Job Description:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.
One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.
As a Security Integration Engineer, you will maintain responsibility for the security engagement and integration activities for company mergers and acquisitions. This role will oversee core activities associated with the end-to-end process of an acquisition with dedicated focus on security-specific evaluations, assessments, scoping and program management, and integration to Bank of America security programs. To perform day to day activities will require continuous engagement with key security, legal and compliance, and senior level personnel. This person will maintain and govern the Mergers and Acquisition Framework. Additionally, this person will oversee and provide support for Divestitures.
Scale/Scope
• Support Global Information Security and Stakeholders by balancing the needs of the business while ensuring information security risks are appropriately identified and managed to drive uncompromising cyber security protection for company mergers and acquisitions.
• Serve as an Information Security subject matter expert to advise on security engagement and integration activities.
• Advise LOB management on risk issues related to information security technology and recommend actions in support of the bank's wider risk management and compliance programs.
• Foster relationships with internal and external partners to access technologies from a cybersecurity purview.
• Collaborate with development, QA, and operations teams to ensure security best practices are integrated at every stage of the merger and acquisition.
• Ability to build strong Partner relationships with peer technology groups and supported LOB.
• Support the triage process with the client and help them understand the GIS support structure and requirements.
• Ensure compliance with policies and laws.
Risk Management
• Identify and mitigate potential security, privacy and ethical concerns associated with risks related to the merger and acquisition.
• Communicate security risks and strategies to senior management and other stakeholders.
• Collaborates with risk partners on info security critical priorities to drive GIS/LOB risk deliverables.
• Participate in senior LOB specific Risk Management & Business Continuity Routines.
• Identify and measure global information security (GIS) controls on most critical business processes or channels.
• Drives required risk culture and partnership with peer technology teams and supported LOB.
• Participates in key CIO operating routines to drive information security risk strategy.
Required Skills
• 7+ years exp in Information Security with a focus on security assessments, architecture, threat hunting, and cloud
• Program and project management skills
• Prior experience within the security space for M&A
• Experience with financial sizing (i.e. cost, technology assets, assumptions)
• Experience in large financial institution technology consulting or direct, with a focus on regulations
• Experience with third party cyber security
• CISSP required
This job will be open and accepting applications for a minimum of seven days from the date it was posted.
Shift:
1st shift (United States of America)Hours Per Week:
40