Job Description

:About usAt Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities, and shareholders every day.One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We\xe2\x80\x99re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!Global Business ServicesGlobal Business Services delivers Technology and Operations capabilities to Lines of Business and Staff Support Functions of Bank of America through a centrally managed, globally integrated delivery model and globally resilient operations.Global Business Services is recognized for flawless execution, sound risk management, operational resiliency, operational excellence, and innovation.In India, we are present in five locations and operate as BA Continuum India Private Limited (BACI), a non-banking subsidiary of Bank of America Corporation and the operating company for India operations of Global BusinessProcess OverviewThe COO organization enables business delivery on all COO functions including strategy, workspace management, workforce governance, employee engagement, risk management, portfolio governance and integrated reporting. Additionally, the team also provides support on enhanced approvals for resource requisitions, campus hiring program and global mobility.In this role, candidates will lead the management of risk for Technology Executives by partnering with the leadership and their teams to apply subject matter expertise to support a culture of risk identification, escalation and timely mitigation of compliance and operational risks. Candidates will be responsible to solve problems analytically by applying a mixture of risk and technology expertise to perform impact assessments, identify root causes in support of the technology control activities, and drive risk reduction in the respective technology teams. They will be responsible to provide quality assurance in real-time at the task level to provide feedback and training as needed and monitor the health of audit issues through their lifecycle, including action plan development and validation through Resolved by Line of Business review. The role requires strong communication and leadership skills, candidates are required to drive collaboration with teammates across organizations (Technology, Operations, Audit, GIS etc.) and with the management team to identify opportunities to improve control and reduce risk.Responsibilities:

• Manage PwC Connect request and Corporate Audit email requests according to SLAs.

• Facilitate the activities/evidence needed to support the testing of internal controls and findings (ITGC/ITD) within the allotted timeframes provided by Corp Audit and PwC Gather and organize data to monitor and test the effectiveness of key controls and status of mitigation and action plans.
• Prepare documentation for the tracking, monitoring, and escalation of risk related issues to management.
• Responsible for executing key control activities that support SOX, Audits, Regulatory, Compliance and Third-Party Assessments.
• Responsible for the coordination, evaluation, and management of SOX and SOC internal and external Assessment activities applying both technical and business knowledge to determine end to end requirements for each SOX/SOC testing assessment.

• Work closely with lines of business, Global Information Security, TCOR, application teams, and Risk Leads / TROs to coordinate and manage SOX/SOC Attestations and certifications from planning phase through testing, exception evaluations, and reporting.
• Facilitates and liaises with all stakeholders to provide appropriate responses. (Use risk knowledge to address gap or exception questions.)
• Liaison between Corporate Audit and PwC for SOX/SOC Engagements.
• Maintain tracking of all requests and evidence and facilitate all request from Audit with CIO teams.
• Leads audit preparation and establishes regular call cadence.
• Leads review of evidence with team to ensure response is appropriate, non-contradicting and accurate.
• Tracks deliverables for fulfillment and SLA \xe2\x80\x93 negotiating additional time if needed.
• Packages and uploads evidence to Audit collaboration site.
• Consults and documents observation responses, providing input to mitigating controls and response approach.
• Escalates all concerns to Risk Lead and SLT Audit owner.
• Acts as trusted advisor to CIO Teams as responses are developed.
• Ensure strong, consistent execution of the SOX/SOC and external assessment process.
• Drives partnership and participation with stakeholders, business partners and technical organizations.
• Provides BAU, management and ad hoc reporting of program activities and outcomes.

• Facilitation of SOX/SOC Audit and Exam management.
• Support the implementation of QA/QC processes within the LOB through ongoing monitoring and testing of controls.
• SOX compliance reviews.
• SOD quarterly reviews.

• Acts as an ambassador of the risk culture.
• Need to have great partnership and communication skills, be well organized and the ability to synthesize details into meaningful recommendations, conclusions, and management reporting.
• Partner with Subject Matter Experts to develop and assemble responses for assessment & attestation inquiries to ensure accuracy in all requests for documentation and evidence.
• Contacts Audit for clarity around any ambiguous requests.
• Ensures team has complete point of view and is prepared to escalate and debate observations.
• Consistently meet SLA timelines.
• Know our Process and Drive Efficiency.
• Conduct lessons learned and document the pain points before going straight to the Solution.

• Balance priorities, drive delivery, flawless execution.

RequirementsEducation - Any Graduate/ PostgraduateCertifications If Any

• Risk Management
• CISA
• Internal Auditor

Experience: 10-13 YearsFoundational skills

• 10+ years of relevant work experience
• Professional Domain experience in one or more of the following areas:

• Audit, Compliance or Business Controls
• Information Security
• Infrastructure or Network Operations

• Developed communication and diplomacy skills are required to lead discussions and influence others.
• Demonstrated increasing levels of accountability and ownership.
• A record of collaboration and partnering skills with ability to positively influence and lead change.
• Comfortable with ambiguous situations, capable of analyzing, simplifying, and collaborating to solve complex problems.
• Strategic thinkers, self-starter, organized, versatile, and capable of performing work with minimal management oversight.
• Ability to connect dots and understand impacts of the work that is done and how it can tie into other areas within the team and across GT&O
• MS Office (Outlook, Word, Excel, PowerPoint)

Desired skills

• Good communication Skills- Oral and Written

• Excellent PowerPoint presentation skills
• Good knowledge of Risk management framework

Work Timings- 11.30 AM to 8.30 PM IST (Need to flexible as per business need)Job Location \xe2\x80\x93 Hyderabad, Mumbai, Chennai, Gurugram

Bank of America