Bank Of America Info Security Controls Specialist B 

India, Tamil Nadu, Chennai 

396950667

Process Overview

Global Exception Management (GEM) team, is responsible for the governance of exceptions based on required approvals including tracking, reviewing, expiring exceptions, and revoking based on GIS standards and policies. Also, the team responsible to test/evaluate web browsers and their functionality and provide inputs to the product SME’s

Job Description*

Includes performing due diligence of policy exception requests to ensure appropriate approvals and justifications are provided, as well as provisioning and de-provisioning of the exceptions. Also includes testing websites using the bank’s Secured browser and sharing results with process SME’s. Knowledge of Information Security Policies and Cyber security tools and technologies including experience in testing features, functionalities and components of these technologies is recommended.

Responsibilities*

• Evaluate categorization of different websites and their behaviors, including available functionality, and provide inputs/results to SME’s
• Work in geographically spread team that works on a 12 x 7 rotational shifts model
• Provision and de-provision of exceptions after performing due diligence
• Categorization and un-categorization of URL’s in coordination with vendors
• Collaborate with teams within and outside GIS to support incidents and handle escalations
• Create reports based on the KPI’s/metrics defined for the process

Requirements*

Education* -BE/BTECH/MCA/MSC (IT) equivalent (Any Technical Degree)

Certifications If Any* -Comp TIA Security+ or any equivalent (Preferred, but not mandatory)

- 5 -10 years of experience

Foundational Skills*

• Knowledge of the architecture and functionality of different web browsers
• Experience in troubleshooting browser and access related issues for end users
• Knowledge of categorization of websites, features and their behaviors
• Understanding of pre-prod/prod environments, deployment of rules/policies,
• Understanding of Data Loss Prevention (DLP) and malware security controls
• Must be flexible to work in any shifts covering 12/7 support model
• Understanding of exceptions management, and access provisioning/deprovisioning
• Knowledge of cyber threats, vulnerability, and risk management
• Experience working in ticketing tools, such as Remedy or Jira, and ability to run queries in Splunk for troubleshooting proxy/access issues
• Continuously learn and adapt to new tools, processes and technologies.
• Ability to work effectively with business owners and provide support
• Excellent communication skills and the ability to articulate the accomplishments

Desired skills*

• Knowledge of browser design, deployment and maintenance of configurations across enterprise
• Integrating browser security with identity & access management, endpoint protection, and DLP
• Develop and enforce browsing policies aligned with compliance frameworks like NIST, GDPR etc.
• Monitor browser activity for anomalies, threats, and policy violations
• Knowledge of automation tools such as Python, Para soft etc.
• Network / Systems / Information Security Administration

Work Timings* -6:30 AM to 3:30 PM or 2:30 PM - 11:30 PM IST - Rotational Shift

- Chennai, Hyderabad