Bank Of America BISO Business Information Security Consultant 

United States, Colorado, Denver 

675279602

Scale/Scope:

• Contribute to the ongoing information security initiatives and improvements development, implementation and maintenance of information security for the line of business (LOB)

• Possess strong / experienced application development and/or application security background; with solid knowledge of SDLC from design, testing, deployment to post production and the different risk elements associated with each step.

• Serves as an Information Security subject matter expert and liaison with GIS teams and participates in the development, implementation and maintenance of information security programs for both the line of business (LOB) and the enterprise

• Provides guidance and advocacy regarding the prioritization of LOB investments that impact information security

• Advises LOB management on risk issues related to information security and recommends actions in support of the bank's wider risk management and compliance programs

• Monitors information security trends internal and external to the bank and keeps LOB leadership informed about information security-related issues

• Manages information security control alignment reporting to LOB Leadership

Risk Management:

• Drives GIS/LOB risk deliverables

• Collaborates with risk partners on info security critical priorities

• Participates in senior LOB specific Risk Management & Business Continuity Routines

• Identifies and measures global information security (GIS) controls on most critical business processes or channels

Leadership/Strategy:

• Ability to build strong Partner relationships with peer technology groups and supported LOB

• Supports the triage process with the client and helps them understand the GIS support structure

• Drives required risk culture and partnership with peer technology teams and supported LOB

• Participates in key CIO operating routines to drive information security risk strategy

• Has a deep understanding of security across application, bank managed and externally hosted cloud computing platforms

• Has a solid grasp of security in big data and other instructed large data structures

Required Skills:

• 2-5 years of experience in technology and 5 + years in information security

• Must display subject matter experience in application security, vulnerability testing, system testing, and/or Agile lifecycle management

• Strong LOB knowledge/experience for the type of business they are aligned to (e.g..CSBB/GBM)

• 1-2 years of risk management experience or direct participation in risk management processes, including application risk classification and application control assessments.

• Experience giving presentations and superb communication skills

Desired Skills:

• Bachelor's and/or Master’s degree in Computer Science, Information Technology or related field

Enterprise Job Description: This job is responsible for supporting Line of Business leaders by balancing the needs of the business while ensuring information security risk is appropriately identified and managed to drive uncompromising cyber security protection. Key responsibilities include applying an understanding of the business and engaging with technology partners, business partners, and Global Information Security teams to provide blended security and business expertise to ensure appropriate management of information security risks.

1st shift (United States of America)