Cyber Technology Compliance and Operational Risk Officer

Job Description :

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection.

Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.

One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We're devoted to being a diverse and inclusive workplace for everyone.

We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.

Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.

Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!

Job Description :

This job is responsible for assisting the Compliance and Operational Risk officer team to execute second line of defense compliance and operational risk oversight for a Front Line Unit, Control Function, and / or Third Parties.

Key responsibilities include ensuring requirements of the Global Compliance Enterprise Policy, the Operational Risk Management Enterprise Policy (collectively "the Policies"), the Compliance and Operational Risk Management Program and Standard Operating Procedures are implemented and identifying, challenging, escalating, and mitigating risks in a timely manner.

Responsibilities :

• Assists in assessing risks, associated controls and their effectiveness, while driving compliance with applicable laws, rules, and regulations, adhering to policies, and developing reporting and documentation
• Engages in activities to provide support to the Compliance and Operational Risk teams in order to provide independent compliance and operational risk oversight of Front Line Unit or Control Function performance and any related third party / vendor relationships in alignment with the Global Compliance - Enterprise Policy, the Operational Risk Management - Enterprise Policy (collectively the Policies) and the Compliance and Operational Risk Management Program and Standard Operating Procedures
• Assists in identifying and escalating problems or issues that arise and drives actions to address the root causes that lead to compliance risk issues and / or operational risk losses
• Assists in the development of independent risk management reporting for respective area(s) of coverage as input into management routines
• Assists in responding to regulatory inquiries and other audits and examinations
• Monitors the regulatory environment to identify regulatory changes applicable to area(s) of coverage and maintains a comprehensive regulatory inventory

Managerial Responsibilities :

This position may also have responsibilities for managing associates. At Bank of America, all managers at this level demonstrate the following responsibilities, in addition to those specific to the role, listed above.

• Diversity & Inclusion Champion : Creates an inclusive team where members are treated fairly and respectfully.
• Manager of Process & Data : Demonstrates and expects process knowledge, data driven decisions, simplicity and continuous improvement.
• Enterprise Advocate & Communicator : Delivers clear and concise messages that motivate, convey the "why" and connects contributions to business results.
• Risk Manager : Leads and encourages the identification, escalation and resolution of potential risks.
• People Manager & Coach : Knows and develops team members through coaching and feedback.
• Financial Steward : Manages expenses and demonstrates an owner's mindset.
• Enterprise Talent Leader : Recruits, on-boards and develops talent, and supports talent mobility for career growth.
• Driver of Business Outcomes : Delivers results through effective team management, structure, and routines.

Skills :

• Monitoring, Surveillance, and Testing
• Process Management
• Regulatory Compliance
• Reporting
• Risk Management
• Attention to Detail
• Critical Thinking
• Interpret Relevant Laws, Rules, and Regulations
• Issue Management
• Policies, Procedures, and Guidelines Management
• Active Listening
• Advisory
• Business Process Analysis
• Written Communications

Job Description Summary

Network Security Subject Matter Expert (SME). Responsible for oversight of technical feedback and advice to Front Line Business Unit (FLU) network teams on Cyber Security Risks related or associated to the Bank's network infrastructure.

This includes performing L2 technical assessments of the proposed network architectures and / or solutions in cloud, with regulatory focus to address the bank's MRA concerns.

The SME will support the review of network compliance gaps to ensure timely remediation.

In addition to strong network security skills, to be successful in this role, you need :

• Keen eye for details.
• Ability to work independently, or with minimal supervision.
• To be able to collaborate with our Risk partners and stakeholders
• Active listening and excellent communication skills.
• Comfortable with presenting materials
• Integrating multiple disciplines (e.g., business / systems process analysis, data analysis, data informatics, risk management, regulatory requirements, and technology) for strategic and operational planning.

Two or more of the following skill areas is desired :

• Experience with External and Insider Threat as focus areas within Information Security
• Experience with the operation and management of network devices and security controls; switches, routers, firewalls, load balancers, proxy devices, wireless access points and controllers, network access controls, security policies.
• Good understanding of fundamental networking concepts and protocols including TCP / IP, HTTP / HTTPS, SSL, DNS, DHCP, basic routing / switching, load balancing (LTM / GTM), SOCKS, 802.

1X, AD, authentication protocols such as LDAP, NTLM or Kerberos, etc.

• Experience working on enterprise architectures including LAN, WAN, MAN, WLAN, B2B, C2B, DMZ, enclaves, remote access, corporate campus, satellite offices, data centres, and cloud deployments.
• Experience developing and / or documenting mitigation strategies and techniques.
• Understanding of configuration management, orchestration, and automation tools, such as Terraform, Ansible, Puppet, Chef, etc.

In addition, knowledge and / or experience in other areas of cyber security is of value.

Shift :

1st shift (United States of America)

Hours Per Week :