Identity & Access Management (IAM) Information Security Controls Specialist - Washington
9 hours ago
Job description
Job Description:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection.
Being a Great Place to Work is core to how we drive Responsible Growth.
This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.
Global Information Security (GIS) is responsible for protecting the bank's information systems, confidential and proprietary data, and customer information.
GIS develops and executes the bank's information security strategy, manages the enterprise security program, identifies and remediates vulnerabilities, and operates a global security operations center that monitors, detects, and responds to cybersecurity incidents.
Within GIS, Identity & Access Management (IAM) ensures the right individuals have the right access to the right resources at the right time—across increasingly heterogeneous environments and within rigorous compliance standards.
In today's connected ecosystem, safeguarding user identity is critical to the safety and success of our global workforce. The IAM team partners closely within Global Information Security, all Lines of Business, and second- and third-line functions. This highly visible role involves frequent engagement with senior leaders and key stakeholders.
If you excel in dynamic, fast-paced, global environments and are passionate about modern security technologies, this is the place for you.
You will collaborate with subject-matter experts, drive meaningful risk reduction, support operational excellence, and help strengthen the bank's overall identity security posture.
Role Overview:
The IAM Info Security Controls Specialist analyzes, strengthens, and secures the company's IAM systems and risk posture across End User Access Management and Application Services.
This role collaborates across Lines of Business and Technology teams to continuously enhance access control compliance, improve governance programs, and ensure swift and accurate adherence to IAM Standards.
Responsibilities:
Establish and maintain strong partnerships across GIS, Global Technology (GT), Cyber Security Technology (CST), Third Party Management, Global Compliance & Operational Risk (GCOR), internal audit, and external regulators; provide accurate and timely audit and regulatory responses.
Perform Quality Assurance (QA) activities to validate access control compliance, monitor control health, and support accurate and sustainable metrics reporting.
Monitor and support GT application adherence to IAM controls; manage governance programs, respond to program inquiries, maintain source-of-record updates, execute ARM ticket management, and ensure comprehensive program documentation.
Identify opportunities to de-risk IAM controls by analyzing current capabilities, detecting framework or process gaps, and recommending targeted enhancements aligned with enterprise security strategy.
Maintain high-quality QA documentation, audit artifacts, process workflows, and training materials to support transparency and repeatability.Lead QA governance activities for End User Access Management and Application Services, ensuring alignment with IAM Standards and enterprise policies.
Manage and maintain exceptions to the IAM Standard, ensuring appropriate risk justification, approvals, and periodic recertification per governance protocols.Ensure technology systems meet enterprise standards and fully comply with regulatory, legal, and risk requirements, escalating concerns as needed.
Support Software Development Life Cycle (SDLC) initiatives, including requirements validation, control testing, and providing risk-focused signoff for application changes prior to implementation.
Required Qualifications5+ years of hands-on experience in identity and access certification within large, complex organizations.
3–5 years implementing IAM cloud solutions, controls, and capabilities.
Strong ability to articulate data-driven insights and partner effectively with stakeholders to drive risk reduction and compliance with IAM Standards.
Advanced analytical skills, strong attention to detail, and a background in Quality Assurance.Excellent communication, presentation, and organizational skills with demonstrated ability to manage multiple priorities.
Proficiency in data management, metadata practices, and advanced data analysis.
Experience with Jira, Tableau, and SQL.
Shift:
1st shift (United States of America)
Hours Per Week:
40
Similar jobs
Document Control Specialist · BAI, Inc. is currently hiring for a Document Control Specialist to support a BAI client at Joint Base Anacostia Boling in Washington, D.C . · The successful candidate for this position will have (or be willing to learn) sensitive security procedures ...
11 hours ago
This is a full-time, on-site role based in Washington, DC, for a Quality Control Specialist. · ...
3 weeks ago
Document Control Specialist · BAI, Inc. is currently hiring for a Document Control Specialist to support a BAI client at Joint Base Anacostia Boling in Washington, D.C . · The successful candidate for this position will have (or be willing to learn) sensitive security procedu ...
2 hours ago
The Document Control Specialist supports records management operations by tracking, maintaining, · and monitoring the movement of physical and electronic records throughout their lifecycle. · This role ensures accurate documentation, secure handling, · proper storage, · and timel ...
1 week ago
+Job summary · We're seeking Document Control Specialists to support large, heavy-civil infrastructure programs—including highways, roads, bridges, transit (including rail and bus), and airport projects delivered through both traditional and alternative methods. · +Maintain and o ...
1 week ago
The Net America Corporation is seeking a Project Control Specialist who will support the ongoing operations of legacy systems and learn the basic tenants and foundational elements of property insurance. · ...
1 week ago
· Description · gTANGIBLE Corporation (gTC), , is a C corporation and a registered Government contractor that provides services and solutions in: · National Security Programs · Professional, Administrative, and Management Support · Mission and Warfighter Support · We are a Servi ...
3 days ago
The Project Control Specialist plays a critical role in ensuring effective management and control of projects within the organization. This position is responsible for monitoring project progress, · Koniag Government Services (KGS) is an Alaska Native Owned corporation supporting ...
4 weeks ago
We are seeking an Access Control Specialist to join our team at GDIT. As a member of our team, you will have the opportunity to learn and grow in your IT career while supporting the SEC's IT infrastructure. · The selected candidate must be able to obtain a Public Trust Suitabilit ...
1 week ago
The selected candidate must be able to obtain a Public Trust Suitability clearance, per contract requirements. · Performs day-to-day activities required to provide Tier 2 and Tier 3 support to end users comprising of 6,000 – 8,000 users · ...
1 week ago
The Controls Management Specialist will be responsible for driving the lifecycle of TikTok's cybersecurity controls including control testing and monitoring identification and remediation of control gaps facilitating internal and external audits security compliance programs compl ...
1 week ago
The Access Control Specialist is responsible for ensuring the safety and security of the facility by managing visitor and employee access at perimeter posts. · This role includes verifying identities, issuing and collecting badges, maintaining accurate records, and ensuring that ...
1 week ago
The Quality Control Specialist will play a key role in ensuring the successful execution of complex building system retrofits. This is an excellent opportunity for a detail-oriented professional with a background in construction, energy or mechanical/electrical systems to join a ...
1 week ago
We are seeking a part-time Program Control Specialist to develop, update and review program funding and spending across multiple Government contracts. · ...
1 month ago
The Securities and Exchange Commission (SEC) ISS program is a comprehensive IT program charged with operating, managing, and advancing the SEC's IT infrastructure as GDIT supports it in protecting investors and maintaining fair markets. · Performs day-to-day activities required t ...
1 week ago
gTANGIBLE Corporation (gTC), , is a C corporation and a registered Government contractor that provides services and solutions in: · National Security Programs · Professional, Administrative, and Management Support · Mission and Warfighter Support · We are a Service-Disabled Veter ...
2 hours ago
This is an ideal role for experienced controls technicians who thrive in fast-paced environments and enjoy working with advanced HVAC, DDC, and smart energy systems. · ...
1 week ago
Provide visitor management support to Federal Protective Service (FPS) Visitor Management and Access Control (VMAC) program office located at the St. Elizabeths Campus, Washington D.C. · ...
1 month ago
+Job summary · Koniag Professional Services seeks a Project Control Specialist to support KPS and government customer in DC Metro area. · +ResponsibilitiesDevelop and maintain project schedules. · Monitor project progress and identify potential risks or delays. · Prepare and anal ...
1 week ago
The Document Control Specialist supports records management operations by tracking maintaining and monitoring the movement of physical and electronic records throughout their lifecycle. · ...
1 week ago
TikTok's Global Security Organization is building trust by reducing risk and securing its businesses and products. As a Controls Management Specialist, you will drive cybersecurity controls lifecycle. · ...
1 month ago