Transformational Lead Data Loss Prevention & Identity Defense

Transformational Lead - Data Loss Prevention & Identity Defense Chicago, Illinois;Washington, District of Columbia; Denver, Colorado

• To proceed with your application, you must be at least 18 years of age.
• Acknowledge (https://ghr.wd1.myworkdayjobs.com/Lateral-US/job/Chicago/Transformational-Lead---Data-Loss-Prevention---Identity-Defense\_26014541)
• Bank of America employees are required to meet all
• posting eligibility requirements
• prior to applying for any new position.
• Acknowledge (https://ghr.wd1.myworkdayjobs.com/Lateral-US/job/Chicago/Transformational-Lead---Data-Loss-Prevention---Identity-Defense\_26014541) Refer a friend
• To proceed with your application, you must be at least 18 years of age.
• Acknowledge (https://ghr.wd1.myworkdayjobs.com/Lateral-US/job/Chicago/Transformational-Lead---Data-Loss-Prevention---Identity-Defense\_26014541)
• Bank of America employees are required to meet all
• posting eligibility requirements
• prior to applying for any new position.
• Acknowledge (https://ghr.wd1.myworkdayjobs.com/Lateral-US/job/Chicago/Transformational-Lead---Data-Loss-Prevention---Identity-Defense\_26014541)

• Job Description:

• At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection.

We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day. Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve. Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!

• Job Description:

• The Transformational Lead - Data Loss Prevention (DLP) & Identity Defense is a senior individual contributor responsible for driving innovation, modernization, and operational maturity across the organization's data protection and identity‑centric threat defense capabilities.

Sitting within Cyber Security Operations (CSO), this role will focus on leading emerging technology initiatives that expand and enhance existing security platforms while exploring and evaluating new tools, vendors, and techniques. The ideal candidate is a strategic self-starter who can work independently, partner effectively with technology and business stakeholders, and lead complex, cross-functional programs from inception through execution. A strong emphasis will be placed on improving efficiency through automation, leveraging AI-enabled capabilities, and proactively addressing emerging threats through forward-looking risk mitigation strategies.

• Key Responsibilities:

• Technology Transformation & Innovation
• + Drive modernization of DLP and Identity Defense capabilities, identifying opportunities to enhance, expand, or rationalize existing platforms.

+ Lead exploration and evaluation of emerging technologies, tools, and techniques to address evolving data loss and identity‑based threats. + Assess and recommend new vendors and products, developing clear problem statements, options analysis, and business cases. + Shape future‑state architectures for identity‑centric threat defense and data protection, including ITDR‑aligned capabilities.

• Automation, AI & Operational Efficiency
• + Lead initiatives to increase automation, reduce manual effort, and improve detection signal quality across DLP and identity workflows.

+ Leverage AI, machine learning, behavioral analytics, and advanced data analysis to enhance prevention, detection, and decision‑making. + Partner with engineering, SOAR, and platform teams to embed automation and orchestration into end‑to‑end security workflows. + Focus on capacity creation by reducing noise, streamlining response paths, and improving analyst effectiveness.

• Identity‑Centric & Data‑Focused Threat Defense
• + Perform advanced analysis and investigation of identity‑based attacks and data misuse scenarios, including account takeover, privilege escalation, insider risk, and anomalous behavior.

+ Apply deep understanding of attacker TTPs, identity abuse patterns, and data exfiltration techniques to evolve detections and mitigations. + Help govern and optimize security technologies such as DLP platforms, MFA, identity verification, IGA, behavioral analytics, and ITDR‑adjacent controls. + Collaborate with detection engineering to continuously refine use cases, logic, and coverage.

• Threat Awareness, Risk Strategy & Governance
• + Stay current on emerging threats, attacker techniques, and industry trends related to identity compromise and data protection.

+ Translate threat intelligence and risk insights into actionable controls, roadmap enhancements, and mitigation strategies. + Support alignment of DLP and identity controls to enterprise policy and external standards (NIST, ISO, MITRE, GDPR). + Inspect and challenge existing controls to strengthen risk posture and operational discipline.

• Program & Initiative Leadership (IC‑Led)
• + Drive complex, multi‑phase initiatives from concept through execution, including planning, delivery, risk management, and stakeholder communication. + Establish clear success metrics, milestones, and outcomes for transformation efforts. + Influence across organizational boundaries to align priorities, sequencing, and execution—without formal authority.
• Metrics, Reporting & Executive Insight
• + Contribute to the definition and maintenance of KRIs and operational metrics for DLP and identity defense effectiveness. + Deliver concise, executive‑ready insights that clearly articulate risk posture, trade‑offs, and impact.

• Required Qualifications & Skills:

• + 8+ years of experience in cybersecurity, with strong depth in Data Loss Prevention, Identity Security, or adjacent protection domains.

+ Proven experience driving large‑scale or transformational security initiatives from ideation to execution as an individual contributor. + Strong understanding of modern DLP and identity defense architectures, including cloud, endpoint, email, collaboration, and SaaS environments. + Hands‑on experience investigating identity‑centric attacks and data misuse scenarios, with a solid grasp of attacker TTPs. + Demonstrated ability to improve operational efficiency through automation, orchestration, and workflow optimization. + Experience evaluating and integrating new security technologies and vendors into complex enterprise environments. + Ability to operate independently, manage ambiguity, and drive outcomes without a people‑manager remit. + Excellent communication skills, with the ability to translate complex technical topics into clear, actionable guidance.

• Desired Qualifications:

• + Experience with AI/ML‑powered security tools, such as user behavior analytics, intelligent data classification, or adaptive controls.

+ Background in IAM, privileged access management, fraud, insider risk, or ITDR. + Familiarity with SOAR platforms, policy orchestration, or low/no‑code automation tools. + Experience operating in large, matrixed enterprises with hybrid and cloud‑first architectures. + Strong strategic thinking with the ability to translate vision into practical, phased roadmaps. + Prior exposure to regulatory, risk, or compliance considerations related to data protection and identity security. + Advanced degree in Information Security, Computer Science, Engineering, or equivalent experience.

• Skills:

• + Cyber Security + Data Privacy and Protection + Problem Solving + Process Management + Threat Analysis + Access and Identity Management + Business Acumen + Interpret Relevant Laws, Rules, and Regulations + Risk Analytics + Stakeholder Management + Data Governance + Data and Trend Analysis + Incident Management + Information Systems Management + Technology System Assessment This job will be open and accepting applications for a minimum of seven days from the date it was posted.

• Shift:

• 1st shift (United States of America)

• Hours Per Week:

• 40 Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws.

The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates. View your

• "Know your Rights (https://www.eeoc.gov/sites/default/files/2023-06/22-088\_EEOC\_KnowYourRights6.12.pdf) "
• poster.
• View the LA County Fair Chance Ordinance (https://dcba.lacounty.gov/wp-content/uploads/2024/08/FCOE-Official-Notice-Eng-Final-8.30.2024.pdf) .
• Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse.

Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment. Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank's required accommodation request process before your first day of work. This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.