communication skills.

  • Must be comfortable in delivering messages across a wide spectrum of individuals having varying degrees of technical understanding.

  • Must have strong leadership skills and qualities which enable you to work with peers and various levels of management.

Enterprise Role Overview:

Directs and controls the activities of a significant part of information security staff in the development, implementation, communication, monitoring and maintenance of the information security policies and procedures. Responsible for the development and implementation of security standards, procedures, and guidelines. Participates in the establishment of the corporation's information security policy. Provides state of the art technical expertise and support to client and IT management and staff in risk assessment and the implementation of appropriate data security procedures and products. Oversees execution of security controls to prevent hackers from infiltrating company information or jeopardizing e-commerce programs. Researches attempted efforts to compromise security protocols. Helps set security policies to control access to systems and maintains the company_x0012_s firewall. Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information. Manages the reporting, investigation and resolution of data security incidents. Maintains contact with industry security standard setting groups, and an awareness of State and Federal legislation and regulations pertaining to information security. Provides general direction to and review of managers in various areas and/or operations. Erroneous decisions will have a serious impact on the overall success of functional, division, or company operations. Typically 7-10 years of experience, including people management responsibility.

Posting Date: 08/19/2019

Location: Chicago, IL, 135 S LA SALLE ST (IL4135), Addison, TX, 16001 N Dallas Pkwy (TX8044), Annandale, VA, BANK OF AMERICA MORTGAGE, 7619 LITTLE RIVER TPKE, - United States

Travel: Yes, 5% of the time

Full / Part-time: Full time

Hours Per Week: 40

Shift: 1st shift


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Information Security Architect

Bank Of America Corporation

Posted 4 days ago

VIEW JOBS 8/21/2019 12:00:00 AM 2019-11-19T00:00 Job Description: The Information Security Architect is responsible for helping define, drive, and deliver major components of Bank of America's security strategy, which includes world-class secure by design solutions. Knowledge and experience with information security controls, infrastructure and implementation techniques, and industry best practices are key components to this role. In this role, you will partner with the enterprise's senior leaders and subject matter experts to assist with defining the strategy and roadmaps for technology products, service standards, governance routines, security capabilities and controls, and service alternatives that mature the enterprise's security and reduce associated risks. The Information Security Architect will demonstrate extraordinary organizational and cross-functional communication skills to function as both a team member and individual contributor to drive successful outcomes and best practices across the Enterprise. Requirements: * Experience with both External and Insider Threat mitigation * Experience with mitigation strategies and techniques for attack surface reduction, containment, remediation, and resiliency * Understanding of associated services, protocols, firewalls, traffic management, routing, switching, data protection, infrastructure administration, infrastructure IAM controls, network access control, security capabilities, monitoring, and detection * Ability to research, analyze, and recommend new technologies and strategies. * Ability to research, analyze, and recommend improvements to existing processes and policies. * Ability to create advanced system architectures in multi-enclave environments consisting of physical, virtual, and cloud systems * Ability to identify exploits and countermeasures * Ability to identify capabilities that align with industry best practices, regulatory requirements, legal requirements, and common frameworks (e.g. Cyber Security Framework) * Identify key risk indicators and key performance indicators * Familiarity and experience with "common knowledge collections" (e.g. CSF, NIST, ISACA, SANS, ISC2) * Experience with Microsoft Office suite including Visio * Ability to navigate and work effectively across a complex, geographically dispersed organization * Exceptional communication and customer relationship skills * Ability to build consensus and cooperation as well as to influence, interact and negotiate with senior leadership in the organization * Knowledge of change and project management methodologies and principles and the ability to integrate them into project design * Broad knowledge of Information Security technologies, techniques, and processes * Experience leading complex technical projects, meeting target timelines, facilitating project meetings, authoring project documentation, issue resolution, and project resource identification * Demonstrable ability to self-direct project outcomes, with minimal supervision to achieve program goals * Excellent process design capability to improve overall efficiency, mitigate resource conflicts, and improve customer/client experience Preferred * Associated Networking Certifications * Associated Security Certifications (e.g. ISACA, SANs/GIAC) * Red Team/Blue Team/Purple Team experience exploiting and protecting physical, virtual, and cloud networks. Enterprise Role Overview Senior contributor, with accountability for researching, designing, and engineering information security (authentication, perimeter security, security & compliance tools, etc) & directory technology systems (software & hardware) and security policies / procedures. Utilizes in-depth technical / project knowledge and business requirements to design secure solutions to meet customer / client needs while protecting the Bank's assets. Serves as organization spokesperson on specialized projects. Acts as a prime consultant on large projects that affect the organizations long-term goals and objectives. Exercises independent judgment in methods, techniques, and evaluation criteria for obtaining results. Provides direction and guidance to others in the group. Works under minimal supervision, with general guidance from Technical or Senior Technical Manager. 10 plus years of IT experience. Posting Date: 08/20/2019 Location: Denver, CO, REPUBLIC PLAZA, 370 17TH ST, Addison, TX, 16001 N Dallas Pkwy (TX8044), Annandale, VA, ANNANDALE BC, 7400 LITTLE RIVER TPKE, - United States Travel: No Full / Part-time: Full time Hours Per Week: 40 Shift: 1st shift Bank Of America Corporation Addison TX

Global Information Security IAM Team Manager

Bank Of America Corporation