Cyber Security Privileged Access Management (PAM) Analyst
Company: Bank of America
Location: Boston
Posted on: April 1, 2026
|
|
|
Job Description:
Job Description: At Bank of America, we are guided by a common
purpose to help make financial lives better through the power of
every connection. We do this by driving Responsible Growth and
delivering for our clients, teammates, communities and shareholders
every day. Being a Great Place to Work is core to how we drive
Responsible Growth. This includes our commitment to being an
inclusive workplace, attracting and developing exceptional talent,
supporting our teammates’ physical, emotional, and financial
wellness, recognizing and rewarding performance, and how we make an
impact in the communities we serve. Bank of America is committed to
an in-office culture with specific requirements for office-based
attendance and which allows for an appropriate level of flexibility
for our teammates and businesses based on role-specific
considerations. At Bank of America, you can build a successful
career with opportunities to learn, grow, and make an impact. Join
us! Position Summary: Global Information Security (GIS) is
responsible for protecting bank information systems, confidential
and proprietary data, and customer information. GIS develops the
bank’s Information Security strategy and policy, manages the
Information Security program, identifies and addresses
vulnerabilities and operates a global security operations center
that monitors, detects and responds to cybersecurity incidents.
Within GIS, Identity and Access Management (IAM) is a security
discipline that enables the right individuals to access the right
resources at the right times and in the right context. IAM
addresses the mission-critical need to ensure appropriate access to
the resources across increasingly heterogeneous technology
environments, and to meet increasingly rigorous compliance
requirements. Role Description: This role is primarily responsible
for ensuring that relevant Privileged Access Controls are
adequately enforced across platforms and applications to comply
with IAM Standard. Partner with PAM Governance leads to ensure that
Privileged Access Controls are appropriately measured, reported and
governed. Apply industry PAM best practices, templates, and
documentation while also proposing improvements based on practical
knowledge. Document and convey PAM related requirements to
technology partners to build/implement enhanced PAM solutions that
are efficient, effective, and modern and able to result in material
risk reduction in sustainable manner. Collaborate with stakeholders
to develop PAM requirements that iteratively support long term PAM
modernization and transformation (covers Process, Data and
Technology aspects). Provide education to team members and
technology partners regarding the proposed changes to PAM controls.
Partners with the policy governance team for socialization and
publication of proposed changes to the PAM Standard Takes
accountability for addressing PAM risks. Proactively identify risk
and ways to continuously enhance and improve BAC’s PAM controls.
Implement and take decisive actions in finding solutions. Drives
towards intended outcomes. Engage senior management to provide
factual, transparent, and timely reporting on existing and emerging
PAM or information security risks. Active participation in GIS
IAM/PAM forums including but not limited to Monthly IAM Stakeholder
Forum and Control Owner Forum for standard and Single Process
Inventory (SPI) enhancements. Supports audit issues for closure and
sustainability Required Qualifications: 7 years relevant hands-on
experience in PAM in complex and heterogenous technology
environment. Deep experience with Linux, Windows, Cloud scale
Identity, Access Management (Single Sign-On, Multi Factor
Authentication), Authorization services or design and architecture
of PAM services Deep knowledge of bank financial practices and
policies and ability to adapt to fast changing environment Working
level experience with IAM platforms such as Ping Identity, Active
Directory OpenLDAP, OpenDJ Experience in consumption of Web Service
APIs such as JSON / XML Hands on experience and involvement in
large and complex projects. Expert level knowledge of privileged
access management methodologies and techniques for on-prem and
Cloud implementation. Expert level knowledge of authentication
platforms such as Active Directory, LDAP, Kerberos, LDAP, Radius.
Expert knowledge of PAM related tools which support session proxy,
vaulting, just-in-time provision, integration with service
management tool would be an advantage. Deep security knowledge
which covers core technology infrastructure (network, storage,
servers, databases, etc.) identity management and application
security practice. Deep knowledge on Federation platforms or
protocols such as Oauth, OpenID, SAML, WS-Fed, etc. Good knowledge
and understanding of PAM-specific laws, rules, and regulations
within the financial services sector. Proficient in Microsoft
Office suite of products with ability to quickly analyze and
synthesize large volumes of data. Familiarity with security
standards such as NIST, ISO/EC, FFIEC. Understanding and
interpreting BAC’s established information security Policy,
Standards, Procedure and Guides, and applying this knowledge to
related PAM decisions and response. Possession of CISSP
certification would be an advantage. Knowledge of Compliance
Certifications such as SOX, SOC, SOC2. Serve as the Subject Matter
Experts in advising BAC business and technology counterparts on
effective ways to achieve or exceed compliance with applicable
Policy, Standards, Procedures and Guides. Proficient in
articulating facts and data-driven plans and to partner with
stakeholders to implement intended solutions to drive risk
reductions and adherence to PAM standards. Strong attention to
detail and advanced analytical skills. Excellent communication and
presentation skills. Able to effectively prioritize multiple tasks.
Proven track record in delivering outcomes that result in
sustainable risk reductions in PAM. Ability to work independently
on initiatives with little oversight. Motivated and willing to
learn. Confident and effective in delivering messages across a wide
spectrum of individuals with varying degrees of technical and
business understanding This job will be open and accepting
applications for a minimum of seven days from the date it was
posted Shift: 1st shift (United States of America) Hours Per Week:
40 Pay Transparency details US - DC - Washington - 1800 K St NW -
1800 K Street NW (DC1842), US - MA - Boston - 100 Federal St - 100
Federal St Lp (MA5100) Pay and benefits information Pay range
$78,200.00 - $137,700.00 annualized salary, offers to be determined
based on experience, education and skill set. Discretionary
incentive eligible This role is eligible to participate in the
annual discretionary plan. Employees are eligible for an annual
discretionary award based on their overall individual performance
results and behaviors, the performance and contributions of their
line of business and/or group; and the overall success of the
Company. Benefits This role is currently benefits eligible. We
provide industry-leading benefits, access to paid time off,
resources and support to our employees so they can make a genuine
impact and contribute to the sustainable growth of our business and
the communities we serve.
Keywords: Bank of America, Chicopee , Cyber Security Privileged Access Management (PAM) Analyst, IT / Software / Systems , Boston, Massachusetts
