AI Security Enablement - Strategy and Standards Lead

Bank of AmericaWashington, DC
$141,700 - $202,700Onsite

About The Position

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day. Being a Great Place to Work and providing a culture of caring is core to how we drive Responsible Growth. We are intentional about fostering an inclusive workplace where every teammate has the opportunity to succeed, build a career and contribute to our shared success. This includes attracting and developing exceptional talent, recognizing and rewarding performance, and supporting our teammates’ physical, emotional, and financial wellness through affordable, competitive and flexible benefits. We value the unique perspectives individuals bring from all backgrounds and career paths - whether shaped by military service, community college education, or a wide range of work and life experiences. These journeys foster resilience, leadership and innovation, strengthening our workforce and positively impact the communities we serve. Bank of America is committed to an in-office culture that supports collaboration, engagement, and career development. Our approach includes clear in-office expectations, while providing an appropriate level of flexibility based on role-specific responsibilities and business needs. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us! AI Security Enablement - Strategy and Standards Lead is a hands-on strategy and governance role within the Global Information Security (GIS) Business Information Security Office (BISO) AI Design & Enforcement team, responsible for maintaining and operationalizing the AI Controls across cyber security. This role is accountable for developing and delivering a comprehensive AI Security Strategy and Standards. This includes translating industry standards and leading practices into actionable, testable control requirements. This individual will operate at the intersection of cyber security controls, AI risk, and operational execution — converting strategy into tangible deliverables including control requirements, governance frameworks, and sustainable operating processes. This role operates within GIS and partners extensively across cyber security verticals, including Cyber Threat Defense, Cyber Security Operations, Cyber Security Assurance, and Identity & Access Management.

Requirements

  • Information Security & Technology professional with 10+ years’ experience
  • A deep understanding of Generative AI/Large Language Models and assessment frameworks including MITRE ATLAS, OWASP Top 10 for LLM and GenAI, and NIST AI RMF
  • Strong understanding of frameworks, policies, and controls needed to govern AI use cases, including working knowledge of AI/ML models, data dependencies, model lifecycle, and common AI risks
  • 5+ years of risk management experience with proven ability to effectively apply risk principles to challenging business situations
  • Experience evaluating cyber security controls and providing guidance for platform or distributed computing platforms (Cloud, PaaS)
  • Exceptional executive presentation and communication skills
  • Excellent influencing and problem resolution skills
  • Strong leadership skills and qualities which enable you to work with peers and various levels of management
  • Ability to decompose complex issues and drive timely decisions, knowing when to engage others for additional input, and when to act independently

Nice To Haves

  • Bachelors and/or Master’s degree in Computer Science, Information Technology or related field

Responsibilities

  • Define and lead the AI security strategy, including standards, to secure AI/ML systems across their lifecycle (data, model, APIs, and integrations).
  • Identify and mitigate AI-specific risks (e.g., model abuse, prompt injection, data leakage, model theft), embedding security and governance into AI development, deployment, and third-party usage.
  • Partner with engineering, risk, and business teams to operationalize secure AI practices, including threat modeling, control validation, and continuous monitoring aligned to regulatory and enterprise risk frameworks.
  • Define clear security requirements ensuring the secure use of AI
  • Ensure traceability between control requirements, risks, and applicable governance frameworks
  • Maintain documentation, standards, and artifacts required for auditability and compliance
  • Monitors information security trends internal and external to the bank and keeps leadership informed
  • Monitors information security trends internal and external to the bank and keeps leadership informed
  • Design and implement scalable, repeatable processes that integrate security, governance, and risk management into the AI lifecycle, ensuring consistency and auditability.

Benefits

  • access to paid time off
  • resources and support to our employees
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service