Information Security Controls Specialist

Posted:
10/9/2024, 5:00:00 PM

Location(s):
Chicago, Illinois, United States ⋅ Washington, District of Columbia, United States ⋅ Denver, Colorado, United States ⋅ Illinois, United States ⋅ Colorado, United States ⋅ District of Columbia, United States

Experience Level(s):
Senior

Field(s):
IT & Security

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.

One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.

Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.

Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!

Description:

This role is responsible for leading the development and socialization of enterprise information security policies, working with subject matter experts (SMEs) across various teams, including Global Information Security, Global Technology, Global Compliance & Operational Risk and Legal.

Key responsibilities include:

  • Lead policy development sessions with SMEs to discuss, debate and formulate enterprise level and technology specific information security policy requirements across various platforms, products and technologies

  • Use sound judgment to ensure risks are mitigated through policy

  • Participate/lead sessions with technology partners to assess the potential impacts of policy changes

  • Present policy changes in various socialization and governance forums

  • Lead various projects such as those related to policy process improvements, operational excellence initiatives, or resolution of audit/regulatory issues

  • Prepare reports and present to management

Skills required:

  • Highly effective written and verbal communication skills

  • Strong collaboration skills with the ability to facilitate conversations involving technical and sometimes complex information security topics and drive SMEs to a consensus

  • Strong critical thinking/analytical skills/problem solving/conceptual thinking

  • Strong analysis and fact-based decision-making

  • Strong organization skills with the ability to prioritize requests and workload accordingly (fast paced work environment with multiple deliverables with short term due dates)

  • Ability to work independently on initiatives with little oversight and to work with associates at all levels of the organization

  • Microsoft Office proficient (Word, Excel, Outlook, PowerPoint, Visio) – Advanced Word skills preferred


Skills desired:

  • Previous experience in Information Technology and/or Information Security

  • Knowledge of Information Security policies and controls

  • Policies, Procedures, and Guidelines

  • Business Process Analysis

  • Issue Management

  • Controls Management

  • Innovative Thinking

  • Stakeholder Management

  • Business Process Analysis

This job will be open and accepting applications for a minimum of seven days from the date it was posted

This job is responsible for developing and supporting enterprise-wide information security policies, procedures, and standards. Key responsibilities include applying knowledge of laws, rules, regulations, and information security concepts (e.g., NIST, COBIT, ISO) to establish and maintain policies, validate alignment of processes and controls to requirements, and report on adherence to policy requirements. Job expectations include using data analytics and partnering with internal teams to verify policy compliance, identify gaps in coverage, and support remediation activities.

Shift:

1st shift (United States of America)

Hours Per Week: 

40

Pay Transparency details

US - CO - Denver - 1144 15th St - Denver Gis (CO9926), US - DC - Washington - 1800 K St NW - 1800 K Street NW (DC1842)

Pay and benefits information

Pay range

$76,500.00 - $136,400.00 annualized salary, offers to be determined based on experience, education and skill set.

Discretionary incentive eligible

This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.

Benefits

This role is currently benefits eligible. We provide industry-leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.

Bank of America

Website: https://bankofamerica.com/

Headquarter Location: Charlotte, North Carolina, United States

Employee Count: 10001+

Year Founded: 2007

Last Funding Type: Seed

Industries: Asset Management ⋅ Banking ⋅ Finance ⋅ Financial Services ⋅ FinTech