Information Security Officer - Operations Technology

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities, and shareholders every day.

Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.

Bank of America is committed to an in-office culture with specific requirements for office-based attendance and flexibility based on role-specific considerations.

At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!

The Business Information Security Officer (BISO) will be a key member of the BISO organization, working closely with Operations Technology CIOs/CTOs to understand the business and facilitate specialized, risk-based security discussions. This role ensures focus on the right risk priorities and acts as a day-to-day contact for guidance on information security policies and controls. Ultimately, the BISO will serve as a trusted advisor to stakeholders.

Responsibilities include:

1. Serving as a subject matter expert on information security for the line of business (LOB).
2. Providing guidance on security investments and their impact on information security.
3. Advising management on risk issues and supporting the bank's risk management and compliance programs.

The successful candidate will:

• Provide advisory and oversight for security-related changes within Operations Technology environments, collaborating with regional and global teams.
• Support risk teams and help develop security processes and solutions.
• Coordinate with the global BISO organization to communicate GIS requirements and initiatives effectively.
• Establish and maintain stakeholder networks.
• Coordinate remediation efforts for GIS issues and assist partners in resolving vulnerabilities.

• Experience in an information security operations, engineering, or consulting role with knowledge of security controls and processes.
• Strong interpersonal skills for effective communication, influence, and negotiation with senior stakeholders.

• Bank operations experience (helpful but not required).
• Experience in a financial organization with knowledge of application security controls and risks.
• Understanding of vulnerability management, monitoring solutions, and security risk assessment methodologies.
• Technical knowledge of technology infrastructure operations.
• Previous experience in a financial institution.
• Ability to manage work priorities independently.
• Excellent communication skills for delivering messages and resolving issues.
• Teamwork and leadership skills.

This job will be open for a minimum of seven days from the posting date.

Shift: 1st shift (United States)

Hours per week: 40

Pay range: $98,200 - $146,600 annually, based on experience and skills.

This role is eligible for discretionary incentives and benefits, including paid time off and other resources to support employee growth and community contribution.