As an experienced professional, provide advice to client management with regard to moderately complex security issues. Assists in the review, development, testing and implementation of security plans, products and control techniques. Coordinates the reporting data security incidents. Provides technical support to the client and management and staff in risk assessments and implementation of appropriate data security procedures and products. Monitors existing and proposed security standard setting groups. State and Federal legislation and regulations. Identifies and escalates changes that will affect information security policy, standards and procedures. Executes security controls to prevent hackers from infiltrating company information or jeopardizing e-commerce programs. Researches attempted efforts to compromise security protocols. Administers security policies to control access to systems and maintains the company firewall. Works on complex problems where analysis of situations or data requires an in-depth evaluation of various factors. Exercises judgment within broadly defined practices and policies in selecting methods, techniques, and evaluation criterion for obtaining results. Work leadership may be provided by assigning work and resolving problems. Typically 5-7 years of IT experience.
Job Description and Responsibilities:
Are you interested in working with the best information security team in the world? Bank of America is hiring top talent to join our team.
The Cyber Security Defense (CSD) function within Global Information Security is responsible for all aspects of the threat intelligence and monitoring, application and network security, and insider threat. In addition, the CSD team drives out the enterprise-wide cyber exercise program.
The Access Management Operations (AMO) function within CSD is responsible for enabling simplification of our access processes, standardizing solutions and risk reduction across the enterprise, as well as collaborating with internal partners to encourage adoption of the bank's cybersecurity standards by external stakeholders.
Candidate will be responsible for understanding, following, and implementing Enterprise Access standards, baseline, security procedures and policies. Managerial leadership position, responsible for supporting the daily application access management operations of the Access Services team. Lead the program to define requirements and drive implementation of automate application provisioning. While ensuring the stable continuance of ongoing legacy operations, lead the process redesign and measurement for provisioning access to applications. The successful candidate will possess a minimum of 5-10 years' experience in leading operational functions, reporting, data analysis, and project management in large-scale environments. A risk oriented perspective is required, along with the ability to support BAU processes and maintenance of Enterprise Access platforms. Self-starter and highly analytical thinker required. Ability to work well in teams as well as with business partners to support and enhance Access Service experience. Utilizes technical and business knowledge to support secure, risk-based practices, exercising judgment within broadly defined practices and policies. Results oriented, business focused, and successful at interfacing across multiple organizational units, at various levels. Self-starter who is comfortable working as part of a highly-leveraged team across geographic locations.
Knowledge/experience/exposure with information security topics, including the design, development, testing, implementation or governance of information security practices and solutions.
Candidates that can demonstrate a track record (or proficient knowledge of) access management / risk identification and mitigation /project management skills will be considered.
Expert skills with Microsoft Office automation products for daily and ad-hoc reporting (e.g. Excel, PowerPoint, and Access), and visualization and reporting platforms such as Tableau, Spotfire, and Crystal Reports.
Impeccable communication skills, able to translate data into visualizations, crafting of presentations for executive management, and a demonstrated record of strong leadership capability in a matrixed, multi-layered organization.
Bachelor's degree in Information Technology or related field.
Detailed, bank specific access administration knowledge in Windows, Midrange and Mainframe Platforms with emphasis on security and access controls.
Strong analytical skills/problem solving/conceptual thinking.
Ability to work with Technical and Non-Technical business owners.
Assist with internal efficiencies projects and development.
Deep experience with Identity and Access Management as a focus area within Information Security.
Ability to navigate and work effectively across a complex, geographically dispersed organization.
Ability to build consensus and cooperation as well as to influence, interact and negotiate with senior leadership in the organization.
Knowledge of change and project management methodologies and principles and the ability to integrate them into project design.
Broad knowledge of Information Security technologies, techniques and processes.
Familiarity with Six Sigma tools and vocabulary.
Experience leading complex technical projects, meeting target timelines, facilitating project meetings, authoring project documentation, issue resolution, and project resource identification.
Demonstrable ability to self-direct project outcomes, with minimal supervision to achieve program goals.
Excellent process design capability to improve overall efficiency, mitigate resource conflicts, and improve customer/client experience.
Extremely well organized; ensures projects stay on target, escalating and identifying roadblocks.
Proficient in Windows, Midrange and Mainframe access provisioning and security systems.
Must be able to identify, analyze and address problems to resolve issues whenever possible in way that minimizes negative impact and risk to the organization.
A broad knowledge of information security principles (e.g. access control).
Ability to work independently on initiatives with little oversight. Motivated and willing to learn.
Strong analytical skills/problem solving/conceptual thinking
Effective communication skills.
Must be comfortable in delivering messages across a wide spectrum of individuals having varying degrees of technical understanding.
Must have strong leadership skills and qualities which enable you to work with peers and various levels of management.
Enterprise Role Overview:
Directs and controls the activities of a significant part of information security staff in the development, implementation, communication, monitoring and maintenance of the information security policies and procedures. Responsible for the development and implementation of security standards, procedures, and guidelines. Participates in the establishment of the corporation's information security policy. Provides state of the art technical expertise and support to client and IT management and staff in risk assessment and the implementation of appropriate data security procedures and products. Oversees execution of security controls to prevent hackers from infiltrating company information or jeopardizing e-commerce programs. Researches attempted efforts to compromise security protocols. Helps set security policies to control access to systems and maintains the company_x0012_s firewall. Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information. Manages the reporting, investigation and resolution of data security incidents. Maintains contact with industry security standard setting groups, and an awareness of State and Federal legislation and regulations pertaining to information security. Provides general direction to and review of managers in various areas and/or operations. Erroneous decisions will have a serious impact on the overall success of functional, division, or company operations. Typically 7-10 years of experience, including people management responsibility.
Posting Date: 08/19/2019
Location: Chicago, IL, 135 S LA SALLE ST (IL4135), Addison, TX, 16001 N Dallas Pkwy (TX8044), Annandale, VA, BANK OF AMERICA MORTGAGE, 7619 LITTLE RIVER TPKE, - United States
Travel: Yes, 5% of the time
Full / Part-time: Full time
Hours Per Week: 40
Shift: 1st shift
Bank Of America Corporation