Third Party Cyber Assessor
Bank of America ATM
Third Party Cyber Assessor
Denver, Colorado;Washington, District of Columbia; Chicago, Illinois
To proceed with your application, you must be at least 18 years of age.
Acknowledge (
Bank of America employees are required to meet all posting eligibility requirements prior to applying for any new position.
Acknowledge (
Refer a friend
To proceed with your application, you must be at least 18 years of age.
Acknowledge (
Bank of America employees are required to meet all posting eligibility requirements prior to applying for any new position.
Acknowledge (
Job Description:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.
Being a Great Place to Work and providing a culture of caring is core to how we drive Responsible Growth. We are intentional about fostering an inclusive workplace where every teammate has the opportunity to succeed, build a career and contribute to our shared success. This includes attracting and developing exceptional talent, recognizing and rewarding performance, and supporting our teammates’ physical, emotional, and financial wellness through affordable, competitive and flexible benefits.
We value the unique perspectives individuals bring from all backgrounds and career paths - whether shaped by military service, community college education, or a wide range of work and life experiences. These journeys foster resilience, leadership and innovation, strengthening our workforce and positively impact the communities we serve.
Bank of America is committed to an in-office culture that supports collaboration, engagement, and career development. Our approach includes clear in-office expectations, while providing an appropriate level of flexibility based on role-specific responsibilities and business needs.
At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!
Position Summary:
This job is responsible for performing information security reviews of third parties that provide services to the bank. Key responsibilities include travelling to work onsite with third parties to collect and review documentation including playbooks and evidence during an assessment to determine if information security controls are in place and documenting the controls in place in assessment workpapers. Key responsibilities span pre-assessment, assessment, and/or remediation activities.
Responsibilities:
Partners with third parties to ensure they are prepared for information security assessments including answering detailed questions
Evaluates a third parties information security risk with a holistic lens to determine if they meet Bank of America requirements
Discusses any information security gaps in the service provider's program with the third party
Escalates issues or risks identified during the assessment
Manages relationships with third parties and Enterprise Vendor Managers
Must be able to travel up to 10-15% (ie: once every other month)
The ability to interact with internal or external stakeholders including business partners and/or external parties to identify, analyze, and resolve complex problems or security gaps.
The ability to objectively assess information from various sources and synthesize it towards making a reasoned judgment
The ability to assess the security, effectiveness, and practicality of technology systems
Required Qualifications:
2+ years as a cyber Assessor.
Experience in Information Security and/or IT Audit
Technical writing and verbal communication skill
Ability to effectively work with partners at varying knowledge and organization levels.
Ability to communicate clearly and effectively with both technology/development and business partners – ability to translate between these two constituencies.
Technical skills include the domains of information security and business continuity including:
Information Security Controls (Infrastructure Security, Access Management, Physical Security, Application Security, etc.)
IT Compliance, SOX Compliance
Change Management
Enterprise Risk Management
Solid grasp of NIST, PCI, ISO, SDLC, COBIT, and ITIL standards
Desired Qualifications:
Information Security certifications, including ISO27002 / CISSP / CEH / CISM / CISA
Knowledge of NIST guidelines
Shift:
1st shift (United States of America)
Hours Per Week:
40
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
View your "Know your Rights ( " poster.
View the LA County Fair Chance Ordinance ( .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy (“Policy”) establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank’s required accommodation request process before your first day of work.
This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.
