Business Information Security Officer (BISO)
Company: Bank of America
Location: Denver
Posted on: January 16, 2022
|
|
|
Job Description:
Job Description:Bank of America is looking people with a passion
for cyber security, are you someone that loves complex problems,
someone that can work with technologists and the businesses to
enable best of breed technology solutions securely then we want to
meet you. The Information Security Officer will be a member of the
Business Information Security Officer's (BISO) organization and
work closely with the line of business Chief Information Officers
(CIOs)/Chief Technology Officers (CTOs). In this role, you will be
supporting a group/team to develop a deep understanding of the
business in order to have specialized information security
risk-based discussions.Scale/ScopeDrive the adoption of secure
application design, integration with best modern SDLC and CI/CD
application security practices, testing methodologies and
post-production risk governanceMonitors information security trends
internal and external to the bank and keeps Line of Business (LOB)
leadership informed about information security-relatedAdvises LOB
management on risk issues related to information security and
recommends actions in support of the bank's wider risk management
and compliance programsLeverage risk based reporting to shape the
risk posture and subsequently derive guidance to improve
information security adoption across the enterpriseRisk Management
Drives GIS/LOB risk deliverables and assists CIO teams in
prioritizing cyber security initiatives.Collaborates with GIS and
LOB risk partners on info security critical prioritiesParticipates
in senior LOB specific Risk Management & Business Continuity
RoutinesIdentifies and measures global information security (GIS)
controls on most critical business processes or channelsRequired
Skills:Candidate needs to have a broad technical background and
solid understanding of application security (including OWASP),
network security, Identity and Access Management, cryptography and
cloud security principles.Experience assessing and managing
technology and cyber security risks related to application, network
and infrastructure.-- - -- -Ability to analyze systems, threat
model new features, identify security vulnerabilities in
implementation, and recommend cloud security controls to ensure end
to end protectionThe successful candidate will be pragmatic,
collaborative and have relationship management expertise.Passion to
learn emerging technology and continue understanding of the info
security landscapeSignificant experience in cyber security,
software, network or infrastructure engineering.Ability to navigate
across organizational or perceived boundaries with incomplete
information to achieve successful outcomesInternal candidates
should have a broader understanding of Bank of America's change
management (Permits) process in addition to having experience
navigating the firm's technology lifecycle management programs
(Secure by Design, Permit to Send, Permit to Operate, GCGF etc).
Highly Desired Skills and Experience 2-5 years of experience in
technology and 5 + years in information securityKnowledge and
experience of Public Cloud adoption, virtualization and container
security principles highly desirable.Prior experience in
application security, vulnerability testing, system testing, and/or
Agile lifecycle managementExperience giving presentations and
superb communication skillsBachelor's and/or Master's degree in
Computer Science, Information Technology or related field
Enterprise Job Description: Provides support to information
security officers who partner directly with line of business
leaders. Has a deep understanding of the business and information
security in order to have specialized information security
risk-based discussions. Utilizes knowledge of application
development and/or application security, including the Software
Delivery Life Cycle from design, testing and deployment to post
production. May participate in more complex Secure by Design
efforts as new technology is deployed. Ensures technology is secure
when used by partners and vendors. Provides guidance and expertise
to information security officers on risk elements associated with
each step of the Secure by Design process to ensure adherence to
information security policies. Typically has 3-5 years of relevant
experience.Job Band:H5Shift:-- -1st shift (United States of
America)Hours Per Week:40Weekly Schedule:Referral Bonus Amount:0
--> Job Description:Bank of America is looking people with a
passion for cyber security, are you someone that loves complex
problems, someone that can work with technologists and the
businesses to enable best of breed technology solutions securely
then we want to meet you. The Information Security Officer will be
a member of the Business Information Security Officer's (BISO)
organization and work closely with the line of business Chief
Information Officers (CIOs)/Chief Technology Officers (CTOs). In
this role, you will be supporting a group/team to develop a deep
understanding of the business in order to have specialized
information security risk-based discussions.Scale/ScopeDrive the
adoption of secure application design, integration with best modern
SDLC and CI/CD application security practices, testing
methodologies and post-production risk governanceMonitors
information security trends internal and external to the bank and
keeps Line of Business (LOB) leadership informed about information
security-relatedAdvises LOB management on risk issues related to
information security and recommends actions in support of the
bank's wider risk management and compliance programsLeverage risk
based reporting to shape the risk posture and subsequently derive
guidance to improve information security adoption across the
enterpriseRisk Management Drives GIS/LOB risk deliverables and
assists CIO teams in prioritizing cyber security
initiatives.Collaborates with GIS and LOB risk partners on info
security critical prioritiesParticipates in senior LOB specific
Risk Management & Business Continuity RoutinesIdentifies and
measures global information security (GIS) controls on most
critical business processes or channelsRequired Skills:Candidate
needs to have a broad technical background and solid understanding
of application security (including OWASP), network security,
Identity and Access Management, cryptography and cloud security
principles.Experience assessing and managing technology and cyber
security risks related to application, network and
infrastructure.-- - -- -Ability to analyze systems, threat model
new features, identify security vulnerabilities in implementation,
