Onsite Third Party Information Security Assessor

Job Description:
The Onsite Third Party Assessor will conduct information security and business continuity assessments of vendors providing services to Bank of America. To succeed in this role, you should be highly motivated and possess strong, hands-on, technical knowledge of a wide range of information security and business continuity controls and the processes used for evaluating their design and effectiveness. Must be able to travel up to 50%.
You should also possess strong written and verbal communication skills including ability to communicate clearly and concisely to various levels, up to and including executive level management, and explain the need for key controls to technical and non-technical resources.
Technical skills within the domains of information security and business continuity to include but not limited to:

• Information Security Controls (Infrastructure Security, Access Management, Physical Security, etc.)
• IT Compliance
• Threat and Vulnerability Management
• Enterprise Risk Management
• Application Security
• System Administration
• Network Administration

Required Skills:

• Minimum of 7 years of experience
• Previous information technology/security audit/assessment experience.
• Ability to work both independently as well as part of an assessment team.
• Ability to plan, execute and document assessment activities following established processes and procedures.
• Must be able to travel up to 50%.

Desired Skills:

• CISSP, CCSP and/or CISA certifications are preferred
• Preference for 10 or more years of experience

Enterprise Role Overview:
Responsible for defined work or projects of moderate scope and complexity to identify and mitigate third party information security risks. Works under the guidance of a more senior-level manager with limited direction. Possesses extensive technical or functional knowledge in third party risk management, information security, business continuity, and governance. Interacts extensively with internal or external stakeholders including business partners and/or external parties to identify, analyze, and resolve complex problems or security gaps. Typically has 3-5 years of relevant experience.
Shift:
1st shift (United States of America)
Hours Per Week:
40
Pay and benefits information
Colorado pay range:
$90,000 - $136,300 annualized salary, offers to be determined based on experience, education and skill set.
Discretionary incentive eligible
This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.
Benefits
This role is currently benefits eligible . We provide industry-leading benefits, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.