$95k - $143.6k
...responsible for performing information security reviews of third parties that provide services to the bank. Key responsibilities include... ...technology systems Required Qualifications: 2+ years as a cyber Assessor. Experience in Information Security and/or IT Audit...CyberShift workDay shift$95k - $143.6k
...is responsible for performing information security reviews of third parties, such as pre‑assessment, assessment, and remediation activities... .... Summary: Position will be a member of the Third Party Cyber Assurance Specialized Subcategory Cyber Assurance Program (TPSSCAp...CyberWork at officeShift workDay shift- ...responsible for performing information security reviews of third parties that provide services to the bank. Key responsibilities include... ...Required Qualifications: ~2+ years as a cyber Assessor. ~ Experience in Information Security and/or IT Audit ~...CyberWork at officeFlexible hoursShift workDay shift
$150k - $194.7k
Dormont Manufacturing Co is seeking a Cyber Security Third Party Governance and Planning Analyst in Denver, CO. This role will focus on developing and managing third party information security requirements while working with cross-functional teams. Applicants should have...Cyber$85k - $125k
...Adjusters is seeking experienced Claims Examiners to join our third-party administrative insurance handling team in a file review role. This... ...Damage, Construction Bodily Injury, Construction Defect, D&O, Cyber, and Builder’s Risk. Experience across all lines is not...CyberTemporary workRemote workFlexible hours$57k
...claim investigations, including securing testimony from involved parties and coordinating experts such as engineers, forensic analysts,... ...decades, Network Adjusters, Inc. brings together the best elements of third-party claims administration and independent adjusting services....Temporary workTraineeshipWork at officeRemote workFlexible hours$102.15k - $120.18k
...Senior Claims Specialist Commercial Auto BI Investigate, evaluate and settle more complex first and third party commercial insurance auto claims. Job Responsibilities Evaluates each claim in light of facts; affirm or deny coverage; investigate to establish proper reserves...Work at officeRemote work$70k
...maintaining clear, professional communication with all involved parties. Adjusters routinely take statements, review medical records and... ...decades, Network Adjusters, Inc. brings together the best elements of third-party claims administration and independent adjusting services....Temporary workRemote workFlexible hours$140k - $210k
...looking for multiple levels (Level 2, 3 & 4) of a Security Control Assessor (SCA) in multiple locations. (Note: position is contingent upon... ...Bachelor's degree relevant to computer engineering, INFOSEC, cyber security, information management, and/or computer science...CyberFor contractorsWork experience placement$60k - $70k
..., SecurityScorecard's patented rating technology is used by over 25,000 organizations for self-monitoring, third-party risk management, board reporting, and cyber insurance underwriting; making all organizations more resilient by allowing them to easily find and fix cybersecurity...CyberRemote work$95k - $105k
...recognized as a member of Ward's Top 50 and rated A++ by A.M.Best. Job Summary Investigate, evaluate and settle more complex first and third‑party commercial insurance property claims. Job Responsibilities Evaluates each claim in light of facts; affirm or deny coverage;...Work at officeRemote work- ...Join us and play your part in something special! Responsibilities Investigate, negotiate and settle primary and excess cyber, privacy liability and technology E&O claims. Investigate and analyze coverage under primary and excess cyber and errors and omissions...CyberFull timeWork from home
- QBE North America is seeking a Senior Claim Technical Specialist - Cyber to oversee the examination and processing of complex claims. This hybrid role involves developing strategies to support claims operations, maintain client relationships, and ensure compliance with...Cyber
- ...areas covering Artificial Intelligence, Cloud Migration, Custom Software Development, Data Analytics Infrastructure & Cloud Solutions, Cyber Security Services, etc. We make reasonable accommodations for clients and employees and we do not discriminate based on any...CyberPermanent employmentFull timeContract workLocal areaRelocation2 days per week3 days per week
$100k - $130k
...just growth; it's a total reimagining of how the world manages cyber risk. We build the Cyber Risk Posture Management (CRPM) platform... ...trusted architects of digital resilience. In an era where third-party risk is more complex than ever, we maintain a highly collaborative...CyberRemote workWork from homeRelocation$110.8k - $226.4k
