Control Gap Remediation Governance Analyst GIS

Job Description:

At Bank of America we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients teammates communities and shareholders every day.

Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace attracting and developing exceptional talent supporting our teammates physical emotional and financial wellness recognizing and rewarding performance and how we make an impact in the communities we serve.

Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.

At Bank of America you can build a successful career with opportunities to learn grow and make an impact. Join us!

Job Description:

The Information Security Consultant will be part of the Global Information Security (GIS) Cyber Security Assurance (CSA) Control Gap Remediation Governance this role you will play an integral part in ensuring security of Bank applications by governing and overseeing remediation activities completed by application teams. As a Remediation Governance resource you will collaborate closely with cross functional teams and stakeholders in IT business technology groups Risk Partners and GIS teams across their respective LOBs. You will present key findings progress and escalate issues and be responsible for influencing the stakeholders to prioritize/execute risk management issues and lead remediation efforts.

Key responsibilities:
Oversee remediation efforts for identified application compliance/configuration violations.
Review all current and existing findings for active and acceptable remediation plans. These plans may be reviewed with LOB point of contacts Application Owners Data Owners / Custodians or System Administrators. Verify that remediation plans are implemented per remediation plan and GIS guidelines. Review and identify any potential gaps that may result in possible audit issues.
Serve as a key resource in improving the governance of end-user remediation and act as the subject matter expert of end-user remediation governance.
Respond to relevant requests received from stakeholders or representatives of stakeholders for investigation of potential reporting issues.
Provide support to stakeholders or representatives of stakeholders on remediation guidance.
Engagement with assessment owners to ensure remediation requirements are clearly documented and understood.
Provide all necessary reports and presentations on the status of remediation efforts and all gaps and potential obstacles or issues for management and technical staff.
Performs other related duties incidental to the work described herein and all special assignments as needed or assigned.

Required Qualifications
3 years of experience in information security or technical field
Ability to work independently on initiatives with little oversight. Motivated and willing to learn
Strong PC skills including Microsoft Office applications

Desired Qualifications
Strong analytical skills/problem solving/conceptual thinking
Ability to effectively communicate with Technical and Non-Technical business owners
Lead internal efficiencies projects and development.
General understanding of GIS Policy and requirements including Application and Secure Coding Customer Account Secure

Skills:

• Controls Management

• Cyber Security

• Data Governance

• Information Systems Management

• Risk Management

• Architecture

• Customer and Client Focus

• Executive Presence

• Threat Analysis

• Vendor Management

• Advisory

• Business Acumen

• Business Intelligence

• Cloud Solutions

• Technology System Assessment

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

Shift:

Hours Per Week:

Pay Transparency details