- Senior
- Ufficio in Denver
Job Description:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.
Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.
At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!
Job Description:
The GIS Identity Defense Executive leads the strategic direction, execution, and continuous improvement of enterprise identity protection capabilities across the organization. This executive role is responsible for defending against identity-based threats, managing identity threat detection and response (ITDR) capabilities, and driving enterprise-wide initiatives to protect digital identities—both human and non-human—across the financial services ecosystem.
The role sits within the Cyber Security Operations organization and collaborates closely with Identity and Access Management (IAM), Cyber Threat Defense, Cyber Security Technology, Risk Management, and Enterprise Employee Technology teams. The executive will also engage with senior stakeholders across Global Technology, HR, Legal, and Risk to ensure robust identity governance and lifecycle management.
Key Responsibilities:
Strategic Leadership, Vision, Collaboration and Influence
- Develop and execute a comprehensive identity defense strategy aligned with enterprise cybersecurity goals and regulatory requirements.
- Serve as a thought leader in converged digital identity capabilities and future-state architecture.
- Lead a team of managers and analysts operating 24x7 across the globe in GIS Cyber Threat Operation Centers focused on identity defense.
- Work across business and technology at the senior executive level to minimize attack surface and enhance identity protection.
- Manage relationships with business sponsors, technology executives, and vendors to respond to cyber threats.
- Run a defensive, operational function, including creating and maintaining new processes, runbooks, and governance materials, as well as, constantly maturing or evolving to drive operational efficiency and create capacity for detecting new threats.
Identity Centric Threat Detection capabilities
- Deep domain expertise in identity-centric threat detection, including experience investigating identity-based attacks including behavioral analytics, anomaly detection, and incident response.
- Understand attacker TTPs and how to detect and counter such attacks.
- Oversee alert investigations and proactively develop controls to mitigate account takeover and identity compromise.
- Manage and optimize identity security technologies such as MFA, identity verification, IGA, and behavioral analytics.
Risk Management & Compliance
- Ensure identity-related controls meet internal policies and external regulatory requirements (e.g., NIST, ISO, GDPR, MITRE).
- Inspect and challenge risk controls, governance, and culture to ensure timely identification and remediation of risks.
Metrics & Reporting
- Define key risk indicators (KRIs) and reporting mechanisms to measure program effectiveness and communicate risk posture to executive leadership.
Required Qualifications:
- Deep domain expertise in identity-centric threat detection, including experience investigating identity-based attacks. A successful candidate will understand attacker TTPs in this space and how to detect and counter such attacks.
- 10+ years of experience in cybersecurity operational leadership, with 5+ years in identity security or related domains.
- Proven leadership in global enterprise-scale identity protection programs.
- Practical experience with ITDR is preferred and would be a valuable differentiator.
- Deep understanding of identity-centric attack vectors and mitigation strategies.
- Experience with modern identity platforms. Demonstrated experience or knowledge of Cloud/Hybrid/SaaS environments, identity providers, federation, and SSO.
- Strong knowledge of identity governance frameworks.
- Familiarity with threat frameworks (e.g., MITRE ATT&CK) and authentication-based exploits.
- Excellent communication and stakeholder management skills.
- Strategic thinker with a bias for action.
- Passion for innovation and continuous improvement in identity security.
- Strong critical thinking and problem-solving skills.
- Familiarity with tools such as Splunk for building queries, alerts, and dashboards.
Managerial Responsibilities:
This position may also have responsibilities for managing associates. At Bank of America, all managers at this level demonstrate the following responsibilities, in addition to those specific to the role, listed above.
- Opportunity & Inclusion Champion: Breaks down barriers to create a more inclusive environment that supports company Great Place to Work goals.
- Manager of Process & Data: Challenges end-to-end process efficiency and effectiveness, champion data driven decision-making and removes obstacles to optimize operations.
- Enterprise Advocate & Communicator: Contributes to enterprise strategy and influence messaging to connect team contributions to business purpose, results, and success.
- Risk Manager: Inspects and challenges risk controls, governance and culture to ensure the timely identification, escalation, debate and remediation of risk across the organization.
- People Manager & Coach: Coaches to sustain and elevates organizational performance while differentiating to ensure pay for performance.
- Financial Steward: Efficiently allocates and manages resources across the organization to drive short and long term profitability.
- Enterprise Talent Leader: Inspects and manages the health of the bench to ensure succession for the organization, while supporting enterprise talent needs.
- Driver of Business Outcomes: Mobilizes organizational resources to deliver the full range of the bank’s capabilities to meet client needs and to gain competitive advantage.
Skills:
- Cyber Security
- Executive Presence
- Fiscal Responsibility
- Risk Management
- Strategy Planning and Development
- Talent Development
- Critical Thinking
- Decision Making
- Inclusive Leadership
- Organizational Effectiveness
- Stakeholder Management
- Innovative Thinking
- Performance Management
- Result Orientation
- Technology System Assessment
Shift:
1st shift (United States of America)Hours Per Week:
40Pay Transparency details
US - CO - Denver - 1144 15th St - Denver Gis (CO9926)Pay and benefits informationPay range$175,000.00 - $325,000.00 annualized salary, offers to be determined based on experience, education and skill set.Discretionary incentive eligibleThis role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.BenefitsThis role is currently benefits eligible. We provide industry-leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve. Candidarsi ora
