Sr Malware Prevention Reverse Engineer - Cyber Security Operations
San Antonio, Texas;Washington, District of Columbia; Chicago, Illinois; Denver, Colorado
**Job Description:**
Are you passionate about working with the best information security team in the world? Bank of America is hiring top talent to join our team.
The Cyber Security Defense (CSD) function within Global Information Security is responsible for all aspects of threat intelligence and monitoring, application and network security, and insider threat. In addition, the CSD team drives out the enterprise-wide cyber exercise program
The Malware Prevention Teams aim is to reduce risk across Bank of America by using existing or establishing robust cyber-hacking and malicious code containment activities for the security, safeguarding, continuity and confidentiality of information of Bank of America. They are looking for an advanced-level analyst that has experience with threat actor tracking, malware analysis, and reverse engineering of malware. They will be part of a Malware Prevention sub-team team that focuses on malware research and analysis.
Responsibilities include, but are not limited to:
In-depth analysis of malware, including authoring analysis reports.
Tracking malware campaigns, malicious actors, and related infrastructure.
Creation of tools and scripts to assist in the analysis of malware analysis.
Field escalations of potentially malicious files and websites from teams within Malware Prevention.
Required Skills:
+ Strong direct experience of analyzing malware
+ Intermediate to advanced malware analysis skills
+ Intermediate to advanced experience reverse engineering tools such as IDA Pro, x64dgb, OllyDbg, Immunity Debugger and/or Ghidra
+ Intermediate to advanced experience reverse engineering malware code written in C, C++, VisualBasic, Java, .NET, Delphi, JavaScript, and VBScript.
+ Solid background in C++ programming and Win32 APIs
+ Experience creating malware analysis tools and scripts for use in tasks such accelerating malware analysis, unpacking malware, and extracting data (ex configuration extraction)
+ Experience building and maintain scripts to emulate malware and parse c2 response traffic is a plus
+ Experience in encryption/obfuscation and how to reverse it is desired
+ Can create innovative ways to track progression of malware families, infrastructure and campaigns conducted by ecrime, and cyber espionage actors
+ Experience with penetration testing and/or adversary emulation is a plus.
+ Background in network traffic analysis.
+ Knowledge of networking protocols: TCP/IP, HTTP/HTTPs, FTP, IRC etc
+ GCIH, GREM, GCFA or CISSP is desired, but not required
+ Able to work independently on tasks, but also work well within a team environment
**Job Band:**
H4
**Shift:**
1st shift (United States of America)
**Hours Per Week:**
40
**Weekly Schedule:**
**Referral Bonus Amount:**
0
**Job Description:**
Are you passionate about working with the best information security team in the world? Bank of America is hiring top talent to join our team.
The Cyber Security Defense (CSD) function within Global Information Security is responsible for all aspects of threat intelligence and monitoring, application and network security, and insider threat. In addition, the CSD team drives out the enterprise-wide cyber exercise program
The Malware Prevention Teams aim is to reduce risk across Bank of America by using existing or establishing robust cyber-hacking and malicious code containment activities for the security, safeguarding, continuity and confidentiality of information of Bank of America. They are looking for an advanced-level analyst that has experience with threat actor tracking, malware analysis, and reverse engineering of malware. They will be part of a Malware Prevention sub-team team that focuses on malware research and analysis.
Responsibilities include, but are not limited to:
In-depth analysis of malware, including authoring analysis reports.
Tracking malware campaigns, malicious actors, and related infrastructure.
Creation of tools and scripts to assist in the analysis of malware analysis.
Field escalations of potentially malicious files and websites from teams within Malware Prevention.
Required Skills:
+ Strong direct experience of analyzing malware
+ Intermediate to advanced malware analysis skills
+ Intermediate to advanced experience reverse engineering tools such as IDA Pro, x64dgb, OllyDbg, Immunity Debugger and/or Ghidra
+ Intermediate to advanced experience reverse engineering malware code written in C, C++, VisualBasic, Java, .NET, Delphi, JavaScript, and VBScript.
+ Solid background in C++ programming and Win32 APIs
+ Experience creating malware analysis tools and scripts for use in tasks such accelerating malware analysis, unpacking malware, and extracting data (ex configuration extraction)
+ Experience building and maintain scripts to emulate malware and parse c2 response traffic is a plus
+ Experience in encryption/obfuscation and how to reverse it is desired
+ Can create innovative ways to track progression of malware families, infrastructure and campaigns conducted by ecrime, and cyber espionage actors
+ Experience with penetration testing and/or adversary emulation is a plus.
+ Background in network traffic analysis.
+ Knowledge of networking protocols: TCP/IP, HTTP/HTTPs, FTP, IRC etc
+ GCIH, GREM, GCFA or CISSP is desired, but not required
+ Able to work independently on tasks, but also work well within a team environment
**Shift:**
1st shift (United States of America)
**Hours Per Week:**
40
Learn more about this role
Full time
JR-22087820
Band: H4
Manages People: No
Travel: No
Manager:
Talent Acquisition Contact:
Adam Waller
Referral Bonus:
0
Colorado pay and benefits information
**Colorado pay range:**
$135,000 - $169,700
annualized salary, offers to be determined based on experience, education and skill set.
**Discretionary incentive eligible**
This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.
**Benefits**
This role is currently benefits eligible . We provide industry-leading benefits, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity and affirmative action, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
To view the "EEO is the Law" poster, CLICK HERE (https://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf) .
To view the "EEO is the Law" Supplement, CLICK HERE (https://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP\_EEO\_Supplement\_Final\_JRF\_QA\_508c.pdf) .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy (Policy) establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
To view Bank of Americas Drug-free workplace and alcohol policy, CLICK HERE .
