Onsite Third Party Assessor

Salary depends on experience
Posted on 02/23/18
Addison, TX
5 - 7 years experience
Business Services
Salary depends on experience
Posted on 02/23/18

Job Description:

Are you passionate about working with the best information security team in the world? Bank of America is hiring top talent to join our team.

The Third Party Information Security (TPIS) function within Global Information Security is responsible for oversight of third party security programs, including assessing third party security programs and maximizing protections for all aspects of security for the third party landscape

The Onsite Third Party Assessor will conduct information security and business continuity assessments of vendors providing services to Bank of America. To succeed in this role, you should be highly motivated and possess strong, hands-on, technical knowledge of a wide range of information security and business continuity controls and the processes used for evaluating their design and effectiveness.

You should also possess strong written and verbal communication skills including ability to communicate clearly and concisely to various levels, up to and including executive level management, and explain the need for key controls to technical and non-technical resources.

Technical skills include the domains of information security and business continuity including:

  • Information Security Controls (InfrastructureSecurity, Access Management, Physical Security, Application Security, etc.)
  • IT Compliance, SOX Compliance
  • Change Management
  • Enterprise Risk Management
  • Solid grasp of NIST, PCI, ISO, SDLC, COBIT, and ITIL standards

Required Skills:

Must possess 5 + years of experience in the following areas:

  • Previous information technology/securityaudit/assessment experiencepreferred.
  • Ability to leverage attention to detail and analytical skills,
  • Ability to multi-task and work both independently as well as part of an assessment team
  • Ability to plan, execute and document assessment activities following established processes and procedures
  • Minimally, CISSP and/or CISA certifications are required as well as five to ten years experience in information security or business continuity
  • Must be able to travel up to 50%.

Job number: 18009298

Not the right job?
Join Ladders to find it.
With a free Ladders account, you can find the best jobs for you and be found by over 20,0000 recruiters.