Identity & Access Management (IAM) Information Security Controls Specialist (Data Driven & Governance exp required)

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.

Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.

Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.

At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us

Summary:

Global Information Security (GIS) is responsible for protecting bank information systems, confidential and proprietary data, and customer information. GIS develops the bank's Information Security strategy and policy, manages the Information Security program, identifies and addresses vulnerabilities and operates a global security operations center that monitors, detects and responds to cybersecurity incidents. 

Within GIS, Identity and Access Management (IAM) is a security discipline that enables the right individuals to access the right resources at the right times and in the right context. IAM addresses the mission-critical need to ensure appropriate access to the resources across increasingly heterogeneous technology environments, and to meet increasingly rigorous compliance requirements.

What you can expect in Identity & Access Management:

In today's highly connected world, managing and securing the identity of users is essential to the safety and success of our workforce. The Identity & Access Management (IAM) team works within Global Information Services (GIS) and in close participation with all other LOB teams as well as second and third line of defense partners. This role is highly visible and requires frequent interaction with senior management and key stakeholders.  

Are you passionate about the latest IT technologies and thrive in a fast-paced international environment? In a typical day, you may work with other team members on the book of work, operational concerns, or risk items. You will help overcome obstacles and maintain good relationships with key stakeholders across the bank to ensure timely and effective delivery. We offer you the opportunity to collaborate with passionate competent people, experts in their field. We thrive on being challenged and everything we do is anchored in managing risk for the bank.

The Identity & Access Management (IAM) Info Security Controls Specialist will analyze, strengthen, and secure the company's IAM systems and overall risk posture for End User Access Management & Application Services. This role focuses on collaboration across all Lines of Business, CIO teams, to continuously improve the organization's core access control compliance. The Controls Specialist will analyze controls to identify and document inefficiencies, and design/prioritize improvement opportunities to enable swift adherence.

The role also will actively apply knowledge of laws, rules, regulations, and information security concepts (e.g., NIST, COBIT, ISO) to establish and maintain policies, validate alignment of processes and controls to requirements, report on adherence to policy requirements and maintain governance programs related to IAM Standard controls. Job expectations include using data analytics, governance process management, and partnering with internal teams to verify policy compliance, identify gaps in coverage, and support remediation activities.

Responsibilities:

• Drive IAM connector service modernization strategy, setting roadmap priorities and providing subject matter expertise, risk mitigation, and product direction.

• Lead design, implementation, and optimization of connectors, including custom development for integration with enterprise systems (Public Cloud, LDAP, Active Directory, databases, SaaS apps).

• Oversee identity lifecycle management for human and non-human accounts, including joiner/mover/leaver processes, entitlement governance, and connector workflows.

• Modernize connector governance frameworks to ensure compliance with NIST, ISO, COBIT standards and regulatory requirements.

• Collaborate with Global Technology and Cyber Security teams to align IAM solutions with enterprise architecture and risk appetite.

• Develop and maintain audit-ready documentation, governance routines, and QA processes to support regulatory inquiries and internal audits.

• Support SDLC processes, including testing and sign-off for IAM-related application changes.

• Define and track KPIs for connector performance, compliance adherence, and risk reduction impact.

Required Qualifications:

• 5+ years in IAM with hands-on experience in PingIDM, IdentityIQ (IIQ), or similar IAM platforms (ForgeRock, Okta).

• Strong knowledge of connector frameworks (OpenICF) and integration with directory services, databases, and multi-cloud environments.

• Expertise in identity workflows, role management, and policy development.

• Familiarity with protocols: LDAP, SAML, OAuth, SCIM, REST.

• Proficiency in data analytics and reporting tools (SQL, Tableau, PowerBI) for compliance and risk metrics.

• Experience in IAM modernization initiatives, connector customization, and governance program leadership.

Shift:

1st shift (United States of America)

Hours Per Week: 

40

Pay Transparency details

US - DC - Washington K St NW K Street NW (DC1842), US - MA - Boston - 100 Federal St - 100 Federal St Lp (MA5100)Pay and benefits informationPay range$78, $137,700.00 annualized salary, offers to be determined based on experience, education and skill set.Discretionary incentive eligibleThis role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.BenefitsThis role is currently benefits eligible. We provide industry-leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.

---