CASY-MSCCN Jobs

CASY-MSCCN Logo

Job Information

Bank of America Senior Business Control Specialist in Plano, Texas

Senior Business Control Specialist

Plano, Texas

Job Description:

This is a senior role requiring risk, regulatory and financial industry experience and 5-10 years of relevant experience.

The nature of current and near-term initiatives is such that experience with IT General Computing Controls and audit, compliance/regulatory/SOX, controls, workflow, and technology risk concepts is essential.

Perform assessments of risks, processes and controls.

Identify &/or foresee operational risks and recommend appropriate controls.

Enable delivery of control portfolio with the ability to track and drive implementation of some of those recommendations.

Responsibilities include: defining and evaluating deficiency in technology and operational controls and collaborating to design effective solutions;

Defining the scope and impact of projects and effectively communicating the impact on the organization; establishing project tasks, timelines and effectively managing them.

Analyze existing technology controls. Identify and remediate gaps by partnering with IT development teams.

Work with system component owners to align strategic roadmaps with overall risk and control framework.

Work with IT control owners to streamline and enhance existing governance processes and frameworks.

Enforce and enable compliance with firm-wide risk initiatives and policies.

Develop and foster subject matter expertise in a technology risk domain.

Assist with the quality assurance reviews of various control assessment programs.

Identify and drive opportunities for process improvements to deliver increasing efficiencies.

Own and maintain relationships with a wide range of stakeholders (project managers, IT developers, internal and external control partners).

"Must" have these skills to be minimally qualified.

Prior experience in IT risk management, audit or similar working closely with

development teams.

Knowledge of IT Risk and Control Framework such as COBIT, NIST, ISO 27001

Ability to bridge enterprise control requirements (such as Information Security, Business Continuity/Disaster Recover, Change Management, Identity & Access management) with individual environment for applicability.

Exposure or experience working with counter parts in Audit &/or Regulators.

Strong verbal and written communication skills to effectively lead technical discussions.

Ability to work independently in a fast-paced environment.

The desire and drive to own the responsibility and to accomplish positive

technical results.

Good working knowledge or experience with some of the following risk domains:

o Database and application security

o Access administration

o Infrastructure security

o Security event logging and monitoring

o Database/Application security protocols

o Secure software/code development

o Change management; vulnerability management

o Business Continuity & Disaster recovery

o Software &/or Hardware platform upgrades

o Software development life cycle

General Job Description:

Provide analytical support in executing internal control discipline and operational excellence within a LOB/ECF.

Gather and organize data in order to monitor and test the effectiveness of key controls and status of mitigation and action plans.

Prepare documentation for the tracking, monitoring, and escalation of risk related issues to management.

Acts as an ambassador of the risk culture. Incumbents typically have over 5+ years of risk management and/or LOB/ECF experience.

May manage staff.

Candidates requiring current or future visa sponsorship will not be considered for this position*

*This role is not open to telecommuting or remote arrangements*

Job Band:

H5

Shift:

1st shift (United States of America)

Hours Per Week:

40

Weekly Schedule:

Monday - Friday 8 am - 5 pm

Referral Bonus Amount:

0

Job Description:

This is a senior role requiring risk, regulatory and financial industry experience and 5-10 years of relevant experience.

The nature of current and near-term initiatives is such that experience with IT General Computing Controls and audit, compliance/regulatory/SOX, controls, workflow, and technology risk concepts is essential.

Perform assessments of risks, processes and controls.

Identify &/or foresee operational risks and recommend appropriate controls.

Enable delivery of control portfolio with the ability to track and drive implementation of some of those recommendations.

Responsibilities include: defining and evaluating deficiency in technology and operational controls and collaborating to design effective solutions;

Defining the scope and impact of projects and effectively communicating the impact on the organization; establishing project tasks, timelines and effectively managing them.

Analyze existing technology controls. Identify and remediate gaps by partnering with IT development teams.

Work with system component owners to align strategic roadmaps with overall risk and control framework.

Work with IT control owners to streamline and enhance existing governance processes and frameworks.

Enforce and enable compliance with firm-wide risk initiatives and policies.

Develop and foster subject matter expertise in a technology risk domain.

Assist with the quality assurance reviews of various control assessment programs.

Identify and drive opportunities for process improvements to deliver increasing efficiencies.

Own and maintain relationships with a wide range of stakeholders (project managers, IT developers, internal and external control partners).

"Must" have these skills to be minimally qualified.

Prior experience in IT risk management, audit or similar working closely with

development teams.

Knowledge of IT Risk and Control Framework such as COBIT, NIST, ISO 27001

Ability to bridge enterprise control requirements (such as Information Security, Business Continuity/Disaster Recover, Change Management, Identity & Access management) with individual environment for applicability.

Exposure or experience working with counter parts in Audit &/or Regulators.

Strong verbal and written communication skills to effectively lead technical discussions.

Ability to work independently in a fast-paced environment.

The desire and drive to own the responsibility and to accomplish positive

technical results.

Good working knowledge or experience with some of the following risk domains:

o Database and application security

o Access administration

o Infrastructure security

o Security event logging and monitoring

o Database/Application security protocols

o Secure software/code development

o Change management; vulnerability management

o Business Continuity & Disaster recovery

o Software &/or Hardware platform upgrades

o Software development life cycle

General Job Description:

Provide analytical support in executing internal control discipline and operational excellence within a LOB/ECF.

Gather and organize data in order to monitor and test the effectiveness of key controls and status of mitigation and action plans.

Prepare documentation for the tracking, monitoring, and escalation of risk related issues to management.

Acts as an ambassador of the risk culture. Incumbents typically have over 5+ years of risk management and/or LOB/ECF experience.

May manage staff.

Candidates requiring current or future visa sponsorship will not be considered for this position*

*This role is not open to telecommuting or remote arrangements*

Shift:

1st shift (United States of America)

Hours Per Week:

40

Learn more about this role

Full time

JR-21058061

Band: H5

Manages People: No

Travel: No

Manager:

Talent Acquisition Contact:

Nicole Sanchez

Referral Bonus:

0

Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity and affirmative action, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.

To view the "EEO is the Law" poster, CLICK HERE (https://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf) .

To view the "EEO is the Law" Supplement, CLICK HERE (https://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP_EEO_Supplement_Final_JRF_QA_508c.pdf) .

Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy (“Policy”) establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.

To view Bank of America’s Drug-free workplace and alcohol policy, CLICK HERE .

DirectEmployers