Experience Inc. Jobs

Compliance and Operational Risk Manager (Security Log Management)

Charlotte, North Carolina;Jersey City, New Jersey

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.

One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We're devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.

Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.

Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!

Role Responsibilities:

The Compliance and Operational Risk (C&OR) Manager is responsible for engaging in activities to provide independent compliance and operational risk oversight of Front Line Unit or Control Function (FLU/CF) performance and any related third party/vendor relationships in alignment with the Global Compliance - Enterprise Policy, the Operational Risk Management - Enterprise Policy (collectively the Policies) and the Compliance and Operational Risk Management (CORM) Program and Standard Operating Procedures (SOPs).

As a member of an FLU or CF C&OR officer team, the C&OR Manager is accountable for proactive identification, management and escalation of compliance and operational risks through the execution of some or all of the below identified activities. This role exercises judgment and influence, and may constructively challenge FLU and CF leaders to support the CORM Program objectives, balancing business strategy with appropriate controls.

Logging and Monitoring SME

The logging and monitoring SME performs technical deep dives and targeted assessment on Global Information Security’s ability to detect anomalous/malicious activity through proper use case development, logging and monitoring. This role analyzes the use case construction, technical nuances in log data to ensure effectiveness in detection, alert lifecycle maintenance and fidelity of alerting.

Required Skills:

• 8+ years of experience with cyber security policies, processes and practices

• 4+ years of experience with enterprise security log management

• Very strong knowledge of network, application and host logging

• Very strong knowledge of Security Information and Event Management (SIEM) analysis, monitoring and alerting

• Understanding of deployment, configuration, and maintenance of log agents across UNIX and Windows platforms

• Knowledge of regular expression, scripting, and application development languages

• Knowledge of alert lifecycle management

• Understanding of cyber security risk management frameworks and models

• Understanding of security compliance and operational risk management

• Ability to assess security controls and determine gaps in control coverage

• Ability to effectively communicate residual risk point of view to senior stakeholders

• CISSP, CISM or CRISC or equivalent required

Desired Skills:

Technical degree

Shift:

1st shift (United States of America)

Hours Per Week:

40

Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity and affirmative action, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.

To view the "EEO is the Law" poster, CLICK HERE (https://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf) .

To view the "EEO is the Law" Supplement, CLICK HERE (https://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP_EEO_Supplement_Final_JRF_QA_508c.pdf) .

Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy (“Policy”) establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.

To view Bank of America’s Drug-free workplace and alcohol policy, CLICK HERE .