girl looking into her desktop
Back to search results

Senior Information Security Architect

Denver, Colorado;

Job Description:

The Senior Information Security Architect will be a member of the Business Information Security Officer's (BISO) - Secure Solutions Design team and work closely with the line of business technical and project teams to deliver strategic projects.

The role participates and guides the development of a system architectures and conducts security and business information flow studies. Provides integrated systems reviews and recommends new or different technologies that will enhance current system security and support overall corporate and business goals.  Conduct system architecture security studies of new and existing IT systems to ensure systems operate within Bank of America’s security policies.  Recommends design components to secure the system and align with Global Information Security policies and risk tolerance.  Interfaces with vendors, consultants, and senior technologists to support the business indicatives and goals.

Serves as a fully seasoned/proficient technical security resource; accountability is for technical and security knowledge and capabilities as a team member or as an individual contributor. Will not have direct reports but will influence and direct activities of a team related to special initiatives or operations. Typically 7 or more years of Information Security and IT experience

Required Skills:
- Expertise in creation and review of technical diagrams of infrastructure and data flow diagram using Visio.
- Expertise in creation of threat models using STRIDE methodology using Microsoft Threat Modeling Tool or comparable tools.
- Experience with various enterprise technology domains such as cloud (Azure, AWS, GCP), networking, cryptography, identity and access management, and virtualization and containers.
- Capable of creating documentation to articulate the results of the system architecture security studies.
- Ability to educate teams on Global Information Security policies and the risks of non-compliance.
- Strong communications, writing, and presentation skills

Desired Skills:
- Industry recognized Information Security certifications – CISSP, CISM, CRISC, CISA, CCSP, CCSK or any other well recognized vendor specific certifications
- Experience in using other similar threat modeling tools and methodologies.

Job Band:

H4

Shift: 

1st shift (United States of America)

Hours Per Week:

40

Weekly Schedule:

Referral Bonus Amount:

0

Job Description:

The Senior Information Security Architect will be a member of the Business Information Security Officer's (BISO) - Secure Solutions Design team and work closely with the line of business technical and project teams to deliver strategic projects.

The role participates and guides the development of a system architectures and conducts security and business information flow studies. Provides integrated systems reviews and recommends new or different technologies that will enhance current system security and support overall corporate and business goals.  Conduct system architecture security studies of new and existing IT systems to ensure systems operate within Bank of America’s security policies.  Recommends design components to secure the system and align with Global Information Security policies and risk tolerance.  Interfaces with vendors, consultants, and senior technologists to support the business indicatives and goals.

Serves as a fully seasoned/proficient technical security resource; accountability is for technical and security knowledge and capabilities as a team member or as an individual contributor. Will not have direct reports but will influence and direct activities of a team related to special initiatives or operations. Typically 7 or more years of Information Security and IT experience

Required Skills:
- Expertise in creation and review of technical diagrams of infrastructure and data flow diagram using Visio.
- Expertise in creation of threat models using STRIDE methodology using Microsoft Threat Modeling Tool or comparable tools.
- Experience with various enterprise technology domains such as cloud (Azure, AWS, GCP), networking, cryptography, identity and access management, and virtualization and containers.
- Capable of creating documentation to articulate the results of the system architecture security studies.
- Ability to educate teams on Global Information Security policies and the risks of non-compliance.
- Strong communications, writing, and presentation skills

Desired Skills:
- Industry recognized Information Security certifications – CISSP, CISM, CRISC, CISA, CCSP, CCSK or any other well recognized vendor specific certifications
- Experience in using other similar threat modeling tools and methodologies.

Shift:

1st shift (United States of America)

Hours Per Week: 

40

Learn more about this role

Full time

JR-22044088

Band: H4

Manages People: No

Travel: Yes, 5% of the time

Manager:

Talent Acquisition Contact:

Nick Skaric

Referral Bonus:

0

Colorado pay and benefits information

Colorado pay range:

$139,200 - $173,000 annualized salary, offers to be determined based on experience, education and skill set.

Discretionary incentive eligible

This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.

Benefits

This role is currently benefits eligible. We provide industry-leading benefits, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.