Bank Of America Malware Governance Quality Assurance Control Owner 

United States, Colorado, Denver 

872353696

This will be a key role in leading and advancing the efforts to defend against malware threats. Reporting directly to the Malware Defense Global Leader, responsible for supporting the strategic direction of the team from overseeing global technology governance and oversight initiatives for core malware defenses in the enterprise, managing quality assurance processes, supporting operational metric requirements, supporting control improvement with operational integration across 14 critical malware controls, and driving initiatives to enhance our cybersecurity posture. This role will engage with the Senior Leadership Team, risk partners, and oversight partners as required.

Responsibilities:

• Quality Assurance: Build, support, and sustain critical quality assurance practices across all Global Malware Defense operational teams.

• Technology Risk Management: Work closely with the Malware Defense Control Owners and Malware Defense Leadership to assess technology risks related to malware threats. Contribute to the development and implementation of risk mitigation strategies and controls.

• Incident Response Support: Play a role in incident response efforts related to malware incidents. Coordinate with incident response teams, ensuring effective and timely resolution of security incidents. Participate in post-incident reviews and implement improvements to incident response processes.

• Collaboration and Communication: Foster strong collaboration with cross-functional teams, including other GIS organizations and technology partners. Communicate effectively with internal stakeholders, providing updates on the team's activities, progress, and key performance indicators.

• Security Controls Implementation and Improvement: Support the design and implementation of robust security controls to prevent, detect, and respond to malware threats. Contribute to the evaluation and deployment of advanced security technologies thought the entire Malware Defense Control Stack.

• Training and Development: Promote a culture of continuous learning and development within the team. Provide guidance, mentorship, and support to team members, helping them build the skills and knowledge necessary for effective in their roles.

Required Skills:

• Strong direct experience of analyzing and responding to malware threats in an incident response team

• Thorough documentation of findings and actions taken

• Provide management with timely, comprehensive, and accurate updates in both written and verbal form

• Knowledge of current malware tactics and trends

• GCIH, GREM, GCFA or CISSP is desired, but not required

• Able to work independently on tasks, but also work well within a team environment