Identity and Access Management Information Security Senior Controls Specialist

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection.

Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.

One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. Were devoted to being a diverse and inclusive workplace for everyone.

We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.

Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.

Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!

The Global Information Security (GIS) Identity & Access Management (IAM) Info Security Senior Controls Specialist must possess a deep understanding of IAM concepts, relevant knowledge of IAM business, and strong technical expertise.

To be successful, the proactive candidate will be conducting analysis of IAM systems related to the governance of Service Accounts to identify process improvements, proactively recommending, and implementing strategies to enhance governance, streamline processes, close gaps, and ensure optimal reporting and monitoring is in place.

They will work closely with dev teams, security subject matter experts, and other key partners (CIOs, Risk, Compliance, end-users) to integrate governance throughout the Service Account lifecycle that demonstrates adherence to external and internal regulations.

Responsibilities :

Develops / challenges enterprise-wide information security policies, procedures, and standards related to Service Account Governance with supporting industry leading information security reporting, risk scoring, and governance to ensure adherence to requirements.

Manages internal and external stakeholder relationships including Line of Business, CIO delegates, Core Technology Infrastructure, Cyber Security Technology, Third Party management, Global Compliance and Operations Risk (CGOR), internal audit, and regulatory agencies.

Analyzes existing Information Technology systems and processes to identify areas of vulnerability, provide mitigation tactics, and design / implement improved systems and processes to ensure Information Technology systems meet enterprise standards, adhere to applicable rules, laws, and regulations, and comply with appropriate treatment of risk.

Proficient in articulating facts from data-driven plans to partners and stakeholders ensuring adoption of intended solutions to drive risk reductions and adherence that support relevant Identity and Authentication requirements.

Create a backlog of tactical / strategic Service Account Governance initiatives that will reduce risk and increase adoptability.

Through risk ranking, and agreement on priorities, drive initiatives to completion.

Through recurring engagements, clearly articulate rationale, and methods behind proposed changes through informative materials that can educate from end-user to CIOs.

Engage senior management to provide factual, transparent, and timely reporting on existing and emerging Service Account risks.

Required Qualifications :

10+ years of hands-on IAM experience in a large and complex organization with a deep understanding of IAM concepts, relevant knowledge of IAM business, and strong technical expertise.

Experience with the following : BeyondTrust, CyberArk, Thycotic, Centrify, Hashicorp, or other Service Account lifecycle management solutions would be an advantage.

Knowledge and understanding of Identity and Access Management specific laws, rules, regulations, and Guidelines such as SOX, OCC, NIST, ISO / EC, FFIEC within the financial services sector would be an advantage.

Possession of CISSP certification would be an advantage.

Knowledge of identity and authentication methodologies, techniques, and technologies.

Security knowledge which covers core technology infrastructure (Account management, servers, databases, etc.) identity management and application security practice.

Desired Qualifications :

Experience with Linux, Windows, Cloud Identity, Access Management, design and architecture of authentication services or Identity Store.

Active Directory, LDAP, Azure AD experience, Mainframe, Mid-range

Experience with programming languages, for example as Java, Python, SQL, and PowerShell.

Strong attention to detail and advanced analytical skills.

Excellent communication and presentation skills.

Excellent organizational skills and be able to effectively prioritize multiple tasks.

Hands on experience and involvement in large and complex projects.

Proficient in data management which includes strong data analytical capabilities with advanced understanding of the collection and management of metadata.

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

Shift :

1st shift (United States of America)

Hours Per Week :