Sr. Information Security Architect Denver, Colorado;Washington, District of Columbia; Chicago, Illinois **Job Description:** At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us! The Senior Information Security Architect will be a member of the Business Information Security Officer's (BISO) - Secure Solutions Design team and work closely with the line of business technical and project teams to deliver strategic projects. The role participates and guides the development of a system architectures and conducts security and business information flow studies. Provides integrated systems reviews and recommends new or different technologies that will enhance current system security and support overall corporate and business goals. Conduct system architecture security studies of new and existing IT systems to ensure systems operate within Bank of America’s security policies. Recommends design components to secure the system and align with Global Information Security policies and risk tolerance. Interfaces with vendors, consultants, and senior technologists to support the business indicatives and goals. Serves as a fully seasoned/proficient technical security resource; accountability is for technical and security knowledge and capabilities as a team member or as an individual contributor. Will not have direct reports but will influence and direct activities of a team related to special initiatives or operations. Typically 7 or more years of Information Security and IT experience Required Skills: - Expertise in creation and review of technical diagrams of infrastructure and data flow diagram using Visio. - Expertise in creation of threat models using STRIDE methodology using Microsoft Threat Modeling Tool or comparable tools. - Experience with various enterprise technology domains such as cloud (Azure, AWS, GCP), networking, cryptography, identity and access management, and virtualization and containers. - Capable of creating documentation to articulate the results of the system architecture security studies. - Ability to educate teams on Global Information Security policies and the risks of non-compliance. - Strong communications, writing, and presentation skills Desired Skills: - Industry recognized Information Security certifications – CISSP, CISM, CRISC, CISA, CCSP, CCSK or any other well recognized vendor specific certifications - Experience in using other similar threat modeling tools and methodologies. This job will be open and accepting applications for a minimum of seven days from the date it was posted. **Shift:** 1st shift (United States of America) **Hours Per Week:** 40 Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity and affirmative action, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates. To view the "Know your Rights" poster, CLICK HERE (https://u.go/0As7EN) . View the LA County Fair Chance Ordinance (https://dcba.lacounty.gov/wp-content/uploads/2024/08/FCOE-Official-Notice-Eng-Final-8.30.2024.pdf) . Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy (“Policy”) establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment. To view Bank of America’s Drug-free Workplace and Alcohol Policy, CLICK HERE . This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.