דרושים Application Remediation Governance Consultant ב-Bank Of America ב-United States, Chicago

Job Description:

The Application Remediation Governance Consultant will contribute to reduction of technology risk in the bank by driving down the time taken to remediate identified application vulnerabilities, working with application managers and risk partners to resolve vulnerabilities in a time frame aligned to the Bank’s risk appetite.

The candidate will attend report out calls following a security assessment of a particular application aligned with an assigned 4 dot hierarchy. Candidate will track the identified vulnerabilities in the system of record and work with the application or vendor manager until resolution. Update status of vulnerabilities as required in the system of record and will aid the application and/or vendor manager with any technical or process related queries during resolution of the identified vulnerabilities.

Required Qualifications:

• Knowledge of the Continuous Monitoring Tool, as well as ROCK and Cloudera Data Visualizer.
• Excellent skills in data management and manipulation, creating pivot tables, etc.
• Critical thinker and logical problem solver. Ability to understand a problem, explore solutions and present them with pros, cons and other considerations. Possesses an Operational Excellence mindset.
• Excellent communication, both written and verbal, and excellent interpersonal skills.
• Strong organizational and time management skills, as well as the ability to be a self-starter and work independently.
• Experience assembling impactful reporting packages
• Demonstrates intellectual curiosity.
• 2+ years of general experience in information security.

Skills:

• Controls Management

• Cyber Security

• Data Governance

• Information Systems Management

• Risk Management

• Architecture

• Customer and Client Focus

• Executive Presence

• Threat Analysis

• Vendor Management

• Advisory

• Business Acumen

• Business Intelligence

• Cloud Solutions

• Technology System Assessment

Job Description:

Job Description:

The Critical Application Monitoring Control Specialist role will execute against the Cyber Security Application Monitoring strategy by building detection use case parameters for critical applications. To succeed in this role, you should have enterprise level experience translating business requirements into technical requirements, worked with Splunk and/or other logging technologies, and be able to discuss Cyber Security detections with Application Managers.

You should also possess strong written and verbal communication skills including ability to communicate clearly and concisely to various levels, up to and including executive level management, and explain the need for key controls to technical and non-technical resources.

Technical skills required include but not limited to:
• Enterprise Business Analysis
• Information Security Controls
• Enterprise Risk Management
• Application Security
• Splunk and/or other logging technologies
• Ability to read, understand and interpret application logs

Required Qualifications:
• Minimum of 5 years of enterprise IT or Cybersecurity (preferred) experience
• Previous information technology/application oversight/logging and monitoring experience
• Ability to work both independently as well as part of a team
• Ability to plan, execute and document assessment activities following established processes and procedures

Skills:

• Customer and Client Focus

• Interpret Relevant Laws, Rules, and Regulations

• Policies, Procedures, and Guidelines

• Problem Solving

• Quality Assurance

• Business Acumen

• Controls Management

• Innovative Thinking

• Process Management

• Stakeholder Management

• Business Process Analysis

• Data Governance

• Data Privacy and Protection

• Data and Trend Analysis

• Risk Analytics

Job Description:

Job Description:

This role is responsible for completing and tracking compliance deliverables to ensure applications adhere to applicable policies and standards as well as local laws, rules and regulations (LRR). Key responsibilities include completing administrative and non-technical tasks related to compliance deliverables and infrastructure requests for the applications they support. They support vendors, development teams and technology managers to ensure technical security, risk, and other compliance activities are completed on-time and per requirements. These individuals partner closely with control functions, risk management and Global Information Security (GIS) and are familiar with the applicable policies, standards, LRRs, contacts and procedures so that the compliance deliverables are completed effectively and efficiently.

Key Responsibilities:

• Ensure that risk, security, and other compliance deliverables are completed on time and per requirements for the applications they support.
• Complete administrative and non-technical tasks related to compliance deliverables (for example: access reviews, assessments, questionnaires, procedural requirements, etc.).
• Assist with audit exams and risk assessments for the applications.
• Track and support the technical security and risk activities performed by the development teams (for example: remediation of non-permitted technology or security vulnerabilities, technical recovery planning, disaster recovery exercises, etc.).
• Maintain data about the application in AppHQ and other systems of record.
• Work closely with vendors for vendor applications to ensure the application meets bank requirements.
• Assist with ad hoc inquiries and questions about the application.
• Interface with technology infrastructure teams for infrastructure requirements like requests for additional storage.

Required Qualifications

• 2+ years of experience working in regulated environment.
• Basic understanding of technology, Intellectually curious and eager to learn.
• Exceptional communication and interpersonal skills, with the ability to understand complex technical concepts.
• Strong analytical and problem-solving skills to make informed decisions, prioritize effectively.
• Detail-oriented mindset, time management and strategic planning to successfully meet aggressive deadlines.
• The ability to handle stressful situations.

Skills:

• Collaboration
• Risk Management
• Analytical Thinking
• Data Management
• Solution Delivery Process
• Agile Practices
• Automation
• Result Orientation
• Solution Design
• Test Engineering
• Application Development
• Architecture

Our approach to benefits and total rewards considers our team members’ whole selves and what may be needed to thrive in and outside work. That's why our benefits are designed to help you and your family boost your health, protect your financial security and give you peace of mind. Our benefits include the following (some may vary based on role, location or hours):

• Healthcare (medical, dental, vision)

• Basic term and optional term life insurance

• Short-term and long-term disability

• Pregnancy disability and parental leave

• 401(k) and employer-funded retirement plan

• Paid vacation (from two to five weeks depending on salary grade and tenure)

• Up to 11 paid holiday opportunities

• Adoption assistance

• Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law

U.S. Bank participates in the U.S. Department of Homeland Security E-Verify program in all facilities located in the United States and certain U.S. territories. The E-Verify program is an Internet-based employment eligibility verification system operated by the U.S. Citizenship and Immigration Services. Learn more about the .

U.S. Bank will consider qualified applicants with arrest or conviction records for employment. U.S. Bank conducts background checks consistent with applicable local laws, including the Los Angeles County Fair Chance Ordinance and the California Fair Chance Act as well as the San Francisco Fair Chance Ordinance. U.S. Bank is subject to, and conducts background checks consistent with the requirements of Section 19 of the Federal Deposit Insurance Act (FDIA). In addition, certain positions may also be subject to the requirements of FINRA, NMLS registration, Reg Z, Reg G, OFAC, the NFA, the FCPA, the Bank Secrecy Act, the SAFE Act, and/or federal guidelines applicable to an agreement, such as those related to ethics, safety, or operational procedures.

Our approach to benefits and total rewards considers our team members’ whole selves and what may be needed to thrive in and outside work. That's why our benefits are designed to help you and your family boost your health, protect your financial security and give you peace of mind. Our benefits include the following (some may vary based on role, location or hours):

• Healthcare (medical, dental, vision)

• Basic term and optional term life insurance

• Short-term and long-term disability

• Pregnancy disability and parental leave

• 401(k) and employer-funded retirement plan

• Paid vacation (from two to five weeks depending on salary grade and tenure)

• Up to 11 paid holiday opportunities

• Adoption assistance

• Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law

U.S. Bank participates in the U.S. Department of Homeland Security E-Verify program in all facilities located in the United States and certain U.S. territories. The E-Verify program is an Internet-based employment eligibility verification system operated by the U.S. Citizenship and Immigration Services. Learn more about the .

U.S. Bank will consider qualified applicants with arrest or conviction records for employment. U.S. Bank conducts background checks consistent with applicable local laws, including the Los Angeles County Fair Chance Ordinance and the California Fair Chance Act as well as the San Francisco Fair Chance Ordinance. U.S. Bank is subject to, and conducts background checks consistent with the requirements of Section 19 of the Federal Deposit Insurance Act (FDIA). In addition, certain positions may also be subject to the requirements of FINRA, NMLS registration, Reg Z, Reg G, OFAC, the NFA, the FCPA, the Bank Secrecy Act, the SAFE Act, and/or federal guidelines applicable to an agreement, such as those related to ethics, safety, or operational procedures.

Job Description:

• This job will be open and accepting applications for a minimum of seven days from the date it was posted.