Job Description

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.

Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.

Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.

At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!

The role of the Business Information Security Officer (BISO) - GIS Policy Exception Governance Team Lead is to oversee the Governance of the GIS Policy Exception Program. The Program is responsible for providing governance and oversight of Policy Exception Types aligned to the Information Security – Enterprise Policy and Standards including the development, socialization, and implementation of GIS policy Exception Types. This role is to ensure Exception Types are properly approved and recertified on an annual basis. It includes recertification preparation, hosting working group meetings with key stakeholders including Compliance partners, and hosting a quarterly Governance routine.  

Required Skills:
•    4-8 years + of experience in cyber security or a technology-related field with a deep understanding of Information Security policies and standards.
•    Experience and hands on knowledge with Data Loss Prevention and Malware security controls
•    Evaluating and understanding threats/risks posed by having additional or elevated risk combinations of access, and by bypassing securing controls. 
•    Experience leading Governance routines and other projects, meeting target timelines, facilitating meetings, authoring project documentation, issue resolution, and project resource identification.
•    Demonstrable ability to self-direct project outcomes, with minimal supervision to achieve program goals.
•    Excellent process design capability to improve overall efficiency, mitigate resource conflicts, and improve customer/client experience.
•    Exceptional presentation and communication skills.
•    Ability to build consensus and cooperation as well as to influence, interact and negotiate with senior leadership in the organization.
•    Experience in implementation of information security strategy, including compliance with industry best practices and regulatory requirements.
•    Excellent verbal and written communication skills. Ability to communicate with business leaders, users and tech-savvy stakeholders. 
•    Ability to take ownership of an initiative/issue through completion.
•    Ability to work in a collaborative environment.
•    Ability to work with minimal supervision and deliver on complex initiatives in a high paced, evolving environment.
•    Optional Certifications: CISSP (ISC2), CISA, CRISC, CISM (ISACA), CCIE (Cisco), TOGAF, CCTA (McAfee), CCFP (ISC2).

Desired Skills:
•    Bachelor's degree in Information Technology, information security or related field
•    Detailed, bank specific access administration knowledge in Risk assessments and GRC (Governance, Risk, and Compliance) with emphasis on security processes and controls
•    Strong analytical skills/problem solving/conceptual thinking
•    Ability to work with technical and non-technical business owners 
•    Assist with internal efficiencies projects and development

Shift:

Hours Per Week: 

Job Tags

Similar Jobs