Global Technology Compliance and Operational Risk Manager

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.

Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.

Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.

At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us
 

Job Description:

This job is responsible for executing second line of defense compliance and operational risk oversight for a Front Line Unit, Control Function, and/or Third Parties. Key responsibilities include ensuring requirements of the Global Compliance Enterprise Policy, the Operational Risk Management Enterprise Policy (collectively "the Policies"), the Compliance and Operational Risk Management Program and Standard Operating Procedures are implemented and identifying, challenging, escalating, and mitigating risks in a timely manner. 

We're looking for a seasoned risk leader to join the second line of defense, providing oversight and challenge for International Technology and Global Payments Solutions Technology (ITGPST) organization, a forward-looking CIO organization within Global Technology. This is a high-impact opportunity to influence how we manage risk across platforms that directly affect some of the most critical services across the technology organization and is a leader in driving innovation for our customers.  Some of the areas within ITGPST include the following:

• Enterprise Payments Technology
• Channels Servicing and Onboarding Technology
• Banking Data Strategy Technology
• Receivables, Card and Comprehensive Payables Technology .

In this role, you'll be a strategic partner to senior technology leaders, helping to ensure that risk is thoughtfully managed as we evolve our platforms and capabilities. 

Responsibilities:

• Assesses risks and effectiveness of Front-Line Unit (FLU) processes and controls to ensure compliance with applicable laws, rules, and regulations, while responding to regulatory inquiries, other audits, and examinations
• Engages in activities to provide independent compliance and operational risk oversight of FLU or Control Function (CF) performance and any related third party/vendor relationships in alignment with the Global Compliance - Enterprise Policy, the Operational Risk Management - Enterprise Policy (collectively the Policies) and the Compliance and Operational Risk Management Program and Standard Operating Procedures
• Identifies and escalates problems or issues that arise and drives actions to address the root causes that lead to compliance risk issues and/or operational risk losses
• Conduct monitoring and provide independent review of the Front-Line Unit.
• Monitors inventory of processes, risks, controls, and associated metrics for risk appetite and limits, reporting violations of compliance or regulatory activities
• Assists in the development of independent risk management reporting for respective area(s) of coverage as input into country/regional governance and management routines
• Analyzes and interprets applicable laws, rules, and regulations to provide clear and practical advice to stakeholders, and identify and manage risks
• Reviews and challenges FLU/CF process, risk, Single Process Inventory, and FLU/CF Risk and Control Self-Assessment related to themes or trends, while monitoring the regulatory environment to identify regulatory changes applicable to area(s) of coverage
• Monitor and assess adherence to Global Technology policies and standards
• Perform inline review of ITGPST issue management activities, including remediation of regulatory issues

Key responsibilities include:

• Executing the Compliance and Operational Risk Management Program with rigor and adaptability.
• Engaging senior technology leaders, providing credible challenges and clear risk insights.
• Identifying and assessing emerging risks tied to external client facing payment technologies and innovation.
• Designing forward-thinking risk assessments that go beyond checklists to uncover real vulnerabilities and opportunities. 
• Driving a culture of proactive risk management across the ITGPST organization.

Benefits of Role:

• Enterprise Visibility: You'll work closely with senior leaders across Global Technology and Risk, influencing decisions that shape how payments technology risks are managed.
• Strategic Impact: Help define how we manage risk in areas like AI, accessibility, and developer enablement.
• Career Growth: This role offers a unique opportunity to expand your leadership footprint and deepen your expertise in both technology and risk.
   

Required Skills:

•  7+ years' experience in one or more of the following: financial services, financial technology, payments, audit, regulatory management and/or risk management 
• Compliance, Operational Risk, or Technology Risk Experience: Proven background in risk-related disciplines; strong experience with the Global Compliance & Operational Risk program from a 1st or 2nd line perspective.
• Strategic Thinking: Ability to translate complex risk concepts into clear, actionable guidance.
• Exceptional Communication & Influence: Communicates with clarity and impact; comfortable engaging at the executive level and shaping outcomes.
• AI Fluency & Analytical Skills: Leverages AI tools and data to inform risk assessments and drive decision-making.
• Business Acumen: Familiarity with GCOR programs, Global Technology policies, and ITGPST processes and risks.
• Risk & Issue Management: Skilled in identifying, assessing, and remediating operational risks and issues.
• Reporting & Insights: Proficient in generating actionable insights through data analysis and reporting tools.
• Stakeholder Engagement: Builds trust, challenges constructively, and partners effectively across the enterprise.

Desired Qualifications:

• Second or third line of defense experience or experience in a business risk and controls role
• Strong familiarity with the Global Compliance & Operational Risk (GCOR) program and related tools / applications
• Familiarity with technology controls, cybersecurity, and IT Governance
• Familiarity with Global Technology policies and standards
• Familiarity with technology support functions, including relevant regulations and business risks
• Familiarity with the Issues Management program and tools
• Demonstrated success leading targeted assessments, audits, or regulatory exam engagements, including authoring responses, report outs and observations
• Proficient in analysis, reporting and related applications
• Communicates and Influences with Impact: Communicates complex ideas clearly, direct, concise, simple and contextual; avoids jargon 
• Shapes the opinions and actions of others, gaining trust & commitment for desired outcomes 
• Adjusts style and personalizes message to best connect with others; inspires others to follow his/her lead  
• Constructively challenges; supports opinion and recommendations with facts and data 
• Shares opinion with confidence; is persistent and tenacious for what is right 
• Demonstrates productive edge, appropriately voicing and challenging opinions Demonstrates productive partnering with various stakeholders across the enterprise at all levels 
• Role models effective communication and influence; develops others on this skill 

Skills:

• Advisory
• Monitoring, Surveillance, and Testing
• Regulatory Compliance
• Reporting
• Risk Management
• Critical Thinking
• Influence
• Interpret Relevant Laws, Rules, and Regulations
• Issue Management
• Policies, Procedures, and Guidelines Management
• Business Process Analysis
• Decision Making
• Negotiation
• Process Management
• Written Communications
   

Shift:

1st shift (United States of America)

Hours Per Week: 

40

Pay Transparency details

US - NJ - Pennington American Blvd - Hopewell Bldg 6 (NJ2600)Pay and benefits informationPay range$97, $192,200.00 annualized salary, offers to be determined based on experience, education and skill set.Discretionary incentive eligibleThis role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.BenefitsThis role is currently benefits eligible. We provide industry-leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.

---