Threat Reduction Analyst

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.

One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.

Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.

Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!

Job Description:

The Threat Reduction Analyst develops and executes evidence-based operations to interdict or mitigate external threats. This includes, but not limited to, counter phishing/ vishing, reporting network attacks, and engaging fraud found on the Internet or social media. Threat Reduction Analysts build and maintain relationships with service providers to ensure timely investigations and stay with every issue until resolution.

Key Responsibilities:

• Receives, Investigates, Evaluates, and Actions Cyber Security issues.
• Provides personalized engagement support to impacted entities within the larger response effort.
• Prepares detailed case synopsis recording all operational activities.
• May also provide response services to GIS/Incident Management as needed.
• Additionally, there’s a significant on-call requirement for this position enabling response to after-hours Cyber Security events.

Key Requirements

• A broad knowledge of computer networking, log analysis, information security principles, and adversarial tools and techniques.
• Strong analytical skills/ problem solving/ conceptual thinking.
• Able to identify, analyze and address problems to resolve issues with minimal negative impact and risk to the organization.
• Confident and capable written and oral presentation skills.
• Strong project management skills.
• Ability to work independently with little oversight managing multiple investigations simultaneously.
• Must be comfortable in delivering messages across a wide spectrum of individuals having varying degrees of technical understanding.
• Must have strong leadership skills and qualities which enable you to work with peers and various levels of management.

Desired Skills

• Bachelor's degree in Information Technology or related field
• Experience in the remediation of Information Security risks/vulnerabilities
• Experience with network monitoring and intrusion detection systems
• Ability to work with Technical and Non-Technical persons
• Persistent and Logical investigator

Must be able to work 10-7pm MST (Monday-Friday with potential for weekend coverage)

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

Enterprise Overview:

This job is responsible for supporting evaluations of cyber security threats and updating defensive capabilities to reduce the bank's risk of exposure. Key responsibilities include conducting analyses of the threat environment and threats to the bank, including post incident analysis, applying a multi-faceted situational awareness of cyber security processes to protect against threats, and implementing proactive defensive actions for the security, continuity, and confidentiality of information.

Shift:

Hours Per Week: