Information Security Consultant

Bank of America

What would you like the power to do? For you and your family, your business, and your community. At Bank of America, our purpose is to help make financial lives better through the power of every connection.

Job Title: Information Security Consultant

Corporate Title: VP

Company Overview:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities, and shareholders every day.

One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.

Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.

Working at Bank of America will give you a great career with opportunities to learn, grow, and make an impact, along with the power to make a difference. Join us!

Location Overview:

Our office in Camberley, Surrey is conveniently situated to the southwest of central London, perfectly placed for people commuting on the M3, M25, and M4, making it easy to get from Hampshire, Berkshire, London, and beyond. We also run a morning and afternoon shuttle car service to the office, from both Farnborough Main and Camberley train stations.

Role Description:

Global Information Security (GIS) is responsible for protecting the bank’s information systems, confidential and proprietary data, and customer information through a proactive strategy, the deployment of innovative and an agile operating model.

Being part of the GIS team offers you the opportunity to be part of a world-class information security. These teams cover all aspects of Information Security including the development of strategy and policy; vulnerability identification; monitoring, detecting, and responding to cybersecurity incidents.

The Information Security Risk & Metrics Specialist is aligned to the EMEA Regional Information Security Office and will be based in Camberley, reporting into the Regional Information Security COO.

This role will act as subject matter expert for information security metrics and will work with the senior leadership team on defining, implementing, and delivering the overall risk measurement approach in region. This will ensure a focus on the risk priorities relating to information security.

Responsibilities:

1. Provide advisory and oversight on information security risks metrics and be a trusted advisor to senior Leadership team and country information security officers.
2. Keep abreast of the evolving cyber security and regulatory landscapes and develop appropriate risk management and governance solutions & insights.
3. Assess and discuss risk metrics and governance in a regional context, with a lens on differences in markets and regulatory environments.
4. Participate in periodic deep dives and tabletop exercises to ensure processes stay current.
5. Collaborate with regional and global Information Security functions to prevent, detect, mitigate, and respond/recover to information security issues.
6. Partner closely with wider technology groups to ensure information security risks metrics are socialized and timely action is taken.
7. Participate in risk awareness activities in the region based on the risk and threat landscape.

What we are looking for:

We are looking for someone who has extensive experience in information security, including application security, development of metrics and experience in understanding and evaluating cyber security controls.

1. Proven risk management experience with ability to effectively apply risk principles to challenging business situations.
2. Have validated experience of scalable risk & governance processes in multinational organisations.
3. Exceptional communication skills with excellent influencing and problem-solving abilities.
4. Extensive experience in data visualization and storyboarding for an executive audience.
5. Practical experience in NIST Cybersecurity Framework or related frameworks and their application.
6. Risk management experience in both UK and EU regulatory environments.
7. Ability to comfortably deliver messages across a wide spectrum of individuals having varying degrees of technical understanding.
8. Influencing skills and qualities which enable you to work with peers and various levels of management.

Skills that will help:

1. Bachelor’s and/or master’s degree in computer science, Information Technology, or related field.
2. Relevant information security certifications such as CISSP, CISM, CISA or similar.

Benefits of working at Bank of America:

UK

1. Private healthcare for you and your family plus an annual health screen to help you manage your physical wellness with the option to purchase a screen for your partner.
2. Competitive pension plan, life assurance, and group income protection cover if you become unable to work as a result of a disability or health reasons.
3. 20 days of back-up childcare including access to school holiday clubs and 20 days of back-up adult care per annum.
4. The ability to change your core benefits as well as the option of selecting a variety of flexible benefits to suit your personal circumstances including access to a wellbeing account, travel insurance, critical illness etc.
5. Access to an emotional wellbeing helpline, mental health first aiders, and virtual GP services.
6. Access to an Employee Assistance Program for confidential support and help for everyday matters.
7. Ability to donate to charities of your choice directly through payroll and the bank will match your contribution.
8. Opportunity to access our Arts & Culture corporate membership program and receive discounted entry to some of the UK’s most iconic cultural institutions and exhibitions.
9. Opportunity to give back to your community, develop new skills and work with new groups of people by volunteering in your local community.

Bank of America:

Good conduct and sound judgment is crucial to our long term success. It’s important that all employees in the organisation understand the expected standards of conduct and how we manage conduct risk. Individual accountability and an ownership mind-set are the cornerstones of our Code of Conduct and are at the heart of managing risk well.

We are an equal opportunities employer and ensure that no applicant is subject to less favourable treatment on the grounds of sex, gender identity or gender reassignment, marital or civil partner status, race, religion or belief, colour, nationality, ethnic or national origins, age, sexual orientation, pregnancy or maternity, socio-economic background, responsibility for dependants or physical or mental disability. The Bank selects candidates for interview based on their skills, qualifications, and experience.

We strive to ensure that our recruitment processes are accessible for all candidates and encourage any candidates to tell us about any adjustment requirements.