girl looking into her desktop
Back to search results

Senior Mobile Security Strategist

Charlotte, North Carolina;

Job Description:

Come join an exciting team within Global Information Security (GIS). Cyber Security Technology (CST) is a globally distributed team responsible for cyber security innovation and architecture, engineering, solutions and capabilities development, cyber resiliency, access management engineering, data strategy, deployment maintenance, technical project management and information technology security control support.

The Senior Mobile Security Strategist is a key individual contributor on the GIS Cybersecurity Innovation & Strategy Team. We’re looking for an enthusiastic, inspired, creative thinker who can develop innovative strategic security solutions to complex business problems.

In this role you will have responsibility for identifying, defining, developing, security technology strategy across mobile infrastructure security, device security and related technology systems security, and the assessment of new and emerging mobile security technologies.

As a senior member of the team you will engage and partner with senior leaders across the bank leveraging your extensive background in (managing / delivering / implementing / architecting) mobile security technology combined with expertise in organizational and cross-functional communication to develop mobile security strategy, influence roadmaps, solution adoption, champion strategic opportunities / execution plans with the aim to improve security capabilities, reduce risk and position platform security enhancements.

A comprehensive understanding of emerging mobile security challenges is essential; mobile malware, mobile application security risks, mobile OS issues, emerging mobile threats, mobile infrastructure, management platforms (+ capabilities at scale), vulnerability analysis, remediation, evolving industry trends, techniques & tools.

Required Skills:

  • 8-10 years of experience in large scale mobile security technology platform engineering, design, architecture, or strategy (experience in developing security strategy highly desired / preferred)
  • Minimum 5+ years of security technology experience
  • Extensive knowledge of mobile device, platform, software security
  • Strong working knowledge of mobile management platforms (experience with Blackberry UEM and VMware Workspace ONE highly desirable/ preferred)
  • Experience with mobile threat detection and defense techniques preferred
  • Experience with mobile application security testing & analysis preferred
  • Ability to present complex subjects to executive level audiences
  • Ability to undertake and complete tasks independently, meet schedules and delivery timelines
  • Strong written and verbal communications skills (to develop and deliver concise presentations on complex subjects)
  • CISSP, CISSM, or other mobile security certification(s) preferred

The ideal candidate will have experience in several of the following areas:

  • Extensive knowledge of iOS and Android platforms
  • Mobile threat detection
  • Mobile encryption, mobile app containerization
  • Network firewalls, proxy, DMZ architecture, remote access technologies
  • Mobile authentication (FIDO, OAuth, etc.)
  • Mobile management platforms
  • Mobile application management & software delivery
  • Mobile app secure software development experience (including app signing)
  • Code protection, obfuscation, tamper resistance
  • Threat modelling
  • Threat hunting
  • Penetration testing
  • Enterprise Architecture governance and process (in a large enterprise)

Enterprise Role Overview:

Responsible for defining an architectural vision and architecture for large complex solutions, which aligns with the enterprise architecture strategy, technology and platform choices. Describes the solution intent and the associated operating environment, determining the primary systems/subsystems and their interfaces, defining non-functional requirements and architectural runway to support new epics/features and expand into new opportunities. Ensures the solution is fit for purpose and use by working with stakeholders, vendors/service providers, and evaluating the impact of strategic design decisions. Contributes to best practices, standard templates, and the architecture roadmap for defined domains. Contributes in the creation of the architecture roadmap of defined domains (Business, Application, Data and Technology) in support of the product roadmap. Contributes to the development of best practices including standardized templates. Works across business and technology to create the solution intent and architectural vision for large complex solutions and evolves it based on an emerging backlog. Leads rapid shaping of a high level architecture with details filled in with emerging business requirements; ensures architecture is flexible and modular and designed to adapt easily. Facilitates solution driven discussions, leads the design of complex architectures, and finds creative solutions through practical experiments and POCs. Works with Product Manager/Owner to plan and prioritize technology focused backlog items for the architecture runway to enable business epics/features and expand into new opportunities. Clarifies the architecture for the development teams to support implementation, and provides solution options to resolve any architectural impediments. Performs design and code reviews to ensure all non-functional requirements for a solution are sufficiently met (e.g. security, performance, maintainability, scalability, usability, and reliability). Supports the Principal Engineer as needed to select the technology stack needed for solutions, and helps select preferred technology products. Educates team members on the technology practices, standardization strategies and best practices to create innovative solutions. Individual Contributor.

Job Band:

H4

Shift: 

1st shift (United States of America)

Hours Per Week:

40

Weekly Schedule:

Referral Bonus Amount:

0

Job Description:

Come join an exciting team within Global Information Security (GIS). Cyber Security Technology (CST) is a globally distributed team responsible for cyber security innovation and architecture, engineering, solutions and capabilities development, cyber resiliency, access management engineering, data strategy, deployment maintenance, technical project management and information technology security control support.

The Senior Mobile Security Strategist is a key individual contributor on the GIS Cybersecurity Innovation & Strategy Team. We’re looking for an enthusiastic, inspired, creative thinker who can develop innovative strategic security solutions to complex business problems.

In this role you will have responsibility for identifying, defining, developing, security technology strategy across mobile infrastructure security, device security and related technology systems security, and the assessment of new and emerging mobile security technologies.

As a senior member of the team you will engage and partner with senior leaders across the bank leveraging your extensive background in (managing / delivering / implementing / architecting) mobile security technology combined with expertise in organizational and cross-functional communication to develop mobile security strategy, influence roadmaps, solution adoption, champion strategic opportunities / execution plans with the aim to improve security capabilities, reduce risk and position platform security enhancements.

A comprehensive understanding of emerging mobile security challenges is essential; mobile malware, mobile application security risks, mobile OS issues, emerging mobile threats, mobile infrastructure, management platforms (+ capabilities at scale), vulnerability analysis, remediation, evolving industry trends, techniques & tools.

Required Skills:

  • 8-10 years of experience in large scale mobile security technology platform engineering, design, architecture, or strategy (experience in developing security strategy highly desired / preferred)
  • Minimum 5+ years of security technology experience
  • Extensive knowledge of mobile device, platform, software security
  • Strong working knowledge of mobile management platforms (experience with Blackberry UEM and VMware Workspace ONE highly desirable/ preferred)
  • Experience with mobile threat detection and defense techniques preferred
  • Experience with mobile application security testing & analysis preferred
  • Ability to present complex subjects to executive level audiences
  • Ability to undertake and complete tasks independently, meet schedules and delivery timelines
  • Strong written and verbal communications skills (to develop and deliver concise presentations on complex subjects)
  • CISSP, CISSM, or other mobile security certification(s) preferred

The ideal candidate will have experience in several of the following areas:

  • Extensive knowledge of iOS and Android platforms
  • Mobile threat detection
  • Mobile encryption, mobile app containerization
  • Network firewalls, proxy, DMZ architecture, remote access technologies
  • Mobile authentication (FIDO, OAuth, etc.)
  • Mobile management platforms
  • Mobile application management & software delivery
  • Mobile app secure software development experience (including app signing)
  • Code protection, obfuscation, tamper resistance
  • Threat modelling
  • Threat hunting
  • Penetration testing
  • Enterprise Architecture governance and process (in a large enterprise)

Enterprise Role Overview:

Responsible for defining an architectural vision and architecture for large complex solutions, which aligns with the enterprise architecture strategy, technology and platform choices. Describes the solution intent and the associated operating environment, determining the primary systems/subsystems and their interfaces, defining non-functional requirements and architectural runway to support new epics/features and expand into new opportunities. Ensures the solution is fit for purpose and use by working with stakeholders, vendors/service providers, and evaluating the impact of strategic design decisions. Contributes to best practices, standard templates, and the architecture roadmap for defined domains. Contributes in the creation of the architecture roadmap of defined domains (Business, Application, Data and Technology) in support of the product roadmap. Contributes to the development of best practices including standardized templates. Works across business and technology to create the solution intent and architectural vision for large complex solutions and evolves it based on an emerging backlog. Leads rapid shaping of a high level architecture with details filled in with emerging business requirements; ensures architecture is flexible and modular and designed to adapt easily. Facilitates solution driven discussions, leads the design of complex architectures, and finds creative solutions through practical experiments and POCs. Works with Product Manager/Owner to plan and prioritize technology focused backlog items for the architecture runway to enable business epics/features and expand into new opportunities. Clarifies the architecture for the development teams to support implementation, and provides solution options to resolve any architectural impediments. Performs design and code reviews to ensure all non-functional requirements for a solution are sufficiently met (e.g. security, performance, maintainability, scalability, usability, and reliability). Supports the Principal Engineer as needed to select the technology stack needed for solutions, and helps select preferred technology products. Educates team members on the technology practices, standardization strategies and best practices to create innovative solutions. Individual Contributor.

Shift:

1st shift (United States of America)

Hours Per Week: 

40

Learn more about this role

Full time

JR-21051125

Band: H4

Manages People: No

Travel: Yes, 5% of the time

Manager:

Talent Acquisition Contact:

Michael Geddie

Referral Bonus:

0

Colorado job seekers

Colorado pay range:

$144,000 - $197,800 annualized salary, offers to be negotiated based on experience, education and skill set.

Discretionary incentive eligible

This role is eligible to participate in the Corporate Performance Incentive Plan. Qualified employees are eligible for an annual discretionary award based on their overall individual results and behaviors performance at year-end (limited roles may also qualify for incentives during performance year).

Benefits

This role is eligible for all usual company benefits. At Bank of America, our employees are the foundation of our success. That’s why we’re committed to offering a variety of competitive programs and benefits that support your physical, emotional and financial wellness both at work and at home.