at Bank of America in Chicago, Illinois, United States
Job Description
Application Control Specialist – Global Information Security
Chicago, Illinois
Job Description:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.
One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.
Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.
Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!
Position Summary
Come join an exciting team within Global Information Security (GIS). Cyber Security Technology (CST) is a globally distributed team responsible for cyber security innovation and architecture, engineering, solutions and capabilities development, cyber resiliency, access management engineering, data strategy, deployment maintenance, technical project management and information technology security control support.
This role is responsible for completing and tracking compliance deliverables to ensure applications adhere to applicable policies and standards as well as local laws, rules and regulations (LRR). Key responsibilities include completing administrative and non-technical tasks related to compliance deliverables and infrastructure requests for the applications they support. They support vendors, development teams and technology managers to ensure technical security, risk, and other compliance activities are completed on-time and per requirements. These individuals partner closely with control functions, risk management and Global Information Security (GIS) and are familiar with the applicable policies, standards, LRRs, contacts and procedures so that the compliance deliverables are completed effectively and efficiently.
Primary Level of Engagement:
Works with multiple teams and managers at the program level, under the supervision from a more senior domain expert or manager.
Primary Interactions:
· Product Owner
· Feature Lead
· Development Team
· Technology Manager
· Senior Technology Manager
· Enterprise Control Partners
Key Responsibilities:
+ Ensure that risk, security, and other compliance deliverables are completed on time and per requirements for the applications they support.
+ Complete administrative and non-technical tasks related to compliance deliverables (for example, access reviews, assessments, questionnaires, procedural requirements, and so on).
+ Assist with audit exams and risk assessments for the applications.
+ Track and support the technical security and risk activities performed by the development teams (for example, remediation of non-permitted technology or security vulnerabilities, technical recovery planning, disaster recovery exercises, and so on).
+ Maintain data about the application in AppHQ and other systems of record.
+ Work closely with vendors for vendor applications to ensure the application meets bank requirements.
+ Assist with ad hoc inquiries and questions about the application.
+ Interface with technology infrastructure teams for infrastructure requirements like requests for additional storage.
+ Works with appropriate teams to ensure alerts, monitoring, dashboards, and processes are established appropriately for new projects and initiatives.
Qualifications:
+ 7+ yrs of professional work experience
+ Experience with the delivery of complex technology projects or solutions
+ Experience working with a technology delivery team
+ Experience with application security, vulnerability remediation, threat modeling
+ Experience partnering with production support
+ Experience working with or in TI to deliver hardware solutions
+ Highly effective relationship and communication skills
+ Ability to work independently, manage and prioritize multiple projects/requests.
Desired skills:
+ Good understanding and experience of OpenID Connect (OIDC), OAuth, SAML and other authentication protocols and standards
+ Experience handling security Audits, working with internal and external auditors
+ Experience in hands-on development and/or technical support
+ Knowledge of and experience with enterprise policies, programs, procedures, and systems
+ Experience with DevOps, SecDevOps
Shift:
1st shift (United States of America)
Hours Per Week:
40
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity and affirmative action, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
To view the “EEO is the Law” poster, CLICK HERE (https://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf) .
To view the “EEO is the Law” Supplement, CLICK HERE (https://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP\EEO\Supplement\Final\JRF\QA\508c.pdf) .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy (“Policy”) establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
To view Bank of America’s Drug-free workplace and alcohol policy, CLICK HERE .
To view full details and how to apply, please login or create a Job Seeker account