Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.

Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.

At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!

Your background

Individual with IT risk/audit experience preferably in Banking/FI domain.Bachelor’s degree in IT, minimum 5 to 7 years of experience, industry certifications (CISA, CISM, COBIT foundation, etc) preferred.Relevant experience in executing Risk initiatives within a tech risk function, compliance or technology audit role Experience in leading programs for proactively identifying regulatory risk exposure and potential non-compliant areasKnowledge of APAC regulations & understanding of regulatory risk management preferredProject management skills and the ability to work independentlyRelationship management skills to navigate the complexities of aligning stakeholders, building consensus and resolving conflictsProven ability to influence peers/stakeholders and senior leaders across various lines of business

What you can expect

The role sits within Global Corporate & Investment Banking and Global Payments Solutions Technology - APAC Risk & Controls function working with Application Managers, Enterprise Control functions and COOs across the Lines of Businesses to ensure that control gaps are identified and remediated.

You will oversee the effective implementation of the Bank’s Risk framework and Global Technology (GT) governance routines and requirements, using established tools and documented procedures. This includes documentation to enable tracking, monitoring, and escalation of technology risk related issues to management, and acting as an ambassador of the risk culture.

What you will do

Foster the Identify, Escalate, Debate risk cultureDevelop and socialize potential risk mitigation strategiesDrive risk engagement & management and issue identification; in particular E2E risk management includes ERP, RCSA, eRIC, SIAI, JDI, AIAI, RIAI etc.Assess regulatory (eg MAS, HKMA, CBRC, OJK, RBI, etc) changes impacting technology and operations and drive related risk mitigation program with required stakeholdersManage senior stakeholders’ communication and reportingIdentify opportunities for enhancing or streamlining execution of risk management processes; partner across multiple divisions to execute.Manage regulatory relationships, where relevantCollaborate across the region application groups, Risk Leads and enterprise process owners (including Global Information Security) to respond to Internal and External Audits, Exams, and Regulatory/Clearing Inquiries & Assessments.Quality assurance and Global Information Security related findings program oversightAssist business and process owners with remediating the most significant risks including Audit Issues, Self-Identified Audit Issues, Compliance Identified Audit Issues, Regulatory IssuesPractice and promote good risk culture and risk management within GCIBT, leading participation in technology risk activities.