Senior Information Security Architect (Mobile Security)

Job Description:

The Security Architect role is responsible for guiding on the design, development, and implementation of architectural principles to secure systems end to end.  In this role, you will be required to understand foundational security requirements within existing Bank of America policies, architectural designs, and principles, as well as the business partner's requirements for the applications/systems.  These requirements will then be used to make determinations and recommendations on the technical and operational feasibility of the solutions.  Recommendations and outcomes will be reviewed by Technology Leadership and internal Control Function partners, including but not limited to:

• New or modified architectural designs referencing core security controls and requirements end to end
• New or modified security policies or procedures based on the technology, industry best practices, and laws, rules, or regulations
• Risk and/or threat assessment outputs for technical design and implementation phases
• Go or no-go recommendations based on known risks
• Verification of design to production implementation with security testing functions

You will also use your strong communications skills on a regular basis. You will bridge the gap between various development teams for designing solutions and business partners to fully understand their requirements. You will be the primary liaison with technology, security, compliance and Senior Technology Managers.

Required Skills:

• 7+ years of prior security architecture experience
• Strong knowledge of Mobile security for Android or iOS operating systems.
• Strong knowledge across the technology stack such as web protocols, multiple operating systems, hypervisors and distributed systems architecture.
• Experience and hands on knowledge of Identity Access management security controls
• Experience and exposure to Information Security principles is preferred.
• Ability to balance the pragmatic need to deliver while maintaining a high level of architectural purity.
• Strong communication skills
• Experience designing highly available, geographically distributed, dynamically scalable, API-driven services.
• Experience in Security Engineering, Virtualization, and Automation
• Experience with Point-of-sale (POS)

Desired Skills:

• Risk and compliance engagement, including policy and procedure development
• Understanding of Threat modeling and risk assessment methodologies and tooling
• Experience in Banking or Financial Technology
• Experience in developing security solutions within the mobile product space. 

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

Shift:

Hours Per Week: