Job Description:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.
Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.
At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!
Your background
- 5 years+ of experience in information security and/or related technology field
- Good understanding of the following:
- Network Protocols: TCP/IP, SMTP, IMAP, POP3, HTTP/HTTPS, DNS.
- Email Security Standards: Familiarity with SPF, DKIM, DMARC, TLS encryption.
- SIEM Platforms: Proficiency in tools like Splunk
- Data Loss Prevention (DLP): Knowledge of DLP solutions for email and web traffic.
- You have strong analytical skills required to identify threats, vulnerabilities, and exploitations.
- You are broadly skilled who can pick up new technologies and concepts and apply them to your day-to-day work.
- You have an innovative mindset. Not afraid to ask why and question established practices, always looking to own and improve quality via automation and tooling.
- You have strong analytical skills required to identify threats, vulnerabilities, and exploitations.
- You are a good team player and willing to actively participate in team discussions and knowledge-sharing.
- You can demonstrate a problem-solving mindset with intellectual curiosity, critical thinking, and proactive solutions.
- You are willing to work weekend (Saturday and Sunday) on a rotational shift basis.
- You are willing to be enrolled into the bank’s Associate Investment Monitoring Program.
What you can expect
The Cyber Security Operation (CSO) function within Global Information Security is responsible for all aspects of threat intelligence and monitoring, application and network security, and insider threat. In addition, the CSO team drives out the enterprise-wide cyber exercise program. The Global Information Security - Cyber Security Operation team is a true global operations shop with leading edge tools, processes, and people. This role will be responsible for analyzing and escalating internet monitoring security events within a defined business SLA. The role requires someone who will be proactive in furthering the control’s maturity. The candidate should possess a high degree of intellectual curiosity and have a strong desire to find and mitigate risks
Candidate must be willing to enroll in Associate Investment Monitoring due to the nature of the role and access.
What you will do
- To perform analysis on internet monitoring alerts using DLP tools.
- To process monitoring alerts accurately within the defined business SLA, Identify and escalate risk according to standard operation procedures.
- Analyze events/metrics and escalation data, identify patterns and trends on high-risk controls and proactively suggest, develop, and implement enhancements to reduce risk.
- Willingness to actively participate in team discussions and knowledge-sharing
- Self-starter with an ability to navigate and collaborate effectively within a geographically complex and dispersed global corporation.
- Basic understanding of networking systems, security vulnerabilities, exploits and attacks.
- Strong communications both written and verbal with the ability to present control topics to a broad audience.
- Willing to work weekend on a rotational shift basis.