Information Security Global Controls Assurance and Validation Manager

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.

One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.

The Global Information Security organization (GIS) at Bank of America protects bank information systems, confidential and proprietary data, and customer information.

The Global Controls Assurance & Validation Manager is responsible for validating GIS technical-control efficacy against known threats. This includes delivery of today’s existing program, while identifying new techniques and/or tool to enhance and broaden outcomes for the bank. This role is responsible for managing a team of 8 to accomplish these goals and manage platform operations. GCAV Lead builds and maintains relationships with Global Information Security defensive control process owners to ensure appropriate validation of security controls. This role generally requires 10+ years of related experience.

Key Responsibilities:

• Develop and manage Global Controls Assurance & Validation team
• Identifying and delivering enhancements to the existing program and/or tool
• Partner with GIS defensive control process owners to ensure the processes are adequately validated
• Acting as a SME, providing guidance and knowledge to address identified control enhancements

Required Skills

• Experience with breach simulation or other similar tools
• Experience implementing cyber security tools working alongside a product management team
• Knowledge of information security defensive controls and interconnective nature of controls.
• Ability to work independently with little oversight managing a team and multiple efforts simultaneously.
• Must be comfortable in delivering messages across a wide spectrum of individuals having varying degrees of technical understanding.
• Must have strong leadership skills and qualities which enable you to work with peers and various levels of management.

Desired Skills

• Bachelor's degree in Information Technology or related field
• Experience in the remediation of Information Security risks/vulnerabilities
• Experience with defensive information security controls
• Ability to work with Technical and Non-Technical persons
• One or more of the following certifications (desirable): CISSP, CJEH, OSCP or qualified work experience

Shift:

1st shift (United States of America)

Hours Per Week: 

40

Pay Transparency details

US - CO - Denver - 1144 15th St - Denver Gis (CO9926), US - DC - Washington - 1800 K St NW - 1800 K Street NW (DC1842)

Pay and benefits information

Pay range

$152,200.00 - $220,000.00 annualized salary, offers to be determined based on experience, education and skill set.

Discretionary incentive eligible

This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.

Benefits

This role is currently benefits eligible. We provide industry-leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.