Bank of America Logo

Bank of America

Cybersecurity Software Development Life Cycle (SDLC) Sr. Manager

Reposted 11 Days Ago
Be an Early Applicant
In-Office
5 Locations
154K-248K Annually
Senior level
In-Office
5 Locations
154K-248K Annually
Senior level
The Cybersecurity SDLC Sr. Manager leads security integration in the software development life cycle, managing risk assessments and compliance, while enhancing team training and awareness in secure coding practices.
The summary above was generated by AI

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.

Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.

At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!

Job Description:

The Cybersecurity SDLC Sr. Manager will lead the integration of security practices throughout the Software Development Life Cycle (SDLC). This role involves developing and enforcing security policies, managing risk assessments, and ensuring compliance with Application Security Standards. The executive will collaborate with cross-functional teams to implement secure coding practices, policy development, and training and awareness across the stakeholder community. They will also monitor emerging cybersecurity threats and drive continuous improvement initiatives to enhance overall software security. A deep understanding of cybersecurity frameworks and risk management is required. 10+ years of experience is generally required

Required Skills:

  • Strategic Leadership: Develop and implement cybersecurity strategies throughout the Software Development Life Cycle (SDLC).
  • Risk Management: Identify and mitigate security risks associated with software development and deployment.
  • Policy Development: Create and enforce security policies, standards, and guidelines related to SDLC processes.
  • Teams Collaboration: Collaborate with development, QA, and operations teams to ensure security best practices are integrated at every stage of the SDLC.
  • Training & Awareness: Lead training programs to enhance team awareness of secure coding practices and cybersecurity threats.
  • Compliance Oversight: Ensure adherence to industry regulations and compliance standards (e.g., GDPR, HIPAA).
  • Continuous Improvement: Monitor and assess the effectiveness of security measures, driving continuous improvement initiatives.
  • Stakeholder Engagement: Communicate security risks and strategies to senior management and other stakeholders.
  • Technical Expertise: Significant knowledge of cybersecurity threats, controls and technologies, with a deep understanding/experience with software developer experiences

Responsibilities are the stabilization and transformation of the GIS Secure coding work and continued partnership with EET on the future state of Development Pipeline transformation.

  • Stability Secure Coding Risk and Issues.
  • Establish and execute a clear path forward for executing Secure Coding and SbD Integration.
  • Establish long term direction for Secure Coding; Start/Stop/Continue

Shift:

1st shift (United States of America)

Hours Per Week: 

40

Pay Transparency details

US - CO - Denver - 1144 15th St - Denver Gis (CO9926), US - IL - Chicago - 540 W Madison St - Bank Of America Plaza (IL4540)

Pay and benefits information

Pay range$153,500.00 - $247,500.00 annualized salary, offers to be determined based on experience, education and skill set.

Discretionary incentive eligible

This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.

Benefits

This role is currently benefits eligible. We provide industry-leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.

Top Skills

Application Security Standards
Compliance Standards Such As Gdpr And Hipaa
Cybersecurity Frameworks
Development Tools
Risk Management Tools
Secure Coding Practices
HQ

Bank of America Charlotte, North Carolina, USA Office

100 North Tryon Street, Charlotte, NC, United States, 28202

Similar Jobs

Yesterday
Hybrid
7 Locations
137K-187K Annually
Senior level
137K-187K Annually
Senior level
Cloud • Information Technology • Security • Software • Cybersecurity
As a Network Reliability Engineer at Cloudflare, you will enhance network resilience by managing the technical operations of the core data center network, automating operational tasks, and contributing to system design. You'll collaborate with a team to develop and improve software solutions that streamline deployment and support a high-performance network.
Yesterday
Hybrid
4 Locations
Expert/Leader
Expert/Leader
Cloud • Information Technology • Security • Software • Cybersecurity
As a Senior Threat Intelligence Analyst, monitor and analyze East Asian cyber threats, synthesize intelligence, and collaborate on data analytics to inform threat remediation strategies.
Top Skills: Metadata AnalysisOpen Source Intelligence GatheringPacket AnalysisSQL
Yesterday
Hybrid
Denver, CO, USA
140K-200K
Senior level
140K-200K
Senior level
Security • Software • Cybersecurity
The Senior Application Security Engineer will ensure application security by developing secure code, conducting threat modeling, and engaging in security audits and customer support.
Top Skills: Application SecurityCloud InfrastructureHTTPMulti-Threaded ApplicationsRestSecure Coding PracticesTcp/IpVulnerability Testing

What you need to know about the Charlotte Tech Scene

Ranked among the hottest tech cities in 2024 by CompTIA, Charlotte is quickly cementing its place as a major U.S. tech hub. Home to more than 90,000 tech workers, the city’s ecosystem is primed for continued growth, fueled by billions in annual funding from heavyweights like Microsoft and RevTech Labs, which has created thousands of fintech jobs and made the city a go-to for tech pros looking for their next big opportunity.

Key Facts About Charlotte Tech

  • Number of Tech Workers: 90,859; 6.5% of overall workforce (2024 CompTIA survey)
  • Major Tech Employers: Lowe’s, Bank of America, TIAA, Microsoft, Honeywell
  • Key Industries: Fintech, artificial intelligence, cybersecurity, cloud computing, e-commerce
  • Funding Landscape: $3.1 billion in venture capital funding in 2024 (CED)
  • Notable Investors: Microsoft, Google, Falfurrias Management Partners, RevTech Labs Foundation
  • Research Centers and Universities: University of North Carolina at Charlotte, Northeastern University, North Carolina Research Campus

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account