IAM Information Security Controls Specialist
Denver
Bank of America
What would you like the power to do? For you and your family, your business and your community. At Bank of America, our purpose is to help make financial lives better through the power of every connection.Job Description:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.
One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.
Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.
Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!
This job is responsible for developing and supporting enterprise-wide information security policies, procedures, and standards. Key responsibilities include applying knowledge of laws, rules, regulations, and information security concepts (e.g., NIST, COBIT, ISO) to establish and maintain policies, validate alignment of processes and controls to requirements, and report on adherence to policy requirements. Job expectations include using data analytics and partnering with internal teams to verify policy compliance, identify gaps in coverage, and support remediation activities.
The Identity & Access Management (IAM) Info Security Controls Specialist will analyze, strengthen, and secure the company's IAM systems and overall security posture for Service Accounts Governance. This role focuses on collaboration across all Lines of Business, CIO teams, to continuously improve the organization's security adherence. The Control Specialist will analyze controls to identify and document inefficiencies, and design/prioritize improvement opportunities to enable swift adherence.
Responsibilities:
Primarily responsible includes assisting identity and access management leads and partners along with other technology SMEs to ensure that strategic and effective solutions are adopted across the bank.
Support leads to ensure that all identity and access management related IAM requirements are appropriately measured, reported, and governed.
Establish and maintain strong partnership with other Global Information Security (GIS) functions, Core Technology Infrastructure (CTI), Cyber Security Technology (CST), Third Party management, Global Compliance and Operations Risk (CGOR), internal audit, and regulatory agencies.
Clearly articulate rationale and methods behind proposed changes through informative materials for educating others.
Provide education and documentation to team members and technology partners regarding the proposed changes.
Engage senior management to provide factual, transparent, and timely reporting on existing and emerging identity and authentication risks.
Ensures Information Technology systems meet enterprise standards, adhere to applicable rules, laws, and regulations, and comply with appropriate treatment of risk.
Required Qualifications:
Knowledge and understanding of Identity and Access Management specific laws, rules, regulations, and Guidelines such as SOX, OCC, NIST, ISO/EC, FFIEC within the financial services sector.
Possession of CISSP certification would be an advantage.
Knowledge of identity and authentication methodologies, techniques, and technologies.
Knowledge of IAM IGA related tools which support, vaulting, integration with service management tool would be an advantage.
5+ years relevant hands-on experience in identity and authentication fields in a large and complex organization.
Security knowledge which covers core technology infrastructure (Account management, servers, databases, etc.) identity management and application security practice.
Experience with Linux, Windows, Cloud Identity, Access Management, design and architecture of authentication services or Identity Store.
Proficient in articulating facts and data-driven plans and ability to partner with stakeholders to implement intended solutions to drive risk reductions and adherence to relevant Identity and Authentication requirement within IAM standards.
Strong attention to detail and advanced analytical skills.
Excellent communication and presentation skills.
Excellent organizational skills and be able to effectively prioritize multiple tasks.
Hands on experience and involvement in large and complex projects.
Proficient in data management which includes strong data analytical capabilities with advanced understanding of the collection and management of metadata.
This job will be open and accepting applications for a minimum of seven days from the date it was posted
Shift:
1st shift (United States of America)Hours Per Week:
40* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Analytics Application security CISSP Cloud COBIT Compliance Data Analytics FFIEC Governance IAM Linux NIST SOX Windows
Perks/benefits: Career development
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Security Operations Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Cyber Security Architect jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information Security Architect jobs
- Open Information System Security Officer jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open SOC-related jobs
- Open Analytics-related jobs
- Open Network security-related jobs
- Open CISA-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open TS/SCI-related jobs