Back to search results
Sr. Information Security Architect - AI & Cloud Security
Washington District of Columbia Chicago Illinois Denver Colorado Additional locations Apply ×
To proceed with your application you must be at least 18 years of age. Acknowledge × Bank of America employees are required to meet all posting eligibility requirements prior to applying for any new position. Acknowledge
Refer a friend Apply ×
To proceed with your application you must be at least 18 years of age. Acknowledge × Bank of America employees are required to meet all posting eligibility requirements prior to applying for any new position. Acknowledge
Job Description
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities, and shareholders every day.
Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.
At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us
The Sr. Information Security Architect - AI & Cloud Security is a senior member of the BISO Secure Solutions Design team responsible for defining secure architecture patterns, assessing emerging AIML solutions, and ensuring alignment with Global Information Security (GIS) policies and enterprise architecture strategies. This role provides deep technical expertise in security design, risk evaluation, and threat modeling for both traditional systems and modern AI-generated workloads.
This job is responsible for defining secure solution intent, evaluating system impacts, performing technical architecture assessments, and translating complex requirements into actionable controls across cloud, data, and application environments. You will partner closely with technology leaders, product teams, developers, and enterprise architects to ensure security is embedded into early design and that Generative AI systems are deployed in a resilient, safe, and compliant manner.
The ideal candidate brings broad architecture experience, hands-on technical depth, strong threat modeling skills, and demonstrated expertise securing AI, ML, and LLM-based systems.
Required Qualifications • 8 years of experience in information security or enterprise architecture with recent focus on AIML or Generative AI security. • Proven experience performing secure architecture assessments, design reviews, and threat models for complex integrated systems. • Strong understanding of Generative AI, LLM risk, and security frameworks (MITRE, ATLAS, OWASP, LLM Top 10, NIST AI RMF). • Broad experience across cloud platforms (AWS), identity, key management, secrets management, networking, containers, and API security. • Expertise in interpreting and applying internal security policies, standards, and controls. • Strong communication skills with the ability to convey complex technical concepts to technical and non-technical audiences, including senior leadership. • Demonstrated ability to drive decisions, collaborate across teams, and balance risk vs. business needs. • Hands-on experience preparing technical diagrams and threat models.
Desired Qualifications • Experience with advanced developer tools (such as GitHub Copilot, Microsoft Copilot Studio, or similar AI coding assistants). • Certifications (such as CISSP, CISM, CCSP, CCSK, CRISC, or cloud architecture security certifications). • Familiarity with agile methodologies, DevOps practices, CICD pipelines, and developer experience platforms. • Experience in financial services or other regulated industries.
Key Responsibilities
Security Architecture & Solution Design • Develop and maintain secure design patterns and controls for AIML solutions, including LLMs, RAG architectures, vector databases, and enterprise AI agents. • Define secure operating environment and ensure alignment with enterprise architecture strategy and GIS standards. • Evaluate system impacts, data flows, integration points, and non-functional requirements such as security. • Provide solution options to resolve architectural constraints and remove design impediments. • Participate in design reviews, feature decomposition, and technical governance for AI-enabled platforms and SDLC-integrated developer tools (e.g., GitHub Copilot, Microsoft Copilot Studio).
AIML Security Threat Modeling & Risk Assessments • Conduct AI-specific risk assessments using frameworks (including MITRE, ATLAS, OWASP Top 10 for LLMs, GenAI, and NIST AI RMF). • Perform detailed threat modeling (STRIDE or equivalent) for cloud, application, data, and AI use cases. • Identify risks (such as prompt injection, model/data poisoning, data leakage, model theft, hallucinations, and supply chain risk) across model, dataset, and embedding ecosystems. • Define compensating controls and architectural safeguards for AIML pipelines, including input/output filtering, retrieval restrictions, data minimization, privacy controls, and identity boundaries.
Collaboration & Governance • Work across lines of business, operations, enterprise architecture, data science, and development teams to ensure clear solution intent and secure-by-design outcomes. • Translate policy and standards into actionable architecture guidance for delivery teams. • Educate partners on architectural best practices, security control requirements, and evolving AI threat landscapes. • Support technology stack evaluations and selection of secure tools, platforms, and third-party integrations. • Provide architecture review documentation, data flow diagrams, and risk summaries to support governance processes.
Skills • Analytical Thinking • Architecture • Result Orientation • Solution Design • Technical Strategy Development • Application Development • Collaboration • Data Management • DevOps Practices • Risk Management • Agile Practices • Automation • Influence • Solution Delivery Process • Test Engineering
Shift 1st shift United States of America Hours Per Week 40 Learn more about this role View transcript Close transcript Music in background throughout On screen copy Bank of America logo Technology Architect Technology Architect At Bank of America, I help shape the technology strategy that powers our global business. Technology Architect writing code at his desk As a Technology Architect, I design the systems and frameworks that our organization runs on, developing the digital ecosystem that our enterprise depends on every day - from designing systems to setting technical standards across the organization. Technology Architect instructing a colleague one-on-one I guide team members through large-scale projects that make a massive impact on operations. And I rely on daily cross-team collaboration, whether Im reviewing designs or mentoring engineers. On screen copy • Strategic planning • Architecture reviews • Team collaboration Every day is different, but almost all of them involve strategic planning, architecture reviews, and working with all of our stakeholders to align on a path forward. Technology Architect leading discussion in a meeting room On screen copy Balancing • Innovation • Risk • Scalability • Compliance Sometimes my work is a tightrope walk balancing innovation with risk, scalability, and compliance. Performance versus cost, security versus usability - there are trade-offs I need to weigh to find the best outcome for Bank of America and our clients. On screen copy Leadership development My role puts me in a unique position for leadership development, enterprise exposure, and gaining technical depth that will only help me grow professionally. And staying active in forums and knowledge-sharing platforms helps keep me in-the-know and inspired. I love bringing what I learn to my work with engineers, product designers, business partners, and beyond. Thats where the real magic happens. Its all about new ideas and creative solutions for cross-functional success. Technology Architect shaking hands with supervisor On screen copy Theres a sense of accomplishment knowing the work we do has impact, but feeling supported and valued is a big piece of it too. On screen copy Competitive benefits With competitive benefits, recognition programs, and exciting career mobility, I feel motivated to take on the future of this industry. Im helping to build systems that are secure, scalable, and ready for whats next. On screen copy Build relationships Build communities Build careers We all have goals. Pursue yours at Bank of America. We all have goals. Pursue yours at Bank of America. Narrator What would you like the power to do Bank of America. On screen copy What would you like the power to do Bank of America logo Learn more at careers.bankofamerica.com On screen disclosure EOE disabilityveteran. 2025 Bank of America Corporation. All rights reserved. MAP 8651724 Expiration Date 06052027 End of transcript
Apply ×
To proceed with your application you must be at least 18 years of age. Acknowledge × Bank of America employees are required to meet all posting eligibility requirements prior to applying for any new position. Acknowledge
Full time JR-26008895 Manages People No Travel No Age requirement Must at least be 18 years of age. Colorado pay and benefits information Colorado pay range 140500.00 - 205000.00 annualized salary offers to be determined based on experience, education, and skill set. Discretionary incentive eligible This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group, and the overall success of the Company. Benefits This role is currently benefits eligible. We provide industry-leading benefits, access to paid time off, resources, and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.
Illinois pay and benefits information Illinois pay range 140500.00 - 205000.00 annualized salary offers to be determined based on experience, education, and skill set. Discretionary incentive eligible This role is eligible