Business Control Manager – Technology Risk & Regulatory Lead bei Ghr

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.

Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.

Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.

At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!

Global Technology Risk function is seeking a self-starter who is motivated, passionate, thrives in a fast-paced culture, balances priorities, drives delivery, flawless execution, and enjoys team successes. This role provides an opportunity to work with peers across CIO teams within Global Technology as well as exposure to Global Information Security (GIS) senior leaders.

In this Risk & Regulatory Lead role, the candidate will assist in the execution of the internal control discipline and operational excellence in Risk Management. The candidate will drive a variety of functions to support a robust and sustainable risk culture across the GIS business and adherence to enterprise-wide standards. Routine engagements may include participation in CIO Key Risk Review (KRR), Issue Management routines, Risk and Control Self-Assessment (RCSA) / Risk ID, Single Process Inventory (SPI) as well as partner engagement (peer CIO Risk Teams, Global Compliance & Operational Risk (GCOR) and Corporate Audit).

Responsibilities:

• Provide end to end Risk Management Support and oversee adherence to applicable Enterprise Policies and Standards
• Communicate and drive risk strategy, remediation and prioritization in partnership with executive leaders.
• Collaborate with technology teams, control partners, domain experts and risk and control officers to proactively identify, debate and assess and remediate identified risks.
• Partner with the leadership and their teams to apply subject matter expertise to support a culture of risk identification, escalation and timely mitigation of compliance and operational risks.
• Solve problems analytically by applying a mixture of risk and technology expertise to perform impact assessments.
• Develop and maintain strong relationships and interactions with GIS leaders, 1st Line QA partners, risk, and audit contacts.
• Provide holistic point of view on overall health of assigned Risk Portfolio based on various topics such as emerging risks, active Risk Issues, SPI process/control/metric performance and related documentation, Targeted Risk Assessments, Audits, Regulatory Exams.

Required Qualifications

• 5+ years of internal control, regulatory, audit, risk, compliance or relevant work experience within a financial services or technology organization
• Ability to “connect the dots” for others across multiple data points, make connections upstream/downstream that may not be easily noticeable
• Detail oriented with an ability to review documentation for accuracy and report on the status of risk reviews
• Strong relationship management skills to navigate the complexities of aligning stakeholders, building consensus, and resolving conflicts in a large, distributed organization; proven ability to influence peers/stakeholders
• Ability to communicate in a clear and concise manner, influencing the opinions and actions of key stakeholders and gaining their trust
• Proven ability to manage multiple and often competing priorities in a global and fast paced environment
• Understand complex issues and drive timely decisions, knowing when to engage others for additional input, and when to act independently
• Leads coordination of materials across multiple stakeholders and proactively escalates
• Cybersecurity or Information Security domain knowledge
• Excellent facilitation and presentation skills
• Basic knowledge of MS Office 365 products

Desired Qualifications

• Any Cybersecurity, Information Security, Risk or Audit certification (CISA, CISSP)

Skills:

• Risk Management
• Critical Thinking
• Attention to Detail
• Relationship Management
• Written and Oral Communications
• Analytical Thinking
• Research
• Issue Management
• Controls Management
• Continuous Improvement
• Influence
• Decision Making

Shift:

Hours Per Week: