Job Title: Info Security Threat Management Specialist
Corporate Title: VP
Location: Dublin
Company Overview:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities, and shareholders every day.
Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.
At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!
Location Overview:
Our Central Park office in Leopardstown boasts modern facilities based in Dublin's premium business park. With an onsite gym and staff restaurant, all your daily needs are conveniently catered for. Travel options include the LUAS network and the Central Park shuttle service between Dublin City Centre and Central Park. We also provide tax saver tickets as part of our award-winning benefits package, making commuting easier.
Role Description:
Global Information Security is responsible for protecting bank information systems, confidential and proprietary data, and customer information. GIS develops the bank's Information Security strategy and policy, manages the Information Security program, identifies and addresses vulnerabilities, and operates a global security operations center that monitors, detects, and responds to cybersecurity incidents. Within GIS, Identity and Access Management (IAM) is a security discipline that enables the right individuals to access the right resources at the right times and in the right context. IAM addresses the mission-critical need to ensure appropriate access across heterogeneous technology environments and to meet rigorous compliance requirements.
Responsibilities:
1. Assist Authentication lead and collaborate with other technology SMEs to ensure strategic and effective authentication solutions are adopted across BAC and ensure compliance with IAM standards.
2. Support IAM Governance leads to ensure all authentication-related IAM requirements are measured, reported, and governed appropriately.
3. Assess identity and authentication risks in business and technology decisions, demonstrating risk management practices to safeguard BAC's reputation, clients, and assets, while ensuring compliance with laws, rules, and regulations.
4. Monitor industry trends in information security and IAM, engaging with peer organizations to refine BAC's strategy.
5. Apply industry best practices, templates, and documentation, proposing improvements based on practical knowledge.
6. Partner with GIS functions, Core Technology Infrastructure, Cyber Security Technology, Third Party Management, Global Compliance and Operations Risk, internal audit, and regulatory agencies.
7. Influence tool owners to develop and implement efficient, effective, and modern Identity and Authentication solutions that reduce material risks sustainably.
8. Collaborate with stakeholders to develop IAM requirements supporting long-term modernization and transformation (covering Process, Data, and Technology).
9. Engage with Product Managers and Senior Architects to understand the strategic IAM technology roadmap.
10. Consult with the business to identify gaps and governance issues, leveraging domain expertise to find effective solutions.
11. Communicate the reasons and methods behind proposed changes through educational materials.
Qualifications:
• Knowledge of identity and authentication methodologies, techniques, and technologies, with familiarity with laws, rules, and regulations within financial services.
• Understanding and applying BAC's information security policies, standards, procedures, and guides; serving as a Subject Matter Expert for compliance advice.
• Familiarity with security standards such as NIST, ISO/IEC, FFIEC.
• Knowledge of PAM tools supporting MFA, vaulting, and integration with service management tools is advantageous.
• Experience in identity and authentication within large, complex organizations, covering core infrastructure, identity management, and application security.
• Experience with Linux, Windows, Cloud Identity, Access Management (Single Sign-On, Multi-Factor Authentication), and authentication service architecture.
• Knowledge of authentication platforms and protocols like Active Directory, LDAP, OIDC, Kerberos.
• Understanding of Federation protocols such as OAuth, OpenID, SAML, WS-Fed.
• Experience with IAM platforms such as Ping Identity, Active Directory, OpenLDAP, OpenDJ.
• Strong data management and analytical skills, with experience in report automation and aggregation tools like Tableau and Splunk are highly desirable.
Preferred Skills:
• CISSP certification is an advantage.
• Knowledge of compliance certifications such as SOX, SOC, SOC2.
• Experience in large projects and a Bachelor's Degree or equivalent work experience.
Benefits:
Includes private healthcare, pension plan, life assurance, income protection, childcare support, flexible benefits, wellbeing programs, counseling, charitable matching, cultural memberships, and volunteering opportunities.
Our Commitment:
Bank of America values conduct and sound judgment, individual accountability, and a strong code of conduct. We are an equal opportunity employer and accessible to all candidates, encouraging applicants to communicate any accommodation needs.
#J-18808-Ljbffr