Cyber Security Malware Analyst
Denver, Colorado;Washington, District of Columbia; Chicago, Illinois
**Job Description:**
**Are you passionate about working with the best information security team in the world?** **Bank of America is hiring top talent to join our innovative and forward thinking team.**
**What We Do:**
At Bank of America, we handle the finances of over 67 million client relationships every day, including helping them save, borrow, and invest for today and for their future. We stand by our clients each and every day giving them the power to realize their personal financial goals and help make their financial lives better.
The Global Information Security organization is responsible for protecting bank information systems, confidential and proprietary data, and customer information. The team:
+ Develops the banks Information security strategy and policy
+ Manages the Information security program and identifies and addresses vulnerabilities
+ Develops, deploys and manages a risk-based controls portfolio
+ Manages and operates a global security operations center that monitors, detects and responds to cybersecurity incidents
**What Were Looking For:**
Were looking for the next generation of Cyber security experts those with a passion for growing a long-term career, building relationships and working with a team ofinnovative and forward thinkinginformation security professionals. Our cyber team is meant for those looking to make a real impact and build a career in information security. The role is ideal for those who have a passion to work with industry leaders to protect our brand and the customer/client experience by proactively detecting, disrupting, and mitigating cyber security across the organization.
**What Youll Get:**
From day one, youll receive training including hands-on practice, personalized coaching and dedicated support throughout your on-boarding experience. With demonstrated success, youll have the opportunity to advance into many different roles with Global Information Security with unlimited opportunity to grow throughout your career. You will be supported with dedicated programs, tools, and resources throughout your career journey.
**Well help you:**
Build a successful career at Bank of America through world-class training and on-boarding programs that set you up for success
Grow in your current role through one-on-one coaching from managers who are invested in your success and training programs that help you excel, build new skills or take on additional responsibility
Continuously learn and advance your career goals through intentional career paths to the next best role
Use resources and innovative technologies to optimize the client experience
Expand your business knowledge and network by partnering with experts in Global Information Security, Global Technology and other lines of business
Become an expert in what you do
**What you can look forward to:**
Ongoing professional development to deepen your skills and optimize your expertise as the industry evolves and changes
Resources and dedicated support to help you reach your full potential throughout your career
A benefits program designed to meet the diverse needs of our employees at every stage of their life and help them plan for tomorrow
Progressive workplace practices and initiatives that promote inclusion
**Were a culture that:**
Believes in responsible growth and has a proven dedication to supporting the communities we serve.
Provides continuous training and developmental opportunities to help people achieve their goals, whatever their background or experience.
Believes diversity makes us stronger, so we can reflect, connect to and meet the diverse needs of our clients and customers around the world.
Is committed to advancing our tools, technology, and ways of working. We always put our clients first to meet their evolving needs.
The Cyber Crime Brand Protection analyst function within Global Information Security will assist in managing the firms digital reputation risk and protect the brand against seizure and nefarious activity.
Successful candidate will have strong process and program skills and be able to quickly assess end to end processes that could impact the Banks brand. A working knowledge of international financial processes, such as payments or wires, is strongly preferred. The successful candidate must have a working knowledge of cybersecurity best practices and can speak to processes, tools and technologies that can be support and protect the Banks brand. Self-starter, takes initiative and possesses strong analytical and creative skills. Can successfully influence across the organization and all levels. Works well with others. The candidate is required to be tech savvy and interested in learning how technologies can provide value as well as risk to our brand and the firm. Strong verbal and written communication skills required. Successful candidate must be comfortable working in an entrepreneurial, evolving environment.
