e.g. job, company, title
e.g. city, county or postcode
advanced search »

Information Security Controls Senior Specialist (Risk Management Manager)

Bank of America

Apply for this job

Job Title: Information Security Controls Senior Specialist (Risk Management Manager)

LOB: Global Information Security

Corporate Title: Senior Vice President

Location: Camberley or London

One of the world’s leading financial institutions, we have 66 million customers ranging from individuals to businesses to governments and we are committed to growing responsibly. We’ve been building meaningful connections in Europe, the Middle East and Africa for 90 years, and you’ll find our 200,000-strong workforce in more than 35 countries worldwide.

The role will be overseeing the delivery of the risk agenda within GIS in region. You will oversee the delivery of regional risk management, engaging with global control owners to support remediation efforts in EMEA that are directly attributed to GIS and those that impact GIS.

Global Information Security (GIS) helps to assess threats and set priorities and create flexible programs to actively manage specific risks to the Bank. We are responsible for conducting security assessments in order to mitigate various threats including but not limited to, security breaches, property theft, insider trading, fraud and avoidance of security controls. Our team provides these services to internal client groups regionally, and as part of a global team that spans multiple time zones.

You will be a fundamental part of the regional Governance Risk and Compliance (GRC) team, reporting to the regional GRC lead. You will possess a deep understanding of operational risk and the framework requirements associated with its management, backed by sound technical understanding and proven practical experience.


  • Planning, designing and implementing an overall information security risk management process for GIS in region
  • On-going assessment and evaluation of risks impacting GIS
  • Supporting partners in the production of the Risk & Control Self-Assessment (RCSA), whilst ensuring that the review and overseeing that mechanism maintains accuracy and completeness of RSCA content
  • Maintaining an oversight of GIS controls monitoring and testing within region to ensure that deployment and operational status is commensurate with organisational and regulatory expectations
  • Audit issue oversight
  • Engagement with local regulators as required to update on the status of the GIS program
  • Direct integration to the GIS risk reporting and escalation processes
  • Providing risk-based oversight and monitoring of issues, risks and control enhancement
  • Oversight of vulnerability remediation in the region

Core skills:

  • A recognised risk/control-related professional qualification
  • Deep background and experience in risk management in a financial services organisation with specific focus on information security and technology risks
  • Successful record in managing and driving improvements to information security risk management practices
  • High quality communicator, who is able to deliver difficult messages and resolves issues with stakeholders at all levels
  • Excellent oral and written briefing skills, with the ability to clearly articulate both strategic and tactical risks
  • Knowledge of the regional regulatory environment and how mandates relate to information security
  • Information security risk modelling experience
  • Experience in team management

We offer a competitive Salary and Benefits package.

Learn more about our benefits here.

Excellent conduct and sound judgment is crucial to our long term success. It’s important that all employees in the organisation understand the expected standards of conduct and how we manage conduct risk. Individual accountability and an ownership mind-set are the cornerstones of our Code of Conduct and are at the heart of managing risk well.

For more information on our commitment to ESG, visit about.bankofamerica.com

We are an equal opportunities employer, and ensure that no applicant is subject to less favourable treatment on the grounds of gender, gender identity, marital status, race, colour, nationality, ethnic or national origins, age, sexual orientation, socio-economic background, responsibilities for dependants, physical or mental disability. The Bank selects candidates for interview based on their skills, qualifications and experience.

As part of our standard hiring process to manage risk, please note background screening checks will be conducted on all hires before commencing employment.

Posting Date: 18/09/2019


Full / Part-time: Full time

Hours Per Week: 35

Apply for this job


The number of jobs in each salary range for all:

Similar jobs
By creating an alert, you agree to our T&Cs and Privacy Notice, and Cookie Use.
Information Security/Senior Information Security Analys

GCS Recruitment Specialists Ltd
£30000 - £60000 per annum
more details »

Information Security Specialist

American Express Global Business travel
more details »

Information Security Analyst

GCS Recruitment Specialists Ltd
£30000 - £45000 per annum
more details »

Information Security Analyst

GCS Recruitment Specialists Ltd
£30,000 per annum
more details »