Skip to main content

Senior Information Security Officer (BISO) – Cloud Governance

Denver, CO; Chicago, IL; - United States

Job number: 19015728

Back to job search results

Job Description:

The Senior Information Security Officer – Cloud Governance will be a member of the Business Information Security Officer (BISO) organization. In this role, you will work closely with the line of business BISOs, the company’s cloud governance body, and the Chief Technology Office (CTO) to ensure effective evaluation of and adherence to security requirements and controls for business and technology solutions hosted on public cloud platforms, whether implemented directly by the company with Infrastructure-as-a-Service (IaaS) providers or through third party Software-as-a-Service (SaaS) or Platform-as-a-Service (PaaS) providers. You will be supporting a specialized technology and security area to develop a deep understanding of risks and controls in order to have risk-based information security discussions and enable defensible governance decisions. This relationship will ensure a focus on the right risk priorities. You will also provide guidance on information security topics, policies, processes, and controls as it pertains to cloud computing  .



• Possesses strong / experienced technology governance, risk management, or information security background; with solid knowledge of technology lifecycle from sourcing, policy, SDLC (design, testing, deployment), to production operations and the different risk elements associated with each phase.

• Serves as an information security subject matter expert and participates in the establishment and continuous improvement of cloud security requirements and control review of the company’s cloud governance process.

• Provides guidance and advocacy regarding the prioritization of business and technology investments that impact information security for the use of cloud computing technology.

• Advises business and technology management on risk issues related to cloud security and recommends actions in support of the bank's wider risk management and compliance programs.

• Monitors cloud security trends internal and external to the company and keeps governance body and information security leadership informed about information security-related threats and risks.

• Manages quality control and reporting of relevant cloud security governance and evaluation processes.

• Ensures compliance with policies and laws/rules/regulations related to cloud computing and cloud security.

Risk Management

• Drives GIS and LOB cloud governance deliverables that pertain to information security.

• Collaborates with risk partners on info security critical priorities.

• Identifies and measures global information security (GIS) controls related to cloud governance and cloud computing implementations.


• Has a deep understanding of security for cloud computing platforms.

• Ability to build strong partner relationships with peer technology groups.

• Supports the triage process and helps them understand the GIS support structure.

• Drives required risk culture and partnership with peer technology teams.

• Participates in key operating routines to drive information security risk strategy.


• Information Security & Technology professional with 10+ years of information security or technology risk management experience with proven ability to effectively apply risk principles to challenging business and technology situations.

• Strong subject matter expertise in cloud security and development of risk appetite.

• Significant experience evaluating cyber security controls and providing guidance for platform or distributed computing platforms (Cloud – IaaS, PaaS, SaaS).

• Exceptional executive presentation and communication skills; Comfortable in delivering messages across a wide spectrum of individuals having varying degrees of technical understanding.

• Strong leadership skills and qualities which enable you to work with peers and various levels of management; Excellent influencing and problem resolution skills.

Desired skills:

Bachelor's degree, or higher, in Information Technology or related field.

Posting Date: 04/15/2019

Denver, CO, Union Station, 1801 16th St,
Chicago, IL, 135 S LA SALLE ST (IL4135),
- United States

Travel: Yes, 5% of the time

Full / Part-time: Full time

Hours Per Week: 40

Shift: 1st shift

Already have a candidate profile? Log in to access and update your current profile to access and update your current profile.

Assistance for Applicants with Disabilities

Bank of America is committed to ensuring that our online application process provides an equal employment opportunity to all job seekers, including individuals with disabilities. If you believe you need a reasonable accommodation in order to search for a job opening or to submit an application, please visit the Applicants with Disabilities page.

Diversity & Inclusion

At Bank of America, our commitment to diversity and inclusion is helping us to create not only a great place to work, but also an environment where our employees, our customers and our communities around the world can reach their goals and connect with each other. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.

Frequently Asked Questions

Need to know how to apply online, view a list of your submitted job applications or reset your password? Visit our FAQ section for answers to these questions and more.

Bank of America Employees

Bank of America employees should access the internal jobs database.