Bank of America · 1 month ago
Identity and Access management (IAM) Mainframe Security Administration Sr Manager (RACF exp. required)
Boston
Full-time
Onsite
Senior Level, Lead/Staff
$160K/yr - $206K/yr
10+ years expBank of America is committed to helping make financial lives better through the power of connection. The Mainframe Security Administration Sr Manager will lead a team responsible for managing secure access to mainframe systems, ensuring compliance with Identity and Access Management policies, and driving continuous improvement in security administration processes.
Asset ManagementBankingFinanceFinancial ServicesFinTech
Responsibilities
Implement and maintain security administration and access policies using RACF, ACF2, or Top Secret
Enforce least privilege and role-based access control (RBAC)
Ensure multi-factor authentication for privileged users
Ensure that privileged access and encryption policies are enforced
Align security administration and access controls with regulatory frameworks (SOX, UCAL and PWC applications)
Maintain detailed logs and audit trails for all access request and administrators provisioning activities
Utilize tools such as Vanguard Resource Administrator (VRA) for forensic analysis and Report Analyzer for reporting
Monitor for unauthorized access and potential data leakage
Conduct regular access reviews and security assessments
Integrate with Identity and Access Management (IAM) systems for centralized governance
Lead and mentor a team of mainframe security analysts
Ensure team proficiency in RACF, Top Secret, and z/OS environments, including by participating in learning opportunities and communicating with vendors
Promote automation of repetitive provisioning tasks to enhance efficiency
Oversee ticketing systems integrated with IAM workflows for request tracking, Quality Assurance validation for efficiency and remediation
Provide ongoing training on evolving security threats and compliance requirements, process changes
Set Global Information Security goals and encourage professional certifications (e.g., CISSP, Certified RACF and Vanguard Specialist)
Ensure 24/7 monitoring of access provisioning activities
Establish and maintain incident response protocols for access-related events
Design scalable provisioning processes to support organizational growth
Qualification
Required
10+ years of progressive experience in Identity and Access Management, with a strong focus on access provisioning across enterprise environments
10+ Years of experience in RACF, ACF2 and zOS systems
Drives Mainframe Modernization and work in close partnership with the CTO Mainframe team to provide SME security leadership
Deep technical expertise in Mainframe RACF, Vanguard and Microsoft Azure AWS, Databases DB2 and VMSecure and enterprise storage platforms
Proven ability to design, implement, and manage access provisioning solutions that enforce least privileged access and align with regulatory and internal compliance requirements
Strong understanding of IAM governance frameworks, platforms (e.g., ForgeRock Single Sign- On SSO, Adaptive Authentication) role-based access control (RBAC), group policy management, and privileged access management (PAM) tools, CyberArk, Hashi Corp and Beyond Trust
Experience with automated provisioning/de-provisioning workflows, including integration with HR systems to demonstrated proficiency in scripting and automation (e.g., PowerShell, Python) to support scalable access provisioning and audit processes
Familiarity with cloud infrastructure security and access controls in hybrid environments, particularly within Microsoft Azure AWS and Oracle Cloud
Ability to conduct access reviews, entitlement audits, and risk assessments to identify and remediate access-related vulnerabilities
Excellent analytical, problem-solving, and communication skills, with the ability to collaborate across technical and business teams
Bachelor's degree in computer science, Information Security, or a related field; advanced degree or certifications (e.g., CISSP, CISM, Microsoft Certified: Identity and Access Administrator Associate) preferred
BS/BA Engineering degree or equivalent experience
Preferred
Understanding or have experience with agile and lean philosophies
Strong critical thinking and problem-solving skills with clear communication
Ability to collaborate with different roles to achieve common goals
Ability to think critically and question the status quo
Understand how to identify software security vulnerabilities and recognize and communicate their associated impact to the business
Demonstrate awareness of secure software design principles such as least privilege, defense in depth, or designing secure user interfaces
Benefits
Discretionary incentive eligible
This role is currently benefits eligible.
We provide industry-leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.
Company
Bank of America
Bank of America is a financial institution that offers credit cards, home loans, and auto loan services.
10001+ employees
H1B Sponsorship
Bank of America has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (780)
2024 (546)
2023 (590)
2022 (759)
2021 (715)
2020 (931)
Funding
Current Stage
Public CompanyTotal Funding
$3.59BKey Investors
Berkshire Hathaway
2025-02-20Post Ipo Debt· $386.79M
2024-11-26Post Ipo Debt· $2B
2020-07-28Post Ipo Equity· $400M
Leadership Team
Charissa Messer
Senior Vice President, Creative Agency Executive (Enterprise Creative Solutions)
Rami Salem
SVP Strategic Competitive Intelligence
Recent News
2026-01-11
2026-01-11
Company data provided by crunchbase