IAM Information Security Controls Specialist

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.

Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting our teammates physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.

At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!

Global Information Security (GIS) is responsible for protecting bank information systems, confidential and proprietary data, and customer information. GIS develops the banks Information Security strategy and policy, manages the Information Security program, identifies and addresses vulnerabilities and operates a global security operations center that monitors, detects and responds to cybersecurity incidents. Within GIS, Identity and Access Management (IAM) is a security discipline that enables the right individuals to access the right resources at the right times and in the right context. IAM addresses the mission-critical need to ensure appropriate access to the resources across increasingly heterogeneous technology environments, and to meet increasingly rigorous compliance requirements.

What you can expect in Identity & Access Management:

In todays highly connected world, managing and securing the identity of users is essential to the safety and success of our workforce. The Identity & Access Management (IAM) team works within Global Information Services (GIS) and in close participation with all other LOB teams as well as second and third line of defense partners. This role is highly visible and requires frequent interaction with senior management and key stakeholders. Are you passionate about the latest IT technologies and thrive in a fast-paced international environment? In a typical day, you may work with other team members on the book of work, operational concerns, or risk items. You will help overcome obstacles and maintain good relationships with key stakeholders across The Bank to ensure timely and effective delivery. We offer you the opportunity to collaborate with passionate competent people, experts in their field. We thrive on being challenged and everything we do is anchored in managing risk for The Bank.

This role is responsible for supporting Identity and Access Management (IAM) break/fix issues impacting end user and service functionality. You will regularly collaborate with experts and the user community in and out of our team, both in country and in other regions, so excellent communication skills are very important. The role will also involve discussion with employees and senior leadership. You will utilize in-depth subject matter expertise and business requirements to deliver against risk and performance metrics. Staying current with common and emerging threats related to access, you will have an opportunity to proactively develop, implement, and influence controls and policy advancements. You will partner with key stakeholders from line of business organizations to respond rapidly to security events and escalations that pose risk to the organization.

• Actively troubleshoot access issues, verify policy compliance approach to resolving incident tickets

• Communicate effectively with end users and business partners.

• Build and monitor alerting and dashboards.

• Identify areas for further process automation, simplification, and improvement.

• Provide status updates for executives and stakeholders in non-technical terms encompassing risk, impact, containment, remediation, etc.

• Risk management experience and mindset.

• Comprehensively document analysis, investigative activities, actions, etc.

• Ability to work non-standard hours, to include occasional on-call time during nights, weekends, and holidays.

• Apply knowledge of the Identity and Access Management industry policies and standards including laws, rules, regulations, and information security concepts related to access provisioning, validate alignment of processes and controls to requirements, and report on gaps related to adherence to policy requirements.

• Lead complex technical projects to successful delivery, includes facilitating project meetings, authoring project documentation and driving adoption.

• Minimum of 3 years experience within the operational side of the Information Technology, Security industry and Identity and Access Management

• Ability to analyze data and evaluate relevance to a specific issue or incident under investigation.

• Ability to handle multiple competing priorities in a fast-paced environment; ability to be decisive and take action without causing an undue delay.

• Ability to exercise independent judgment when responding to alerts.

• Ability to communicate effectively across all levels of the organization, to both technical and non-technical audiences.

• Familiarity with identity management standards, social engineering TTPs, and the incident response lifecycle.

• Knowledgeable of current access based exploits in traditional and cloud environments, for both human and non-human accounts.

• Proven experience presenting findings via written reports and orally to key stakeholders in clear and concise language.

• Ability to work in a strong team-orientated environment that is geographically dispersed with a sense of urgency and resilience.

• Critical thinking - must be able to think outside the box and develop solutions to accomplish seemingly impossible tasks while remaining risk and objective focused.

• A strong working knowledge of security threat vectors, networking, network security and application security.

• Advanced problem solving skills.

• Demonstrates the capability of working in a team environment and collaborating with overseas partners.

• Ability to work independently.

• Strong leadership skills and qualities which enable you to work with peers and various levels of management.

• Strong analytical skills/problem solving/conceptual thinking.

• Broad technical knowledge of IAM lifecycle, ecosystem and enterprise scale products.

• Experience in the deployment of multi-factor authentication, role and attribute-based access control, and other strong authentication methods and solutions.

• Hands-on experience with IAM products and particularly on Ping suite of products (Ping Access, Ping Federate and PingID) and federation concepts.

• Strong technical knowledge of authentication and authorization protocols: OIDC, SAML, XACML, LDAP, OAuth, OpenID.

• 3-5 years experience with cloud platforms (AWS, Azure, GCP etc.)

Shift:

Hours Per Week:

Pay Transparency details