**Key Responsibilities**
- Perform static and dynamic malware analysis to identify indicators of compromise (IOCs), anomalous behaviors, and other signals to detect consumer-centric malware
- Monitor alerts, events, and incidents from multiple technologies to detect and report anomalies to response and fraud operation teams
- Serve as the subject matter expert (SME) on cross-functional initiatives to improve malware analysis, mitigation, and detection capabilities
- Lead, design, and execute on research projects and implement new malware analysis tools, and stay on top of the latest technology and security landscape trends
- Author reports and brief stakeholders on threat actor activity, trends, tools, tactics, techniques, and procedures (TTPs)
- Help drive cybercrime dismantling strategies through malware analysis, including understanding how consumer-centric malware behaves across multiple platforms (mobile and other computing devices) and how it plays into the broader cybercrime ecosystem
**Minimum Qualifications**
- **5+ years of experience as a malware reverse engineer or researcher, and have the ability to triage and analyze emerging threats and malware**
- **3+ years of experience in analyzing network traffic, synthesizing threat intelligence, and building detection rules**
- Effective written and verbal communication including the ability to describe malware analysis findings, risk, and other threat factors to non-technical and executive audiences
- Ability to effectively collaborate with internal stakeholders and partners and external partners
**Preferred Qualifications**
- Strong background in threat intelligence and malware analysis
- Track financially-motivated threat actors that might target the financial industry and its clients
- Possess excellent knowledge in common malware defensive capabilities, such as anti-VM and anti-debugger techniques, common packers, compression algorithms, etc.
- Experience presenting to different stakeholders of varying technical depth
- Proficiency with static and dynamic analysis tools, packet analyzers, sandboxes, etc.
- Ability to instantiate and manage a malware analysis lab (bare-metal, VMs)
- Certified with GREM/GCFE/GCFA (or equivalent)
Enterprise Job Description: Responsible for supporting the Cyber Crime Protection strategy. Assists in cyber crime response and investigation efforts and processes. Contributes to the continuous improvement of the Cyber Crime Protection program by researching and partnering to define enterprise requirements. Leverages monitoring and detection products and knowledge of cyber crime issues, threats, and mitigation techniques to protect the enterprise. Partners with stakeholders across various functions to improve the firms cyber crime resilience and client experience. Supports the engagement with customers, clients and stakeholders across various lines of business.
**Job Band:**
H5
**Shift:**
1st shift (United States of America)
**Hours Per Week:**
40
**Weekly Schedule:**
**Referral Bonus Amount:**
0
**Job Description:**
**Are you passionate about working with the best information security team in the world?** **Bank of America is hiring top talent to join our innovative and forward thinking team.**
**What We Do:**
At Bank of America, we handle the finances of over 67 million client relationships every day, including helping them save, borrow, and invest for today and for their future. We stand by our clients each and every day giving them the power to realize their personal financial goals and help make their financial lives better.
The Global Information Security organization is responsible for protecting bank information systems, confidential and proprietary data, and customer information. The team:
+ Develops the banks Information security strategy and policy
+ Manages the Information security program and identifies and addresses vulnerabilities
+ Develops, deploys and manages a risk-based controls portfolio
+ Manages and operates a global security operations center that monitors, detects and responds to cybersecurity incidents
**What Were Looking For:**
Were looking for the next generation of Cyber security experts those with a passion for growing a long-term career, building relationships and working with a team ofinnovative and forward thinkinginformation security professionals. Our cyber team is meant for those looking to make a real impact and build a career in information security. The role is ideal for those who have a passion to work with industry leaders to protect our brand and the customer/client experience by proactively detecting, disrupting, and mitigating cyber security across the organization.
**What Youll Get:**
From day one, youll receive training including hands-on practice, personalized coaching and dedicated support throughout your on-boarding experience. With demonstrated success, youll have the opportunity to advance into many different roles with Global Information Security with unlimited opportunity to grow throughout your career. You will be supported with dedicated programs, tools, and resources throughout your career journey.
**Well help you:**
Build a successful career at Bank of America through world-class training and on-boarding programs that set you up for success
Grow in your current role through one-on-one coaching from managers who are invested in your success and training programs that help you excel, build new skills or take on additional responsibility
Continuously learn and advance your career goals through intentional career paths to the next best role
Use resources and innovative technologies to optimize the client experience
Expand your business knowledge and network by partnering with experts in Global Information Security, Global Technology and other lines of business
Become an expert in what you do
**What you can look forward to:**
Ongoing professional development to deepen your skills and optimize your expertise as the industry evolves and changes
Resources and dedicated support to help you reach your full potential throughout your career
A benefits program designed to meet the diverse needs of our employees at every stage of their life and help them plan for tomorrow
Progressive workplace practices and initiatives that promote inclusion
**Were a culture that:**
Believes in responsible growth and has a proven dedication to supporting the communities we serve.
Provides continuous training and developmental opportunities to help people achieve their goals, whatever their background or experience.
