Back to search results

Security & Solutions Design (SSD) Program Governance Manager

Denver, Colorado;

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.

One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.

Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.

Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!

The BISO Security and Solutions Design (SSD) team leader will manage the Program Governance team including aligned processes and functions within the BISO organization that function to provide technical consulting and assurance to our development and infrastructure teams as they build, change or develop technology solutions. 

SSD Program Governance leader provides oversight and ownership of Governance for Change management, SPIs, playbooks, and user guides for the program. The leader will be responsible for the team executing Central Intake Framework and Central Quality Assurance within the Secure by Design program. The team lead will take on several additional global initiatives throughout the year on behalf of the SSD team and will liaise closely with peers in EMEA and APAC. In addition, the Program Governance Lead forms part of the leadership team for Security and Solutions Design and reports directly to the BISO SSD Information Security Executive.

The Program Governance team: 

• Enables the business by providing strategic guidance, resources, governance, and oversight while enforcing information security control objectives

• Performs Central Intake and Quality Assurance reviews of Secure by Design Evaluations and Permit To Send requests on behalf of the GIS BISO organization, as part of the overall enterprise processes

• Communicates with subject matter expertise in the scope of bank enterprise tollgates, understanding of potential information security impact of technical changes (including interpretation of conceptual technology design diagrams), and communicates with intent to discover details and ensure that finalized requests provided to GIS contain accurate and consistent information from a variety of sources

• Responsibilities will include subject matter expert in security-relevant technical changes, operating model, management of QA and metric reporting, and communication

Required Qualifications:

You will be successful in this role with these attributes:

• 10+ years as an Information Security / Technology professional within a highly-regulated industry

• 5+ years of risk identification experience

• Team leading experience and experience managing day to day operation 

• Excellent communication and presentation skills with demonstrated capability in presenting technical data effectively to varied audiences 

• Exposure to transformational projects, which include process optimization and automation 

• Exposure to multiple security engineering disciplines, such as application security, cryptography, network security, system security, and security policies 

• Strong technical capabilities with demonstrated focus in at least one of the above disciplines 

• Ability to promote secure design principles and a security-focused outlook across the Enterprise 

• Knowledge of cybersecurity and privacy principles 

• Ability to take ownership of an initiative/issue and take it to completion 

• High energy, focus on delivering results, and self-motivated 

• Strategic thinking – high-potential ideation beyond what has succeeded in the past

• Leverages established laws, rules, regulations, and policy to rationalize decisions – comfortable providing feedback to internal policy owners when asked

• Proficiency with Jira Service Manager, Application HQ, enterprise tollgate tools (ex. CECE, GCGF Intake, PTS/R), and various GIS reporting tools (ex. Tableau, Continuous Monitoring, RSAM, Trident)

• Influencer – energized by sharing fresh methodology, and leading others to adoption of improvements

• Critical thinking – one of the first who: grasps new concepts, understands the connections between SSD work and that of other teams, and sees potential pit-falls

• Experience managing transformational projects, including process optimization and automation

• Experience with evaluating threats / risks posed by new technologies spanning networks, hardware, software etc. 

• Knowledge of bank risk-related routines (GIS Risk Forum, Issue management, Audit and GCOR continuous assessment, etc.) 


1st shift (United States of America)

Hours Per Week: 


Learn more about this role

Full time


Manages People: Yes

Travel: No

Colorado pay and benefits information

Colorado pay range:

$162,400 - $215,900 annualized salary, offers to be determined based on experience, education and skill set.

Discretionary incentive eligible

This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.


This role is currently benefits eligible. We provide industry-leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.