Senior Third Party Information Security Officer

4 weeks ago


Denver, Colorado, United States Bank of America Full time

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection.

Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.

We're devoted to being a diverse and inclusive workplace for everyone.

We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.

Bank of America believes both in the importance of working together and offering flexibility to our employees.

We use a multi-faceted approach for flexibility, depending on the various roles in our organization.

Job Responsibilities:

Develop deep relationships with the most critical Third Parties, including the Front Line Unit / Third Party Executives, and the Enterprise Vendor Managers to become a key partner understanding the services and the technology being provided.

Aligning to emerging risks, perform deep dive reviews of the Third Parties' control environment to identify potential gaps and/or best practices.

Assess risks and effectiveness of Third Party processes and controls based on the "Enhanced Third Party Cyber Assurance" program to ensure information security risk is within Bank tolerated limits.

Identify and escalate problems or issues that arise while driving actions to address the root causes leading to remediation of the concern.

Review Third Party Technical workflows, SBOMs, applications, Cloud Security (SaaS), Data Security, Encryption, Hardware Security Modules, Multi Factor Authentication, Endpoint Detection and Response tools, etc.

that support Bank processes to deliver an opinion on the efficacy of the intended results supporting information security risk.

Contribute to the ongoing development of the Enhanced Third Party Cyber Assurance program by identifying continuous process improvements based on feedback provided.

Advises management on risks and issues related to Third Party information security while recommending actions in support of the bank's wider risk management expectations.

Monitors and analyzes information security / cybersecurity threats and trends, both internal and external to the Bank to drive improvements to the Enhanced program while keeping leadership informed.

Work across the assessment verticals to ensure the Enhanced Assurance process is aligned to meet Third Party Cyber Assurance (TPCA) strategy and goals.

Assist with resource planning to ensure the Enhanced program has the necessary resources to effectively execute the assessments.

Requirements:

Information Security & Technology professional with 10+ years of experience.

5 – 10 years of risk management experience with proven ability to effectively apply risk principles in challenging situations.

Experience evaluating cyber security controls and providing guidance for enhancements.

Proven track record of developing and implementing security strategies in complex environments.

Previous information technology/security, audit/assessment experience preferred.

Directly or via a team, documents, analyzes, reports and escalates as needed risk issues (e.g., control weaknesses, violations, metric breaches); synthesizes the data for emerging trends or systemic issues.

Ability to develop relationships and leverage to gain insights.

Strong attention to detail, analytical skills, ability to multi-task, and ability to work both independently as well as part of the Enhanced Third Party Cyber Assurance team is also required.

Must be able to plan, execute and document assessment activities within an ambiguous environment using documented analysis and professional judgement.

Exceptional executive presentation and communication skills, influencing and problem resolution skills.

Comfortable delivering messages across a wide spectrum of individuals having varying degrees of technical understanding.

Strong leadership skills and qualities which enable you to work with peers and various levels of management.

Relevant certifications such as CISSP, CCSP, CISA, CISM, or CRISC are highly desirable.

Technical Skills:

Expertise in network security principles and technologies.

Deep understanding of transmission protocols and secure communication channels.

Knowledge of secure by design principles.

Expertise in Cloud Security Principles.

Knowledge of Software Development and in-depth understanding of API's.

Proficiency in conducting technology reviews to assess security controls.

Solid grasp of security architecture principles and best practices.

Other Skills:

Advisory.

Relationship building.

Monitoring, Surveillance, and Testing.

Regulatory Compliance.

Reporting.

Risk Management.

Critical Thinking.

Influence.

Interpret Relevant Laws, Rules, and Regulations.

Issue Management.

Policies, Procedures, and Guidelines Management.

Business Process Analysis.

Decision Making.

Negotiation.

Process Management.

Written Communications.

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

Shift:

1st shift (United States of America).

Hours Per Week:

40.

Pay Transparency details:

US - CO - Denver th St (CO9926), US - DC - Washington K St NW K Street NW (DC1842).