Believes diversity makes us stronger, so we can reflect, connect to and meet the diverse needs of our clients and customers around the world.
Is committed to advancing our tools, technology, and ways of working. We always put our clients first to meet their evolving needs.
The Cyber Crime Brand Protection analyst function within Global Information Security will assist in managing the firms digital reputation risk and protect the brand against seizure and nefarious activity.
Successful candidate will have strong process and program skills and be able to quickly assess end to end processes that could impact the Banks brand. A working knowledge of international financial processes, such as payments or wires, is strongly preferred. The successful candidate must have a working knowledge of cybersecurity best practices and can speak to processes, tools and technologies that can be support and protect the Banks brand. Self-starter, takes initiative and possesses strong analytical and creative skills. Can successfully influence across the organization and all levels. Works well with others. The candidate is required to be tech savvy and interested in learning how technologies can provide value as well as risk to our brand and the firm. Strong verbal and written communication skills required. Successful candidate must be comfortable working in an entrepreneurial, evolving environment.
**Key Responsibilities**
- Perform static and dynamic malware analysis to identify indicators of compromise (IOCs), anomalous behaviors, and other signals to detect consumer-centric malware
- Monitor alerts, events, and incidents from multiple technologies to detect and report anomalies to response and fraud operation teams
- Serve as the subject matter expert (SME) on cross-functional initiatives to improve malware analysis, mitigation, and detection capabilities
- Lead, design, and execute on research projects and implement new malware analysis tools, and stay on top of the latest technology and security landscape trends
- Author reports and brief stakeholders on threat actor activity, trends, tools, tactics, techniques, and procedures (TTPs)
- Help drive cybercrime dismantling strategies through malware analysis, including understanding how consumer-centric malware behaves across multiple platforms (mobile and other computing devices) and how it plays into the broader cybercrime ecosystem
**Minimum Qualifications**
- **5+ years of experience as a malware reverse engineer or researcher, and have the ability to triage and analyze emerging threats and malware**
- **3+ years of experience in analyzing network traffic, synthesizing threat intelligence, and building detection rules**
- Effective written and verbal communication including the ability to describe malware analysis findings, risk, and other threat factors to non-technical and executive audiences
- Ability to effectively collaborate with internal stakeholders and partners and external partners
**Preferred Qualifications**
- Strong background in threat intelligence and malware analysis
- Track financially-motivated threat actors that might target the financial industry and its clients
- Possess excellent knowledge in common malware defensive capabilities, such as anti-VM and anti-debugger techniques, common packers, compression algorithms, etc.
- Experience presenting to different stakeholders of varying technical depth
- Proficiency with static and dynamic analysis tools, packet analyzers, sandboxes, etc.
- Ability to instantiate and manage a malware analysis lab (bare-metal, VMs)
- Certified with GREM/GCFE/GCFA (or equivalent)
Enterprise Job Description: Responsible for supporting the Cyber Crime Protection strategy. Assists in cyber crime response and investigation efforts and processes. Contributes to the continuous improvement of the Cyber Crime Protection program by researching and partnering to define enterprise requirements. Leverages monitoring and detection products and knowledge of cyber crime issues, threats, and mitigation techniques to protect the enterprise. Partners with stakeholders across various functions to improve the firms cyber crime resilience and client experience. Supports the engagement with customers, clients and stakeholders across various lines of business.
**Shift:**
1st shift (United States of America)
**Hours Per Week:**
40
Learn more about this role
Full time
JR-22082633
Band: H5
Manages People: No
Travel: No
Manager:
Talent Acquisition Contact:
Stuart Collier
Referral Bonus:
0
Colorado pay and benefits information
**Colorado pay range:**
$87,500 - $126,200
annualized salary, offers to be determined based on experience, education and skill set.
**Discretionary incentive eligible**
This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.
**Benefits**
This role is currently benefits eligible . We provide industry-leading benefits, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity and affirmative action, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
To view the "EEO is the Law" poster, CLICK HERE (https://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf) .
To view the "EEO is the Law" Supplement, CLICK HERE (https://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP\_EEO\_Supplement\_Final\_JRF\_QA\_508c.pdf) .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy (Policy) establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
To view Bank of Americas Drug-free workplace and alcohol policy, CLICK HERE .
