Back to search results

Information Security Threat Mgmt Specialist

Denver, Colorado;

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.

One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.

Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.

Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!

Job Description:
This job is responsible for supporting evaluations of cyber security threats and updating defensive capabilities to reduce the bank's risk of exposure. Key responsibilities include conducting analyses of the threat environment and threats to the bank, including post incident analysis, applying a multi-faceted situational awareness of cyber security processes to protect against threats, and implementing proactive defensive actions for the security, continuity, and confidentiality of information.


  • This role reports directly to the Technology Executive for Identity Access and Management Cloud, Catalog, Lifecycle and Certification Services. 

  • Primarily responsible includes assisting identity and access management leads and partners with other technology SMEs to ensure that strategic and effectively solutions are adopted across the bank and aligned to compliance withing policies and standards.

  • Support leads to ensure that all identity and access management related IAM requirements are appropriately measured, reported and governed.

  • Appropriately assess identity and authentication related risks when business and technology decisions are made, demonstrating risk management mindset and practices to safeguard BAC’s reputation, its clients, and assets by driving compliance with applicable laws, rules, and regulations, adhering to BAC Policy and Standards.

  • Monitors industry information security and Identify trends and engages peer organizations to refine and enhance BAC’s strategy.

  • Apply industry Identity and Authentication best practices, templates, and documentation while also proposing improvements based on practical knowledge.

  • Establish and maintain strong partnership with other Global Information Security (GIS) functions, Core Technology Infrastructure (CTI), Cyber Security Technology (CST), Third Party management, Global Compliance and Operations Risk (CGOR), internal audit, and regulatory agencies.

  • Influence relevant tools owners to build/implement enhanced Identity and Authentication solutions that are efficient, effective, and modern and able to deliver material risk reduction in sustainable manner.

  • Collaborate with stakeholders to develop Identity and Authentication requirements that iteratively support long term modernization and transformation (covers Process, Data and Technology aspects).

  • Engage with Product Managers and Senior Architects to comprehend the strategic Identity and Authentication technology roadmap, which dictates the need for modernized security principles.

  • Consult with the business to identify gaps and governance issues, leveraging own domain expertise to find effective solutions.

  • Clearly articulate reasons and methods behind proposed changes through informative materials for educating others.

  • Provide education to team members and technology partners regarding the proposed changes.

  • Partners with the policy governance team for socialization and publication of proposed changes to the relevant Standards

  • Takes accountability for addressing identity and authentication risks. Proactively identify risk and ways to continuously enhance and improve BAC’s controls. Implement and take decisive actions in finding solutions. Drives towards intended outcomes.

  • Engage senior management to provide factual, transparent, and timely reporting on existing and emerging identity and authentication risks.

  • Active participation in GIS IAM forums including but not limited to Monthly IAM Stakeholder Forum and Control Owner Forum for standard and Single Process Inventory (SPI) enhancements.

  • Supports audit issues for closure and sustainability.

Required Qualifications:

  • Knowledge and understanding of access management and identity specific laws, rules, and regulations within the financial services sector.

  • Understanding and interpreting BAC’s established information security Policy, Standards, Procedure and Guides, and applying this knowledge to related identity and authentication decisions and response. Serve as the Subject Matter Experts in advising BAC business and technology counterparts on effective ways to achieve or exceed compliance with applicable Policy, Standards, Procedures and Guides.

  • Familiarity with security standards such as NIST, ISO/EC, FFIEC.

  • Possession of CISSP certification would be an advantage.

  • Knowledge of identity and authentication methodologies, techniques and technologies.

  • Knowledge of PAM related tools which support, MFA, vaulting, integration with service management tool would be an advantage.

  • 4 years relevant hands-on experience in identify and authentication fields in a large and complex organization.

  • Security knowledge which covers core technology infrastructure (network, storage, servers, databases, etc.) identity management and application security practice.

  • Experience with Linux, Windows, Cloud scale Identity, Access Management, design and architecture of authentication services or Identity Store.

  • Knowledge of authentication platforms such as Active Directory, LDAP, Kerberos, LDAP, Radius.

  • Knowledge on Federation platforms or protocols such as Oauth, OpenID, SAML, WS-Fed, etc.

  • Experience with IAM platforms such as Ping Identity, Active Directory OpenLDAP, OpenDJ

  • Experience in consumption of Web Service APIs such as JSON / XML

  • Proficient in articulating facts and data-driven plans and to partner with stakeholders to implement intended solutions to drive risk reductions and adherence to relevant Identity and Authentication requirement within IAM standards.

  • Strong attention to detail and advanced analytical skills.

  • Excellent communication and presentation skills.

  • Excellent organizational skills and be able to effectively prioritize multiple tasks

  • Hands on experience and involvement in large and complex projects

  • Proficient in data management which includes strong data analytical capability with advanced understanding of the collection and management of metadata

Desired Qualifications:

  • Efficient in motivating, engaging, and leveraging other teams and business partners to efficiently deliver business solutions. Proven track record of influencing and relationship management skills.

  • Proficient in Microsoft Office suite of products with ability to quickly analyze and synthesize large volumes of data

  • Pro-active and able to drive direction of work that needs to be completed, ability to work independently on initiatives with little oversight. Motivated and willing to learn.

  • Confident and effective in delivering messages across a wide spectrum of individuals with varying degrees of technical and business understanding

  • Deep knowledge of bank financial practices and policies and ability to adapt to fast changing environment

  • Knowledge of Compliance Certifications such as SOX, SOC, SOC2.

This job will be open and accepting applications for a minimum of seven days from the date it was posted.


1st shift (United States of America)

Hours Per Week: 


Learn more about this role

Full time


Manages People: Yes

Travel: No

Colorado pay and benefits information

Colorado pay range:

$93,700 - $141,700 annualized salary, offers to be determined based on experience, education and skill set.

Discretionary incentive eligible

This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.


This role is currently benefits eligible. We provide industry-leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.