Senior Business Risk and Control Specialist

  • Competitive
  • New York, NY, USA New York NY US
  • Permanent, Full time
  • Bank of America Corporation
  • 21 Jun 18 2018-06-21

Senior Business Risk and Control Specialist

Job Description:

This is a senior role requiring risk, regulatory and financial industry experience and 8-15 years of relevant experience. The nature of current and near-term initiatives is such that experience with IT audit, compliance/regulatory/SOX, controls, workflow, and risk concepts is essential.
Role Description: You will perform assessments of processes and controls, enable delivery of our risk and control portfolio and with the ability to track and drive implementation of some of those recommendations.
Responsibilities include:

  • Defining and evaluating problems and planning effective solutions; defining the scope and impact of projects and effectively communicating the impact on the organization; establishing project tasks, timelines and budgets and effectively managing them.
  • Analyze existing technology controls. Identify and remediate gaps by partnering with development teams
  • Work with component owners to align strategic roadmaps with overall risk and control framework
  • Work with control owners to streamline and enhance existing governance processes and frameworks ? Enforce and enable compliance with firm-wide risk initiatives
  • Develop subject matter expertise in a risk domain
  • Assist with the quality assurance reviews of various control assessment programs
  • Identify and drive opportunities for process improvements to deliver increasing efficiencies
  • Own and maintain relationships with a wide range of stakeholders (project managers, developers, internal and external control partners)

Required Skills:
  • Prior experience in IT risk management, audit or similar working closely with development teams
  • Ability to bridge enterprise control requirements with individual environment for applicability
  • Strong verbal and written communication skills to effectively lead technical discussions
  • Ability to work independently in a fast-paced environment
  • The desire and drive to own the responsibility and to accomplish positive technical results
  • Good working knowledge or experience with some of the following risk domains:
    • Database and application security o Access administration o Infrastructure security
    • Security event logging and monitoring o Database/Application security protocols
    • Secure software/code development
    • Change management; vulnerability management
    • Disaster recovery

1st shift (United States of America)

Hours Per Week: