Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.

The Secure by Design Case Manager role is responsible for the overall management and execution of the Secure by Design Evaluation (SBDE) request. The Case Manager serves as the central point of contact for stakeholders across the request to efficiently evaluate application development changes, information security events, governance triggered projects and third party evaluations. The execution of the SBDE request will be managed by the assigned Case Manager and includes completion of required SBD artifacts according to defined criteria and documentation of findings for associated applications. The role ensures that Bank of America and third parties continuously develops cyber secure technologies that adhere to internal BAC policies as well as industry best practices. In addition, the team may be asked to provide technical support to the client, management, and lines of business in risk assessments and implementation of appropriate data security procedures and products.

Required Skills•    Minimum 4 years of experience in cyber security or a technology-related field•    Strong project management experience•    Strong analytical skills/problem solving/critical thinking•    Able to work with technical and non-technical business owners•    Able to take ownership of an initiative/issue through completion•    Able to work in a collaborative environment•    Able to own and deliver on complex initiatives in a high paced, evolving environment•    Excellent verbal and written communication skills; Ability to communicate with business leaders, users and tech-savvy stakeholders•    Proficient in MS Office (Word, Excel, PowerPoint)•    Ability to work with minimal supervision

Desired Skills•    Knowledge/Experience in Application security, Risk assessments, Cloud technologies, GRC (Governance, Risk, and Compliance) and/or third party management with emphasis on security processes and controls•    Experience evaluating threats/risks posed by new technologies spanning networks, hardware, software, etc.•    Ability to evaluate technology to ensure cyber-secure development that adheres to internal application policy, standards, and baselines.•    Bachelor's degree in Information Technology, information security or related field•    Optional Certifications: CISSP (ISC2), CISA, CRISC, CISM (ISACA), CCIE (Cisco), TOGAF, CCTA (McAfee), CCFP (ISC2). 

Shift:

Hours Per Week: