Secure by Design Case Manager
| Company | Bank of America |
|---|---|
| Location | Addison, TX, USA |
| Salary | $Not Provided – $Not Provided |
| Type | Full-Time |
| Degrees | Bachelor’s |
| Experience Level | Mid Level, Senior |
Requirements
- Minimum 4 years of experience in cyber security or a technology-related field
- Strong project management experience
- Strong analytical skills/problem solving/critical thinking
- Able to work with technical and non-technical business owners
- Able to take ownership of an initiative/issue through completion
- Able to work in a collaborative environment
- Able to own and deliver on complex initiatives in a high paced, evolving environment
- Excellent verbal and written communication skills; Ability to communicate with business leaders, users and tech-savvy stakeholders
- Proficient in MS Office (Word, Excel, PowerPoint)
- Ability to work with minimal supervision
Responsibilities
- Overall management and execution of the Secure by Design Evaluation (SBDE) request
- Serve as the central point of contact for stakeholders across the request
- Efficiently evaluate application development changes, information security events, governance triggered projects and third party evaluations
- Manage the execution of the SBDE request and completion of required SBD artifacts according to defined criteria
- Document findings for associated applications
- Ensure that Bank of America and third parties continuously develop cyber secure technologies that adhere to internal BAC policies and industry best practices
- Provide technical support to the client, management, and lines of business in risk assessments and implementation of appropriate data security procedures and products
Preferred Qualifications
- Knowledge/Experience in Application security, Risk assessments, Cloud technologies, GRC (Governance, Risk, and Compliance) and/or third party management with emphasis on security processes and controls
- Experience evaluating threats/risks posed by new technologies spanning networks, hardware, software, etc.
- Ability to evaluate technology to ensure cyber-secure development that adheres to internal application policy, standards, and baselines.
- Bachelor’s degree in Information Technology, information security or related field
- Optional Certifications: CISSP (ISC2), CISA, CRISC, CISM (ISACA), CCIE (Cisco), TOGAF, CCTA (McAfee), CCFP (ISC2)