...focused on incident response, digital forensics, threat hunting, or cyber defense operations. ~ Demonstrated experience leading complex... ...legal counsel, cyber insurance carriers, law enforcement, and third-party stakeholders during incidents. Experience developing...CyberLocal areaWorldwide- ...just growth; it’s a total reimagining of how the world manages cyber risk. We build the Cyber Risk Posture Management (CRPM) platform... ...trusted architects of digital resilience. In an era where third‑party risk is more complex than ever, we maintain a highly collaborative...CyberRemote workWork from homeRelocation
- ...Monitoring Services Technology Specialties it management cyber insurance cyber resilience cyber risk vendor risk... ...scoring security risk ratings vendor risk monitoring third-party risk management cyber vrm vrm vendor questionnaires...CyberLocal area
$150.2k - $225.4k
...data protection, and ensures data sharing relationships with third parties in order to securely protect Rubrik information. About the... ...Operations Company, leads at the intersection of data protection, cyber resilience, and enterprise AI acceleration. Rubrik Security...CyberWork experience placementLocal areaRemote workShift work$30 per hour
...American Auto Shield General Claims Adjuster Founded in 2002, American Auto Shield (AAS) specializes in 3rd party home and vehicle service contract claims administration. AAS has a headquarters in Lakewood, Colorado, and we operate a satellite office in St. Peters,...Full timeContract workTemporary workWork at office$100k - $141.3k
...confidential and proprietary data, and customer information. The Cyber Threat Evaluation and Prevention Team (CTEP) assesses threats... ...sources, cyber incidents and events managed at the Bank (e.g., third‑party incidents), and threat‑based assessments conducted by GIS teams...CyberShift workDay shift$100k - $115k
...to help protect the Firm’s systems, applications, and data from cyber threats. ESSENTIAL FUNCTIONS Support the day-to-day operation... ...overall program effectiveness. Collaborate with internal teams and third-party providers to support security initiatives and operational...CyberFull timeContract workWork at office$163.4k - $322.1k
...Servicenow Senior Manager Our Deloitte Cyber team understands the unique challenges and opportunities businesses face in cybersecurity... ...Integrated Risk Management (IRM) Security Operations (SecOps) Third-Party Risk Management (TPRM) ~10+ years of demonstrated deep...CyberVisa sponsorship$110.3k - $157.62k
Senior Analyst, Cyber GRC Company: Ball Corporation Location: Westminster, CO, US, 80021 Job Category: IT Administration Req. ID:... ...remediation plans, and tracking findings. Lead cyber supply‑chain and third‑party risk management activities, including assessments and follow‑up...CyberLocal areaRemote workVisa sponsorshipWork visa3 days per week$70k - $120k
...regulatory and jurisdictional requirements Provides direction to and management of defense counsel, independent adjusters and other third parties retained to assist in a particular claim Other duties as assigned Qualifications: Minimum of 5 years of experience...Temporary workWork at officeRemote workFlexible hoursNight shift- ...Security Control Assessor (SCA) LOCATION Aurora, CO 80014 CLEARANCE TS/SCI Full Poly (Please note this position requires full U.S. Citizenship) KEY SUMMARY We are seeking a meticulous and detail-oriented **Security Control Assessor (SCA)** to join...Temporary workFor contractorsImmediate startFlexible hours
- ...regulatory requirements. Assistance with and or handling select first party Commercial Property, Auto, and Inland Marine claims may be... ...to and manage defense counsel, independent adjusters, and other third parties retained to assist with specific claims Identify and pursue...Work at officeFlexible hoursNight shift
$101.18k - $119.78k
...MT, ND, SD, or VT. This individual will report to a manager who works in New York City and is focused on adjudicating first and third party commercial environmental claims (mostly complex storage tank claims) and contributing to providing superb results for our clients...Full timeLocal areaRemote work$63.59k - $114.45k
...appropriate documentation and compliance. Investigates claim damages by conducting research from various sources, including the insured, third parties, and external resources. May identify and resolve potential discrepancies and identifies subrogation potential resulting from...Local areaAfternoon shift$20 - $24 per hour
...(PRG) is seeking a Claims Recovery Specialist for our Denver, CO office. Be part of our expanding team focused on recovering third-party property and utility damage claims, primarily in a B2B setting. We're looking for motivated, detail-oriented professionals with strong...Base plus commissionHourly payTemporary workWork at office
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Third Party Cyber Assessor. Be the first to apply!

