Job Description:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.
One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.
Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.
Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!
Description:
This job is responsible for developing and supporting enterprise-wide information security policies, procedures, and standards. Key responsibilities include applying knowledge of laws, rules, regulations, and information security concepts (e.g., NIST, COBIT, ISO) to establish and maintain policies, validate alignment of processes and controls to requirements, and report on adherence to policy requirements. Job expectations include using data analytics and partnering with internal teams to verify policy compliance, identify gaps in coverage, and support remediation activities.
Responsibilities:
Supports development of enterprise-wide information security policies, procedures, and standards and industry leading information security reporting, risk scoring, and governance standards
Works with internal and external stakeholders including Line of Business delegates and regulators to mitigate and remediate information security risks
Ensures Information Technology systems meet enterprise standards, adhere to applicable rules, laws, and regulations, and comply with appropriate treatment of risk
Identifies information security gaps and remediation strategies
Analyzes existing Information Technology systems and processes to identify areas of vulnerability, provide mitigation tactics, and design and implement improved systems and processes
Skills:
Customer and Client Focus
Interpret Relevant Laws, Rules, and Regulations
Policies, Procedures, and Guidelines
Problem Solving
Quality Assurance
Business Acumen
Controls Management
Innovative Thinking
Process Management
Stakeholder Management
Business Process Analysis
Data Governance
Data Privacy and Protection
Data and Trend Analysis
Risk Analytics
Shift:
1st shift (United States of America)Hours Per Week:
40