Responsible for supporting the Cyber Crime Protection strategy.
Assists in cyber crime response and investigation efforts and processes.
Contributes to the continuous improvement of the Cyber Crime Protection program by researching and partnering to define enterprise requirements.
Leverages monitoring and detection products and knowledge of cyber crime issues, threats, and mitigation techniques to protect the enterprise.
Partners with stakeholders across various functions to improve the firms cyber crime resilience and client experience. Supports the engagement with customers, clients and stakeholders across various lines of business.
Specific responsibilities include:
Intake new client assessment requests
Maintain knowledge repository
Pre-populate client assessment questionnaires
Prepare client assessment metrics and reports
Identify and implement program improvements
Facilitate conference calls and/or onsite meetings with Bank of America Clients
Serve as an Information Security subject matter expert and participates in the training and support of FLUs on threshold information security matters
Manage governance routines, including process documentation, playbooks, and tool refreshes
Required Skills
3-5 year’s experience in third party risk management
Effective verbal and written communication skills – must be able to explain key concepts and concerns to non-experts and reconcile those issues with written/contractual requirements
Critical reading skills, and strong professional writing skills
Self-starter, comfortable operating in the “grey” and making recommendations for next steps; strong problem solver
Strong relationship management skills: high level of interpersonal skills to interact with leaders at multiple levels and drive projects across various FLUs
Familiarity with cyber standards (i.e., NIST, ISO) and personal information laws (i.e., GLBA, CCPA)
Desired Experience
Background in technology or information security
Bachelor's and/or Master’s degree in Computer Science, Information Technology or related field
CISSP or other information security certifications