Pay and benefits information:

Pay range: $130, $200,000.00 annualized salary, offers to be determined based on experience, education and skill set.

Discretionary incentive eligible.

This role is eligible to participate in the annual discretionary plan.

Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.

Benefits:

This role is currently benefits eligible.

We provide industry-leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.

Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity and affirmative action, in accordance with all applicable federal, state, provincial and municipal laws.

The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.

To view the "EEO is the Law" poster, CLICK HERE ) .

To view the "EEO is the Law" Supplement, CLICK HERE ) .

View the LA County Fair Chance Ordinance ) .

Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse.

Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.

To view Bank of America's Drug-free Workplace and Alcohol Policy, CLICK HERE .

This communication provides information about certain Bank of America benefits.

Receipt of this document does not automatically entitle you to benefits offered by Bank of America.

Every effort has been made to ensure the accuracy of this communication.

However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern.

Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents.

Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.



  • Denver, Colorado, United States Bank of America Full time

    Job Description:At Bank of America, we are committed to creating a workplace where our teammates can thrive and make a meaningful impact. As a Third Party Cyber Assurance Specialist, you will play a critical role in ensuring the security and integrity of our third-party vendors.Key Responsibilities:Evaluate third-party information security risk with a...


  • Denver, Colorado, United States Bank of America Full time

    Job Title: Third Party Cyber Assurance SpecialistJob Summary:We are seeking a highly skilled Third Party Cyber Assurance Specialist to join our team at Bank of America. As a key member of our Information Security team, you will be responsible for conducting assessments of third-party vendors to ensure they meet our security requirements.Key...


  • Denver, Colorado, United States Hispanic Technology Executive Council Full time

    Job Summary:The Senior Technology Information Security Officer will be a key member of the Business Information Security Officer's (BISO) organization, working closely with Front Line Units (FLU) / Operations (Ops) executives to develop a deep understanding of the business and provide specialized information security risk-based discussions.This role will...


  • Denver, Colorado, United States Bank of America Full time

    Job Description:The Senior Technology Information Security Officer will be a key member of the Business Information Security Officer's (BISO) organization, working closely with line of business Front Line Units (FLU) / Operations (Ops) executives to develop a deep understanding of the business and provide specialized information security risk-based...


  • Denver, Colorado, United States Bank of America Full time

    Job Description:The Senior Technology Information Security Officer will be a key member of the Business Information Security Officer's (BISO) organization, working closely with line of business Front Line Units (FLU) / Operations (Ops) executives to develop a deep understanding of the business and provide specialized information security risk-based...


  • Denver, Colorado, United States Hispanic Technology Executive Council Full time

    Job Summary:The Senior Technology Information Security Officer will be a key member of the Business Information Security Officer's (BISO) organization, working closely with the line of business Front Line Units (FLU) / Operations (Ops) executives to develop a deep understanding of the business and provide specialized information security risk-based...


  • Denver, Colorado, United States Hispanic Technology Executive Council Full time

    Job Description:At Hispanic Technology Executive Council, we are guided by a common purpose to help make financial lives better through the power of every connection.Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.One of the keys to driving Responsible Growth is being a great...

  • Security Officer

    1 month ago


    Denver, Colorado, United States Advantage Security Inc Full time

    Job Opportunity: Security OfficerAdvantage Security Inc. is seeking a highly skilled and dedicated Security Officer to join our team. As a Security Officer, you will be responsible for ensuring the safety and security of our clients' properties and personnel.Key Responsibilities:Monitor and control access to client-owned buildings and facilitiesAdvise and...

  • Security Officer

    4 weeks ago


    Denver, Colorado, United States Advantage Security Inc Full time

    Job Title: Security OfficerJob Summary:Advantage Security Inc. is seeking a skilled Security Officer to join our team. As a Security Officer, you will be responsible for monitoring and controlling access to client-owned buildings, advising and escorting individuals, and maintaining security records.Responsibilities:Monitor and control access to client-owned...

