Information Security Officer - Operations Technology

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities, and shareholders every day.

Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.

Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.

At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!

The Business Information Security Officer (BISO) will be a key member of the Business Information Security Officers (BISO) organization, working closely with the Operations Technology CIOs/CTOs to develop a deep understanding of the business, enabling risk-based security discussions. This role will ensure a focus on the right risk priorities and serve as a day-to-day contact providing guidance on information security policies, controls, and topics, ultimately becoming a trusted advisor to stakeholders.

Responsibilities include:

1. Serving as a subject matter expert on information security development, implementation, and maintenance for the line of business (LOB).
2. Providing guidance on LOB investments and their impact on information security.
3. Advising LOB management on risk issues related to information security and recommending actions in support of wider risk management and compliance programs.

The successful candidate will:

1. Provide advisory and oversight for security-related changes within the Operations Technology environment, collaborating with regional security consultants and global response teams.
2. Support risk teams in their activities, helping develop processes and solutions.
3. Coordinate with the global BISO organization to ensure effective communication, discussion, and tracking of GIS requirements and initiatives.
4. Establish and maintain a network of stakeholders and partners.
5. Conduct routine liaison and coordination across risk partners and technology groups to remediate GIS issues on the vulnerability dashboard.
6. Drive remediation of GIS issues and assist partners in resolving issues aligned with GIS standards.

Required Skills:

• Experience in an information security operational, engineering, or consulting role with knowledge of security controls and processes within systems and networks.
• Strong interpersonal skills to communicate, influence, and negotiate with senior stakeholders.

Desirable Skills:

• Bank Operations experience (helpful but not required).
• Experience in a mid to senior-level role within a technology and financial organization, with knowledge of Application Security controls and risks.
• Understanding of vulnerability management, monitoring solutions, and practices.
• Experience with formal security risk assessment methodologies.
• Technical understanding of Technology Infrastructure operations.
• Previous experience in a financial institution.
• Ability to manage work priorities independently.
• Excellent communication skills for delivering messages and resolving issues.
• Ability to work as part of a team.
• Strong oral and written briefing skills for management reports.

This job will be open and accepting applications for at least seven days from the posting date.

Shift: 1st shift (United States of America)

Hours Per Week: 40

Pay Transparency Details:

Locations include Denver, CO; Washington, DC; Chicago, IL; Jersey City, NJ. The pay range is $98,200 to $146,600 annually, with offers based on experience, education, and skills. The role is eligible for an annual discretionary performance-based award and benefits, including paid time off and other resources to support employee well-being and community impact.