Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.

Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!

Position Summary:

Global Information Security (GIS) is responsible for protecting bank information systems, confidential and proprietary data, and customer information. GIS develops the bank's Information Security strategy and policy, manages the Information Security program, identifies and addresses vulnerabilities and operates a global security operations center that monitors, detects and responds to cybersecurity incidents.

Role Description:

The Cyber Security Assurance (CSA) Authentication Risk Assessment assessor role is responsible for performing Cyber Security Authentication Risk Assessments in order to identify weaknesses in the design of Bank authentication controls when compared to industry frameworks and best practices. This role assesses the implemented design of applications (also known as platforms) that perform authentication for employees and customers. The assessment uses as a pre-planned test script, occurs on an annual cadence, and relies on the assessor's analytic and technical skills to assess cyber security risk. More specifically, it involves evidence gathering, review, and dialogue/debate with application teams to validate whether specific control objectives in the test script are successfully met.

Responsibilities include:

• Documenting how control objectives are met
• Identifying, explaining, and documenting gaps in control objectives
• Raising gaps to the Authentication Controls Owner
• Compiling the status of all identified gaps at the assessment's conclusion
• Remediation tracking/review of identified gaps
• Communicating with CSA leaders on progress updates

Required Qualifications:

• Expert level experience and very detailed technical knowledge in authentication and security protocols
• Thorough understanding of IAM technologies and solutions
• Strong discipline regarding enforcement of access management core principles
• Highly organized with ability to plan and direct routines to achieve business outcomes
• Understanding of how technology interacts with other technology
• Interacting extensively with internal or external stakeholders to identify, analyze, and resolve security gaps
• Setting expectations with CSA leaders on timing and level of effort

This job will be open and accepting applications for a minimum of seven days from the date it was posted

Shift:
1st shift (United States of America)

Hours Per Week:
40

Pay Transparency details

US - CO - Denver - 1144 15th St (CO9926), US - DC - Washington - 1800 K St NW - 1800 K Street NW (DC1842)

Pay and benefits information

Pay range

$76,500.00 - $136,400.00 annualized salary, offers to be determined based on experience, education and skill set.

Discretionary incentive eligible

This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.

Benefits

This role is currently benefits eligible. We provide industry-leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.