Info Security Consultant I B

Mumbai, India; Madhapur, Hyderabad

Refer a friend

Job Description:

About Us

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.

One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.

Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.

Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!

Global Business Services

Global Business Services delivers Technology and Operations capabilities to Lines of Business and Staff Support Functions of Bank of America through a centrally managed, globally integrated delivery model and globally resilient operations.

Global Business Services is recognized for flawless execution, sound risk management, operational resiliency, operational excellence and innovation.

In India, we are present in five locations and operate as BA Continuum India Private Limited (BACI), a non-banking subsidiary of Bank of America Corporation and the operating company for India operations of Global Business Services.

Process Overview

The Global Information Security (GIS) is responsible for protecting Bank information systems, confidential and proprietary data, and customer information. The team develops the Bank’s Information Security strategy and policy, manages the Information Security program, and identifies and addresses vulnerabilities, Develops, deploys and manages a risk-based controls portfolio, Manages and operates global security operations center that monitor, detects and responds to cybersecurity incidents.

GIS Identity & Access management (IAM) Access Control Team goal is to ensure that the control processes and effectiveness are within the identified risk tolerance. Manage the performance and effectiveness of the working control through the establishment of metrics with thresholds. Validate the reasonability of Laws, Rules and Regulations mapping alignment to the controls, as aligned by the GIS Policy team.

The primary team functions include provisioning and de-provisioning based on fully approved Access Request Management (ARM) tickets, support and escalation functions based on IT Service Management (ITSM) tickets for enterprise platforms (Mainframe/Midrange platform and Windows platform).

Job Description

GAO Analyst shall be responsible for working on administering user ID platform access and protecting information residing on Bank’s domain and platforms. He/ She will facilitate requests with Lines of Business in the Bank to ensure the access requests are performed to meet process SLO

Provides consulting expertise to line managers on productivity issues, analyzes operational impact in the business brought by the project parameters

Responsibilities

• Access Provisioning and De-Provisioning - Performs user id administration (additions, modifications, deletions) for operating systems and in-house platforms or pre-defined Role Based Access Control definitions

• Termination – Perform access De-provisioning of users who have left the organization or transferring to/from other hierarchies.

• Incident Management – Basic platform access related issues on Login issues, Password issues, Access Locked/Disabled

• Generate reports to perform in-depth analysis and data collection for issues associated with IAM.

• Audit Reports and Inactive users report - Performs inactivity cleanup for users on various applications

• Automation/Process building/ Re-Engineering skills - Maintains organization's effectiveness and efficiency by defining, delivering, and supporting strategic plans for implementing information technologies, process improvements & automations.

• Risk Management - Review and Monitor the process for risk evaluation and reduction along with audit readiness

Requirements

Education: BE/BTECH/MCA/MSC (IT) equivalent (Any Technical Degree)

Certifications If Any: ITIL, MCP, Security+, CISA/CISM

Experience Range: 4-6 yrs

Foundational skills

A minimum of 4+ years of experience in Identity and Access Management domain is required.
Strong understanding of InfoSec and Cybersecurity
Good understanding of multiple platforms, (Windows, Mainframe & Midrange)
Strong quantitative, Analytical and problem-solving skills
Good knowledge of cloud-based identity and access management solutions such as AWS IAM, Azure AD, or Google Cloud Identity
Good Scripting or automation tools knowledge (PowerShell, Shell Scripting etc..)
Hands-on experience with Ping Identity solutions, especially PingIDM (required
Excellent written, verbal communication and presentation skills
Willingness to work in shifts
Ability to efficiently acquire and utilize new skills in response to change
Experience working in a team-oriented, collaborative environment.

Desired skills