Bank Of America Business Information Security Officer/BISO 

United States, Illinois, Chicago 

545062440

Scale/Scope:

• Contribute to the ongoing information security initiatives and improvements development, implementation and maintenance of information security for the line of business (LOB)

• Possess strong / experienced application development and/or application security background; with solid knowledge of SDLC from design, testing, deployment to post production and the different risk elements associated with each step.

• Serves as an Information Security subject matter expert and liaison with GIS teams and participates in the development, implementation and maintenance of information security programs for both the line of business (LOB) and the enterprise

• Provides guidance and advocacy regarding the prioritization of LOB investments that impact information security

• Advises LOB management on risk issues related to information security and recommends actions in support of the bank's wider risk management and compliance programs

• Monitors information security trends internal and external to the bank and keeps LOB leadership informed about information security-related issues

• Manages information security control alignment reporting to LOB Leadership

Risk Management:

• Drives GIS/LOB risk deliverables

• Collaborates with risk partners on info security critical priorities

• Participates in senior LOB specific Risk Management & Business Continuity Routines

• Identifies and measures global information security (GIS) controls on most critical business processes or channels

Leadership/Strategy:

• Ability to build strong Partner relationships with peer technology groups and supported LOB

• Supports the triage process with the client and helps them understand the GIS support structure

• Drives required risk culture and partnership with peer technology teams and supported LOB

• Participates in key CIO operating routines to drive information security risk strategy

• Has a deep understanding of security across application, bank managed and externally hosted cloud computing platforms

• Has a solid grasp of security in big data and other instructed large data structures

Required Skills:

• 2-5 years of experience in technology and 5 + years in information security

• Must display subject matter experience in application security, vulnerability testing, system testing, and/or Agile lifecycle management

• Strong LOB knowledge/experience for the type of business they are aligned to (e.g..CSBB/GBM)

• 1-2 years of risk management experience or direct participation in risk management processes, including application risk classification and application control assessments.

• Experience giving presentations and superb communication skills

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

1st shift (United States of America)