  • Security Officer

    4 weeks ago


    Denver, Colorado, United States Advantage Security Inc Full time

    At Advantage Security Inc., we are seeking exceptional candidates for part-time Lobby Attendant/Security Officer positions in the Denver area.As a Security Officer with our company, you will be responsible for monitoring and controlling access to client-owned buildings, advising and escorting individuals, and maintaining security records and reports.Key...


  • Denver, Colorado, United States Hispanic Technology Executive Council Full time

    Job Description: At Hispanic Technology Executive Council, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day. One of the keys to driving Responsible Growth is being a...


  • Denver, Colorado, United States People, Data & Solutions Full time

    At People, Data & Solutions, we're on the hunt for a seasoned IT professional to spearhead our information security efforts. As our Chief Information Security Officer, you'll be responsible for protecting our assets, data, and operations by developing a comprehensive cybersecurity strategy, leading incident response, and ensuring compliance with industry...

  • Security Officer

    4 weeks ago


    Denver, Colorado, United States New Wave Security Solutions Full time

    Job DescriptionNew Wave Security Solutions is a leading provider of physical security solutions to high-end clientele throughout Colorado. We are seeking a highly skilled and dedicated Security Guard to join our team.Key Responsibilities:Prevent illegal or inappropriate actions by maintaining a high visibility presence.Patrol assigned buildings, facilities,...


  • Denver, Colorado, United States New Wave Security Solutions Full time

    Job DescriptionAt New Wave Security Solutions, we provide physical security solutions to high-end clientele throughout Colorado. We believe strongly in our core values and look for candidates to embody such: Honesty, Integrity, Awareness, and Hospitality.ResponsibilitiesPrevent illegal or inappropriate actions by maintaining a high visibility presence.Patrol...


  • Denver, Colorado, United States Advantage Security Inc Full time

    Job Title: Security OfficerJob Summary: Advantage Security, Inc. is seeking exceptional candidates for part-time Security Officer positions in the South Denver/DTC and Greenwood Village area.Responsibilities:Monitor and control access to client-owned buildingsAdvise and escort individuals into spacesMaintain security records and reportsProtect property and...


  • Denver, Colorado, United States Precision Security Team Full time

    Job Title: Armed Security OfficerJob Summary: We are seeking a highly skilled and experienced Armed Security Officer to join our team at Precision Security Team. As an Armed Security Officer, you will be responsible for ensuring the safety and security of our clients and their properties.Key Responsibilities:Monitor and manage access control points to ensure...

  • Security Officer

    4 weeks ago


    Denver, Colorado, United States New Wave Security Solutions Full time

    Job DescriptionAs a Security Officer with New Wave Security Solutions, you will be responsible for maintaining a high visibility presence to prevent illegal or inappropriate actions. Your duties will include patrolling assigned buildings, facilities, and perimeters on foot or by a patrol vehicle, maintaining constant communication with clients and their...

  • Security Officer

    6 days ago


    Denver, Colorado, United States New Wave Security Solutions Full time

    Job DescriptionJob SummaryProtect clients' premises and employees by maintaining a visible presence, preventing illegal actions, and responding to disturbances.Key ResponsibilitiesPatrol designated areas on foot or by vehicle to maintain a high visibility presence.Monitor alarm systems, video surveillance, and report irregularities to clients and...

  • Security Officer

    4 weeks ago


    Denver, Colorado, United States Advanced Professional Security Full time

    Job SummaryAdvanced Professional Security is seeking a highly skilled Security Guard (armed) to protect clients and assigned properties from criminal activity and trespassing.The ideal candidate will possess strong written and verbal communication skills, excellent observational abilities, and previous surveillance experience, preferably in a law enforcement...

  • Security Officer

    4 weeks ago


    Denver, Colorado, United States Advantage Security Inc Full time

    Job DescriptionAdvantage Security Inc. is seeking a highly skilled Security Officer to join our team. As a Security Officer, you will be responsible for monitoring and controlling access to client-owned buildings, advising and escorting individuals, and maintaining security records.Key Responsibilities:Monitor and control access to client-owned...