and recommend cloud security controls to ensure end to end
protectionThe successful candidate will be pragmatic, collaborative
and have relationship management expertise.Passion to learn
emerging technology and continue understanding of the info security
landscapeSignificant experience in cyber security, software,
network or infrastructure engineering.Ability to navigate across
organizational or perceived boundaries with incomplete information
to achieve successful outcomesInternal candidates should have a
broader understanding of Bank of America's change management
(Permits) process in addition to having experience navigating the
firm's technology lifecycle management programs (Secure by Design,
Permit to Send, Permit to Operate, GCGF etc). Highly Desired Skills
and Experience 2-5 years of experience in technology and 5 + years
in information securityKnowledge and experience of Public Cloud
adoption, virtualization and container security principles highly
desirable.Prior experience in application security, vulnerability
testing, system testing, and/or Agile lifecycle
managementExperience giving presentations and superb communication
skillsBachelor's and/or Master's degree in Computer Science,
Information Technology or related field Enterprise Job Description:
Provides support to information security officers who partner
directly with line of business leaders. Has a deep understanding of
the business and information security in order to have specialized
information security risk-based discussions. Utilizes knowledge of
application development and/or application security, including the
Software Delivery Life Cycle from design, testing and deployment to
post production. May participate in more complex Secure by Design
efforts as new technology is deployed. Ensures technology is secure
when used by partners and vendors. Provides guidance and expertise
to information security officers on risk elements associated with
each step of the Secure by Design process to ensure adherence to
information security policies. Typically has 3-5 years of relevant
experience.Job Band:H5Shift:-- -1st shift (United States of
America)Hours Per Week:40Weekly Schedule:Referral Bonus Amount:0
Job Description: Bank of America is looking people with a passion
for cyber security, are you someone that loves complex problems,
someone that can work with technologists and the businesses to
enable best of breed technology solutions securely then we want to
meet you. The Information Security Officer will be a member of the
Business Information Security Officer's (BISO) organization and
work closely with the line of business Chief Information Officers
(CIOs)/Chief Technology Officers (CTOs). In this role, you will be
supporting a group/team to develop a deep understanding of the
business in order to have specialized information security
risk-based discussions.Scale/ScopeDrive the adoption of secure
application design, integration with best modern SDLC and CI/CD
application security practices, testing methodologies and
post-production risk governanceMonitors information security trends
internal and external to the bank and keeps Line of Business (LOB)
leadership informed about information security-relatedAdvises LOB
management on risk issues related to information security and
recommends actions in support of the bank's wider risk management
and compliance programsLeverage risk based reporting to shape the
risk posture and subsequently derive guidance to improve
information security adoption across the enterpriseRisk Management
Drives GIS/LOB risk deliverables and assists CIO teams in
prioritizing cyber security initiatives.Collaborates with GIS and
LOB risk partners on info security critical prioritiesParticipates
in senior LOB specific Risk Management & Business Continuity
RoutinesIdentifies and measures global information security (GIS)
controls on most critical business processes or channelsRequired
Skills:Candidate needs to have a broad technical background and
solid understanding of application security (including OWASP),
network security, Identity and Access Management, cryptography and
cloud security principles.Experience assessing and managing
technology and cyber security risks related to application, network
and infrastructure.-- - -- -Ability to analyze systems, threat
model new features, identify security vulnerabilities in
implementation, and recommend cloud security controls to ensure end
to end protectionThe successful candidate will be pragmatic,
collaborative and have relationship management expertise.Passion to
learn emerging technology and continue understanding of the info
security landscapeSignificant experience in cyber security,
software, network or infrastructure engineering.Ability to navigate
across organizational or perceived boundaries with incomplete
information to achieve successful outcomesInternal candidates
should have a broader understanding of Bank of America's change
management (Permits) process in addition to having experience
navigating the firm's technology lifecycle management programs
(Secure by Design, Permit to Send, Permit to Operate, GCGF etc).
Highly Desired Skills and Experience 2-5 years of experience in
technology and 5 + years in information securityKnowledge and
experience of Public Cloud adoption, virtualization and container
security principles highly desirable.Prior experience in
application security, vulnerability testing, system testing, and/or
Agile lifecycle managementExperience giving presentations and
superb communication skillsBachelor's and/or Master's degree in
Computer Science, Information Technology or related field
Enterprise Job Description: Provides support to information
security officers who partner directly with line of business
leaders. Has a deep understanding of the business and information
security in order to have specialized information security
risk-based discussions. Utilizes knowledge of application
development and/or application security, including the Software
Delivery Life Cycle from design, testing and deployment to post
production. May participate in more complex Secure by Design
efforts as new technology is deployed. Ensures technology is secure
when used by partners and vendors. Provides guidance and expertise
to information security officers on risk elements associated with
each step of the Secure by Design process to ensure adherence to
information security policies. Typically has 3-5 years of relevant
experience. Shift:1st shift (United States of America) Hours Per
Week:-- -40
Keywords: Bank of America, Denver , Business Information Security Officer (BISO), Other , Denver, Colorado
|
Click
here to apply!
|
