Privileged Access Management; PAM Sr. Analyst

Role Description

Reports directly to the Technology Executive overseeing Privileged Access Management governance and operations for the bank. The primary responsibility is to ensure that relevant Privileged Access controls are enforced across platforms and applications, complying with or exceeding the IAM Standard.

• Partner with PAM Governance leads to measure, report, and govern Privileged Access Controls.
• Assess Privileged Access risk when business and technology decisions are made to protect the bank’s reputation and assets.
• Monitor industry and PAM trends, engaging peer organizations to refine and enhance the PAM strategy.
• Apply industry PAM best practices, templates, and documentation while proposing improvements.
• Provide Active Directory security best practices and consultation to cross‑functional teams, ensuring compliance with IAM standards.
• Develop new PAM requirements and cloud‑based security solutions for cloud identities, credentials, and access.
• Establish and maintain strong partnerships across Global Information Security (GIS), Core Technology Infrastructure (CTI), Cyber Security Technology (CST), Third Party Management, Global Compliance and Operations Risk (CGOR), Internal Audit, and regulatory agencies.
• Influence technology and PAM tool owners to build/implement enhanced PAM solutions that reduce risk sustainably.
• Collaborate with stakeholders to iterate PAM modernization and transformation (process, data, and technology).
• Engage Product Managers and Senior Architects to understand the strategic PAM roadmap and requirements.
• Consult with business to identify gaps and governance issues, proposing effective solutions.
• Communicate reasons and methods behind proposed changes through informative materials.
• Take accountability for addressing PAM risks and proactively identify risk‑mitigation strategies.
• Engage senior management for factual, transparent, and timely reporting on PAM or information security risks.
• Participate in GIS IAM/PAM forums such as Monthly IAM Stakeholder Forum and Control Owner Forum for standard and SPI enhancements.
• Support audit issue closure and sustainability.

• 10+ years of relevant experience in Privileged Access Management.
• Experience managing Active Directory to enforce privileged access controls.
• Deep knowledge of core infrastructure (network, storage, servers, databases) and identity management practices.
• Expertise in PAM methodologies for on‑prem and cloud implementations.
• Knowledge of security standards such as NIST, ISO/IEC, FFIEC, and MITRE ATT&CK framework.
• Knowledge of compliance certifications such as SOX, SOC, SOC
  2.
• Understanding of BAC’s information security policies, standards, procedures, and guides.
• Proficiency in governing risk and role‑based access controls.
• Experience with PAM tools that support session proxy, vaulting, just‑in‑time provisioning, and integration with service management tools.
• Strong understanding of authentication platforms such as Active Directory, LDAP, Kerberos, RADIUS.
• Hands‑on experience with AWS, Azure, GCP, and/or other cloud technologies.
• Experience with IAM platforms such as Ping Identity, Active Directory OpenLDAP, OpenDJ.

• Possession of CISSP certification.
• Proficient in data management and metadata collection.
• Excellent communication, presentation, and organizational skills.
• Ability to motivate and engage multidisciplinary teams.
• Proficiency in Microsoft Office suite for data analysis.
• Self‑directed, proactive, and capable of working independently with minimal oversight.
• Strong analytical skills and attention to detail.
• Experience leading large, complex projects.
• Knowledge of bank financial practices and ability to adapt to fast‑changing environments.

1st Shift (United States of America)

40 hours per week

$ – $ annualized salary; discretionary incentive eligible.

Eligible to participate in industry‑leading benefits, including paid time off and resources to support physical, emotional, and financial well‑being.

Bank of America is an equal‑opportunity employer. We are committed to an inclusive workplace and support the diverse well‑being of employees.