IAM Information Security Controls Specialist Chicago, Illinois;Washington, District of Columbia **Job Description:** At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day. Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us! Global Information Security (GIS) is responsible for protecting bank information systems, confidential and proprietary data, and customer information. GIS develops the bank’s Information Security strategy and policy, manages the Information Security program, identifies and addresses vulnerabilities and operates a global security operations center that monitors, detects and responds to cybersecurity incidents. Within GIS, Identity and Access Management (IAM) is a security discipline that enables the right individuals to access the right resources at the right times and in the right context. IAM addresses the mission-critical need to ensure appropriate access to the resources across increasingly heterogeneous technology environments, and to meet increasingly rigorous compliance requirements. **What you can expect in Identity & Access Management:** In today’s highly connected world, managing and securing the identity of users is essential to the safety and success of our workforce. The Identity & Access Management (IAM) team works within Global Information Services (GIS) and in close participation with all other LOB teams as well as second and third line of defense partners. This role is highly visible and requires frequent interaction with senior management and key stakeholders. Are you passionate about the latest IT technologies and thrive in a fast-paced international environment? In a typical day, you may work with other team members on the book of work, operational concerns, or risk items. You will help overcome obstacles and maintain good relationships with key stakeholders across The Bank to ensure timely and effective delivery. We offer you the opportunity to collaborate with passionate competent people, experts in their field. We thrive on being challenged and everything we do is anchored in managing risk for The Bank. This role is responsible for supporting Identity and Access Management (IAM) break/fix issues impacting end user and service functionality. You will regularly collaborate with experts and the user community in and out of our team, both in country and in other regions, so excellent communication skills are very important. The role will also involve discussion with employees and senior leadership. You will utilize in-depth subject matter expertise and business requirements to deliver against risk and performance metrics. Staying current with common and emerging threats related to access, you will have an opportunity to proactively develop, implement, and influence controls and policy advancements. You will partner with key stakeholders from line of business organizations to respond rapidly to security events and escalations that pose risk to the organization. **Responsibilities will include but not limited to:** + Actively troubleshoot access issues, verify policy compliance approach to resolving incident tickets + Communicate effectively with end users and business partners. + Build and monitor alerting and dashboards. + Identify areas for further process automation, simplification, and improvement. + Provide status updates for executives and stakeholders in non-technical terms encompassing risk, impact, containment, remediation, etc. + Risk management experience and mindset. + Comprehensively document analysis, investigative activities, actions, etc. + Ability to work non-standard hours, to include occasional on-call time during nights, weekends, and holidays. + Apply knowledge of the Identity and Access Management industry policies and standards including laws, rules, regulations, and information security concepts related to access provisioning, validate alignment of processes and controls to requirements, and report on gaps related to adherence to policy requirements. + Lead complex technical projects to successful delivery, includes facilitating project meetings, authoring project documentation and driving adoption. **Required Qualifications:** + Minimum of 3 years’ experience within the operational side of the Information Technology, Security industry and Identity and Access Management + Ability to analyze data and evaluate relevance to a specific issue or incident under investigation. + Ability to handle multiple competing priorities in a fast-paced environment; ability to be decisive and take action without causing an undue delay. + Ability to exercise independent judgment when responding to alerts. + Ability to communicate effectively across all levels of the organization, to both technical and non-technical audiences. + Familiarity with identity management standards, social engineering TTPs, and the incident response lifecycle. + Knowledgeable of current access based exploits in traditional and cloud environments, for both human and non-human accounts. + Proven experience presenting findings via written reports and orally to key stakeholders in clear and concise language. + Ability to work in a strong team-orientated environment that is geographically dispersed with a sense of urgency and resilience. + Critical thinking - must be able to think outside the box and develop solutions to accomplish seemingly impossible tasks while remaining risk and objective focused. + A strong working knowledge of security threat vectors, networking, network security and application security. + Advanced problem solving skills. + Demonstrates the capability of working in a team environment and collaborating with overseas partners. + Ability to work independently. + Strong leadership skills and qualities which enable you to work with peers and various levels of management. + Strong analytical skills/problem solving/conceptual thinking. **Desired Qualifications:** + Broad technical knowledge of IAM lifecycle, ecosystem and enterprise scale products. + Experience in the deployment of multi-factor authentication, role and attribute-based access control, and other strong authentication methods and solutions. + Hands-on experience with IAM products and particularly on Ping suite of products (Ping Access, Ping Federate and PingID) and federation concepts. + Strong technical knowledge of authentication and authorization protocols: OIDC, SAML, XACML, LDAP, OAuth, OpenID. + 3-5 years’ experience withcloud platforms (AWS, Azure, GCP etc.) **Shift:** 1st shift (United States of America) **Hours Per Week:** 40 Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity and affirmative action, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates. To view the "EEO is the Law" poster, CLICK HERE (https://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf) . To view the "EEO is the Law" Supplement, CLICK HERE (https://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP\_EEO\_Supplement\_Final\_JRF\_QA\_508c.pdf) . View the LA County Fair Chance Ordinance (https://dcba.lacounty.gov/wp-content/uploads/2024/08/FCOE-Official-Notice-Eng-Final-8.30.2024.pdf) . Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy (“Policy”) establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment. To view Bank of America’s Drug-free Workplace and Alcohol Policy, CLICK HERE . This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.