Job Description

:About UsAt Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We\xe2\x80\x99re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!Global Business ServicesGlobal Business Services delivers Technology and Operations capabilities to Lines of Business and Staff Support Functions of Bank of America through a centrally managed, globally integrated delivery model and globally resilient operations. Global Business Services is recognized for flawless execution, sound risk management, operational resiliency, operational excellence and innovation. In India, we are present in five locations and operate as BA Continuum India Private Limited (BACI), a non-banking subsidiary of Bank of America Corporation and the operating company for India operations of Global Business Services.Process OverviewThe Global Information Security (GIS) is responsible for protecting Bank information systems, confidential and proprietary data, and customer information. The team develops the Bank\xe2\x80\x99s Information Security strategy and policy, manages the Information Security program, identifies, and addresses vulnerabilities, Develops, deploys and manages a risk-based controls, portfolio, Manages and operates global security operations center that monitor, detect and respond to cybersecurity incidents.Individual is expected to support the Third Party Assessment Remediation team in performing due diligence on reported information security gaps. This will include obtaining statuses for remediation milestones associated with exceptions, updating commentary in the system of record, drafting communications based on established templates, conducting evidence reviews, documenting closure or downgrade recommendations and providing administrative support for job aid/playbook documentation. Must collaborate effectively with Business, vendor representatives, Tech Managers, and Process Owners to obtain necessary updates and provide support.Responsibilities

• Monitor exceptions under the Enhanced Remediation Program in Continuous Monitoring; communicate with action step owners to obtain status and update records accordingly
• Upload commentary into system of record based on direction from Remediation Assessors; draft communications for updates to stakeholders using established templates
• Conduct expedited reviews of evidence when requested; provide recommendations for closure or downgrade based on risk
• Support administrative updates to documentation and governance materials
• Summarize results for governance reporting
• Ability to pursue a proactive approach to problem solving within a cohesive team environment
• Ability to work in a fast-paced environment
• Be a collaborative team player who can work independently and proactively solve problems

RequirementsEducation : B.E. / B Tech / M.E. / M Tech / MCA / M.Sc.,Certifications (If Any) : ISO 27001 LA, CISA, CISM, CISSPExperience Range : 6+ YearsFoundational Skills:

• Experience in Information Security Management
• Experience in Governance, Risk & Compliance
• Experience in internal or external audits
• Experience in implementing or reviewing ISO 27001, PCI, SOX, etc., controls
• Strong analytical and problem solving skills
• Excellent written/verbal communication skills

Desired Skills:

• Knowledge in Vulnerability Assessments and Application Architecture
• Cloud Security
• Understanding of Networking, Systems Admin, Cryptography, Access Management

Work Timings: 1:30 PM \xe2\x80\x93 10:30 PMJob Location - Hyderabad

Bank of America