At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.
One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We're devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.
Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.
Resource will function as a member of an enterprise network application layer intrusion, detection, prevention, and response team. Will develop and implement custom alerts and monitoring controls to detect and mitigate threats Provides leadership in assessing new threat vectors and designing and implementing effective controls. Leverages advanced investigative skills using best in class data correlation and log analysis tools. Will partner with senior leaders from lines of business organizations to triage security events and report on impacting security initiatives. Develops and implements processes or controls in support of audit and risk requirements.
Required Skills:
Strong Splunk skill set. The security analyst will leverage Splunk to analyze logs and other security events to find targeted attacks against network based bank assets.
Strong Intrusion Analysis background. Resource must be able to identify and interpret weblogs from various webservers.
Knowledgeable of current exploits. Resource must be able to identify common exploits from the appropriate web and event logs.
Working knowledge of Linux, Windows, and MacOS operating systems.
Comfortable with scripting languages and regular expressions
Strong knowledge common network protocols
Working knowledge of enterprise Client / Server architecture
We are a front line team that handles active security events and current threats. Oncall and after hours work can be expected although we rotate to approximately one week every 2 months.
The analyst will use new intelligence to update existing controls to detect new threats against the bank. Will be expected to have solid technical skills to operate independently and to support others within the security team
Desired Skills:
Able to interpret Apache web logs, IIS, Active Directory and other security logs.
Full understanding of modern web site deployments and technology.
Understanding of stateful firewalls and able to interpret firewall rules.
Familiarity with web application attacks including SQL injection, cross-site scripting, and remote file inclusion.
Use tools to detect anomalomalicious data transmissions on the network.
Use advanced analytics / security tools to detect malware on the network.
This job will be open and accepting applications for a minimum of seven days from the date it was posted.
Shift:
1st shift (United States of America)
Hours Per Week:
40
Pay Transparency details
US - CO - Denver - 1144 15th St (CO9926), US - DC - Washington - 1800 K St NW - 1800 K Street NW (DC1842)
Pay and benefits information
Pay range
$93,700.00 - $142,500.00 annualized salary, offers to be determined based on experience, education and skill set.
Discretionary incentive eligible
This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.
Benefits
This role is currently benefits eligible. We provide industry-leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.
Learn more about this role Application Monitoring Response Security Analyst