Sr. Privileged Access Management Analyst


On Site
Depends on Experience
Full Time


Multi-factor authentication
Google Cloud
Attention to detail
Identity management
Access control
Risk management
Financial services
Information security
Service management
IT infrastructure
Software security
Active Directory
Web services
Cloud computing
Analytical skill
Organizational skills
Data management
Relationship management
Microsoft Office
Cyber security
Incident management
Regulatory Compliance
National Institute of Standards and Technology
ISO 9000
Microsoft Windows
Amazon Web Services
Microsoft Azure
Meta-data management
System on a chip

Job Details

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.

One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We're devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.

Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.

Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!

This role is primarily responsible for ensuring that relevant Privileged Access Controls are adequately enforced across platforms and applications to comply with IAM Standard. This individual will partner with PAM Governance leads to ensure that Privileged Access Controls are appropriately measured, reported and governed. In addition, you will assess Privileged Access risk when business and technology decisions are made, demonstrating risk management mindset and practices to safeguard BAC's reputation, its clients, and assets by driving compliance with applicable laws, rules, and regulations, adhering to BAC Policy and Standards.

Required Skills and Qualifications:
  • Extensive knowledge and understanding of PAM-specific laws, rules, and regulations within the financial services sector.
  • Understanding and interpreting BAC's established information security Policy, Standards, Procedure and Guides, and applying this knowledge to related PAM decisions and response.Serve as the Subject Matter Experts in advising BAC business and technology counterparts on effective ways to achieve or exceed compliance with applicable Policy, Standards, Procedures and Guides.
  • Familiarity with security standards such as NIST, ISO/EC, FFIEC.
  • Possession of CISSP certification would be an advantage.
  • Expert level knowledge of privileged access management methodologies and techniques for on-prem and Cloud implementation.
  • Expert knowledge of PAM related tools which support session proxy, vaulting, just-in-time provision, integration with service management tool would be an advantage.
  • Bachelor's Degree or equivalent work experience
  • 10 years relevant hands-on experience in PAM with at least of 5 years of management experience
  • Deep security knowledge which covers core technology infrastructure (network, storage, servers, databases, etc.) identity management and application security practice.
  • Deep experience with Linux, Windows, Cloud scale Identity, Access Management (Single Sign-On, Multi Factor Authentication), Authorization services or design and architecture of PAM services
  • Experience with CyberArk, PowerBroker, Hashi and/or other PAM solutions
  • Expert level knowledge of authentication platforms such as Active Directory, LDAP, Kerberos, LDAP, Radius.
  • Deep knowledge on Federation platforms or protocols such as Oauth, OpenID, SAML, WS-Fed, etc.
  • Working level experience with IAM platforms such as Ping Identity, Active Directory OpenLDAP, OpenDJ
  • Experience in consumption of Web Service APIs such as JSON / XML
  • Hands on experience and proficient with AWS, Azure, Google Cloud Platform, and/or Cloud Technologies will be an advantage.
  • Proficient in articulating facts and data-driven plans and to partner with stakeholders to implement intended solutions to drive risk reductions and adherence to PAM standards.
  • Strong attention to detail and advanced analytical skills.
  • Excellent communication and presentation skills.
  • Excellent organizational skills and be able to effectively prioritize multiple tasks
  • Hands on experience and involvement in large and complex projects
  • Proficient in data management which includes strong data analytical capability with advanced understanding of the collection and management of metadata
  • Efficient in motivating, engaging, and leveraging other teams and business partners to efficiently deliver business solutions.Proven track record of influencing and relationship management skills.
  • Proficient in Microsoft Office suite of products with ability to quickly analyze and synthesize large volumes of data
  • Pro-active and able to drive direction of work that needs to be completed, ability to work independently on initiatives with little oversight. Motivated and willing to learn.
  • Confident and effective in delivering messages across a wide spectrum of individuals with varying degrees of technical and business understanding
  • Deep knowledge of bank financial practices and policies and ability to adapt to fast changing environment
  • Knowledge of Compliance Certifications such as SOX, SOC, SOC2.

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

Enterprise Role Overview:

This job is responsible for leading evaluations of cyber security threats and enhancing defensive capabilities to reduce the bank's risk of exposure. Key responsibilities include conducting analyses of the threat environment and threats to the bank, including post incident analysis, applying a multi-faceted situational awareness of cyber security process to protect against threats, and implementing proactive defensive actions for the security, continuity, and confidentiality of information.

1st shift (United States of America)

Hours Per Week:

Learn more about this role

About Bank Of America