דרושים ב-Bank Of America ב-Singapore, Singapore

Job Description:

Job Description:
The Third Party Cyber Security Assessor will conduct information security and business continuity assessments of third parties providing services to Bank of America. The assessor will examine a third party's program to determine if they meet the Bank’s requirements, identifying control gaps that may expose the Bank to risks and subsequently work with the third party on all remediation activities.

There will be opportunities to be involved in projects to improve processes & transform the assessment program. This will enable you to leverage and grow your leadership skills as you'll be expose to various internal stakeholders and industry partners.

Responsibilities:

• Manage and execute assessments of third parties providing services to Bank of America.
• Evaluate design and effectiveness of controls implemented by third parties providing services to Bank of America
• Drive remediation of issues identified through the assessments and any subsequent risk conversations with the third parties and other internal stakeholders.
• Interface with external third parties and internal line of business stakeholders to provide consultation on information security topics and build strong working relationships with these parties.
• Partner with regional and global GIS teammates to collaborate on opportunities and to identify, analyze, and resolve complex problems or security gaps.
• Contribute to the development and transformation of the Third Party Cyber Assurance program

Required Skills:

• Previous information technology/security audit/assessment experience preferred.
• Ability to leverage attention to detail and analytical skills.
• Ability to multi-task and work both independently as well as part of an assessment team
• Ability to plan, execute and document assessment and remediation activities following established processes and procedures.
• Must be comfortable in delivering messages across a wide spectrum of individuals having varying degrees of technical understanding.
• Minimally, CISSP and/or CISA certifications are required as well as five to eight years of experience in information security or business continuity.
• Technical skills include the domains of information security and business continuity including:
  • Information Security Controls (Cloud Security, Infrastructure Security, Access Management, Physical Security, Application Security, etc.),
  • IT Compliance, SOX Compliance
  • Change Management
  • Enterprise Risk Management
  • Solid grasp of NIST, PCI, ISO, SDLC, COBIT, and ITIL standards.
• Ability to speak Mandarin and write in Simplified and Traditional Chinese due to interactions with 3rd parties in the Greater China region.
• Must be able to travel up to 25% of the time.
• Experience in Cloud technologies, OSINT and threat modeling will be advantageous.

An opportunity has opened up to support Global Market Operations within the APAC Funding & Cash Management team. The position will require you to work closely with treasury dealers, securities settlements and other internal departments to manage day-to-day requirements. These include meeting daily cash cut-offs for payments, trade settlements and balance management of accounts while collaborating with the internal teams and stakeholders. Funding & Cash Management is a very fast paced, dynamic business and will require someone that is able to prioritize work load, meet deadlines and respond well under pressure.
• Process payments and funding in an accurate and timely manner
• Provide accurate and timely calculation of the bank’s daily obligations across multiple entities
• Investigate discrepancies to align funding projections figures across different business units
• Investigate and analyze discrepancies between cash and ledger.
• Support treasury on desk and stakeholders on various queries and projects relating to funding and payments
• Any other ad hoc duties/projects as required and assigned
• A Bachelor's degree or equivalent
• Proactive, confident and detail focused. Ability to coordinate with Treasury and Operational teams independently.
• Excellent communications skills.
• Ability to work under pressure in a team environment and demonstrate experience meeting multiple daily cut-off's.
• Ability to liaise with all levels of the firm and people with different experiences and backgrounds
• Self-motivated and able to work unsupervised. Candidate will be able to manage own time and know when to escalate
• Strong team player able to work well independently and collaboratively with peers and stakeholders.
• Meticulous attention to detail.
• Strong analytical skills

Other Qualifications:

• Strives to bring new thoughts and ideas to teams in order to drive innovation and unique solutions
• Excels in working among diverse viewpoints to determine the best path forward
• Experience in connecting with a diverse set of clients to understand future business needs - is a continuous learner
• Commitment to challenging the status quo and promoting positive change.
• Participate in and drive collaborative efforts to advance tools, technology, and ways of working to better serve an evolving client base
• Believes in value of diversity so we can reflect, connect and meet the diverse needs of our clients and employees around the world

• Quantitative, analytical, proactive, able to work under pressure while adhering to tight deadlines.
• Good understanding of the life cycle of a trade and related interactions between internal stakeholders.
• Commercial mindset to partner and help evolve the business.
• Confident and articulate communicator.
• Strong team player able to work well independently and collaboratively with peers and stakeholders.
• Control and risk focused. Able to initiate solutions to remediate problems.
• Excellent communication and interpersonal skills.
• Meticulous attention to detail.
• 5+ years of investment banking experience, preferably in a trade support or settlements function.
• Ownership of day-to-day securities lending transactional processing for APAC markets.
• Trade bookings, amendments and exceptions processing.
• Position management and asset optimization.
• Management of counterparty exposure.
• Fails and inventory management.
• Supporting business growth by working closely with front office, technology and global operations teams.
• Support a risk focused culture. Anticipate risks and escalate appropriately.
• Foster an environment which constantly questions process inefficiencies and implements appropriate improvements.

Job Description:

Job Description:

This job is responsible for being the first point of contact for requests or service failure incidents and maintaining stability for a portfolio of applications. Key responsibilities include documenting or modifying knowledge, performing investigations, identifying incidents, mitigating impacts and engaging in triages, and working with technology teams to identify and resolve issues. Job expectations include following well defined Standard Operating Procedures (SOPs) and partnering with experts to improve service levels by proposing changes to monitoring, alerting, and configuration.

Responsibilities:

• Monitors and supports application components and infrastructure critical to the business, such as relevant technologies and dashboards, responds to alerts regarding production incidents, and resolves issues prior to customer service interruption
• Fulfills requests from users, operations, auditors, and regulators within service level agreements and drives operational excellence through process improvement and monitoring development efforts related to supported technologies
• Onboards monitoring tools and applications in access system(s) of record to research potential production incidents, meet user requirements and service changes, and identify and implement automation opportunities in partnership with architects and engineers
• Communicates status updates and technical details, such as infrastructure, application and client impact, and component points of failure to management, and provides reporting on environment and incident status in operational meetings
• Performs environment routing and cycling, implements splash pages, and liaises with development teams to design and configure auto provisioning, straight thru revocation (STR), and straight thru processing (STP)
• Manages aged revocation monitoring to identify and fix defects in applications and systems of record
• Prepares technical documentation and develops procedures for trouble shooting incidents to identify production failure scenarios, vulnerabilities, and improvement opportunities requiring escalations
• Exercise judgment within broadly defined practices and policies in selecting methods, techniques and evaluation criterion and taking appropriate actions.
• Applies an understanding of the end-to-end infrastructure and how components relate to each other. When triaging an issue to help resolve incidents.
• Applies extensive knowledge of the Mainframe/ iSeries infrastructure and business applications to minimize disruption of services, the delay of deliverables or the recovery of failing components.
• Consistently exhibits self-motivated ability to organize or actively participate in projects that improve the overall ability of the organization to provide effective and efficient services.

Required Skills:

• Has 10+ years of experience with IBM z/OS, workloads and operations.
• Understands the sensitive and critical nature of data processing and service level agreements and be able to proactively contribute to organizational goals and delivery targets.
• Shows the ability to respond to alerts regarding potential production incidents and consistently taking appropriate action.
• Ability to manage multiple priorities in fast-paced environment with flawless execution, working collaboratively with cross-functional, cross-cultural teams.
• Associate is viewed as a subject matter expert in either Mainframe or iSeries Operations functions. While understanding both platforms.
• Exceptional problem-solving and analytical skills, excellent communication and interpersonal skills.
• Exhibits a team-oriented mindset while taking independent action when appropriate. Strong attention to detail and multitasking prowess.
• Perform analysis using monitoring tools and reports to proactively identify and address potential issues prior to production impact. Is advanced in Interpreting monitors and dashboards to identify anomalies in our environments.
• Actively trains junior and mid-level talent and mentors individuals to help with continued growth.
• Represent the team on triage calls. Can lead the call and send management updates if needed.
• Knowledge with ticketing tools such as BMC Remedy or ServiceNow.
• Candidate must be able to work on Sundays to support our weekly Mainframe System Modification Window .

Desired Skills:

Is advanced in:

• Technical experiences include operator level knowledge of JES2 and MVS commands sets and console operations.
• The ability to navigate and provide operator level control over CICS and IMS.
• Knowledge of standard mainframe tools such as: MAINVIEW, Omegamon, Tivoli, SA/Zos, CAO, OPS/MVS, TMON, NETVIEW, TBSM, and HMC
• Strong knowledge of IPL and POR procedures is required.

This role requires candidate to come with aptitude for problem solving, attention to detail, a risk and control mindset, good communication skill and is able to build good working relationship with various internal and external stakeholders.

• Processing of instruction for Corporate Action events in an accurate, timely and consistent manner, in accordance with departmental procedures and to the agreed service level.
• Managing internal and external stakeholders on Corporate Action issues
• Adhering to documented procedures, control guidelines and compliance framework
• Attending to reconciliation breaks in accounts on a daily basis
• Ensuring that all queries are attended to and investigated promptly
• Supporting change by assisting in devising and implementing improved processes
• Participating in project initiatives and taking up ad hoc tasks as required
• Managing operational risk associated within the processes
• Tertiary education with a good academic track record
• At least 2 years of experience in Corporate Actions
• Strong knowledge of Corporate/Investment Banking within the Prime Brokerage space is preferred
o Prime brokerage are services that banks offer to financial institutions to hedge funds and similar clients – e.g. processing of Coporate actions – ranges from cash management, securities lending (loaning shares of stock, commodities) and etc.
• Ability to work in a fast paced environment
• Ability to prioritize heavy workloads and work efficiently in dynamic environment to meet deadlines
• An independent and proactive worker with strong communication skills

Responsibilities:

The Identity Defense Specialist will support design efforts to build out new processes, controls, and supporting governance related to implementation of human and non-human account monitoring to protect the Bank. You will utilize in-depth technical knowledge and business requirements to help implement scalable solutions, inclusive of monitoring, alerting, and escalation frameworks focused on core account protections. Leveraging your knowledge of both common and emerging threats related to account take-over, you will have an opportunity to proactively develop, implement, and influence controls and policy within the digital identity domain. You will partner with leaders from line of business organizations to triage security events and report on impacting security incidents.

The Analyst will regularly collaborate with experts in and out of our team, both in country and in other regions, so excellent communication skills are very important. The role will also involve discussion with employees as part of alert analysis and disposition. If you are seeking a demanding role within Global Information Security (GIS) and have the required skills, this will be a great opportunity for you. Typically, applicants should have 3+ years of cybersecurity or engineering experience. Responsibilities include, but are not limited to:

• Actively investigate alerts related to potentially anomalous behavior/activity.
• Confidently and professionally interview/question users to determine or confirm root cause.
• Communicate effectively with response and business partners.
• Build and monitor Splunk alerting and dashboards.
• Identify areas for further process automation, simplification, and improvement.
• Provide status updates for executives and stakeholders in non-technical terms encompassing risk, impact, containment, remediation, etc.
• Risk management.
• Comprehensively document analysis, investigative activities, actions, etc.

Required Skills:

• 3+ years of experience with cloud information security related activities.
• 3+ years of experience in an operations focused cloud information security role.
• Experience conducting analysis/investigation and containment of potential data breaches or cyber security incidents.
• Ability to analyze data and evaluate relevance to a specific incident under investigation.
• Ability to handle multiple competing priorities in a fast-paced environment; ability to be decisive and take action without causing an undue delay.
• Ability to exercise independent judgment when responding to alerts.
• Ability to communicate effectively across all levels of the organization, to both technical and non-technical audiences.
• Familiarity with security vulnerabilities exploits and hacker techniques.
• Familiarity identity management standards, social engineering TTPs, and the incident response lifecycle.
• Familiarity with Splunk, and the ability to build queries, alerts, dashboards, etc.
• Knowledgeable of current authentication-based exploits.
• Proven experience presenting findings via written reports and orally to key stakeholders in clear and concise language.
• Supportive and can work well as part of a team as well as independently.
• Can remain calm under pressure.
• Ability to work in a strong team-orientated environment with a sense of urgency and resilience.
• Critical thinking - must be able to think outside the box and develop solutions to accomplish seemingly impossible tasks while remaining risk and objective focused.

Desired Skills:

Desired Skills/Qualifications/Certifications:

Cloud+; AZ-900 (Azure Fundamentals), AZ-500 (Azure Security Engineer Associate), SC-900 (Security, Compliance and Identity Fundamentals); AWS Certified Security Specialty 2024

Job Description:

Job Description:

It is also the perfect path to a greater understanding of the activities that form part of a Service & Fulfillment and Operations organization, learning the flow all the way from client implementation and onboarding, opening new accounts, to a successful Service experience.

This role offers huge learning opportunities and opens a path into potential new avenues within the Global Banking Operations and the wider organization.

Responsibilities:

• Perform & strengthen Inline controls (ILQA) basis the ILQA script.

• Share QA automation opportunities.

• Complete assigned requests within strict deadlines independently.

• Perform extensive data analysis and deep-dive review to build test script and management reporting.

• Ability to listen and read native languages used in Japan, Korea to review client documentations (preferable).

• Attention to detail, accuracy, and completeness of testing to identify process gaps, exceptions, and process improvement opportunities.

• Support sustainability test for any new and existing audit issues.

• Able to develop comprehensive test scripts and provide training to support new test of controls requirements.

• Actively identify and early escalation of control deficiencies and gaps to discuss with line management, and initiate control recommendations.

• Proactively review internal LOB procedures, test scripts, results communication and reporting to ensure adherence to internal LOB guidelines.

• Exposed to multiple line of businesses (LOBs) to develop understanding of Bank end-to-end processes and business acumen.

• Maintain up-to-date working knowledge of the bank’s client access products/services, payment and trade capabilities, internal operations and local practices.

Skills:

• Minimum 3 years in Risk management and Quality Assurance experience.

• Knowledge of Treasury, Trade, Account opening or similar Banking Operations processes is required.

• Proven Experience in process automation with minimally VBA Macro skills is required.

• Capability to perform extensive data analysis and transform to management reporting.

• Bachelor’s Degree or Equivalent experience.

• Excellent written and verbal presentation and communication skills.

• Excellent project management skills.