Information Security Threat Management Specialist

This job is responsible for assessing the bank's technologies, applications, and overall security controls to identify potential risks and vulnerabilities that may impact Bank of America's information security. Key responsibilities include developing a better understanding of Bank of America's Global Information Security policy and relevant cyber security threats to complete security assessments. Job expectations include developing technical subject matter expertise to support partners, and adapting testing methods to emerging cyber security regulations and evolving threats.

Responsibilities:

• Assesses systems controlling access to bank resources for compliance to security policies and controls by utilizing external threat frameworks, internal threat intelligence, and systems documentation

• Analyzes, improves, implements, and executes security controls proactively to identify risks of threat actors from infiltrating company systems or information

• Leverages risk management practices, and internal escalation processes to document findings for remediation

• Monitors new threats and complex attempts to compromise security controls while developing a deep expertise in the early lifecycle for security techniques to identify vulnerabilities before they present a risk to the bank

• Develops strong partnerships by demonstrating operational expertise as a subject matter expert

Skills:

• Critical Thinking

• Customer and Client Focus

• Information Systems Management

• Problem Solving

• Threat Analysis

• Cyber Security

• Policies, Procedures, and Guidelines Management

• Quality Assurance

• Risk Analytics

• Technology System Assessment

• Business Acumen

• Business Intelligence

• Data Privacy and Protection

• Data and Trend Analysis

• Stakeholder Management

Required qualifications:

• 3-5 years working counterintelligence investigations with demonstrated knowledge of hostile nation state threats

• Bachelors degree in Information Technology and/or International Studies

• A broad knowledge of computer networking, log analysis, information security principles, and adversarial tools and techniques

• Demonstrated ability to identify, analyze and address cyber security issues or threats, including emerging tactics or techniques

• Proficiency with executive-level tracking and reporting, including expertise in Jira and Excel

• Must be comfortable presenting to a wide spectrum of individuals having varying degrees of technical understanding

• Strong project management skills

• Strong program management skills

• Ability to work independently with little oversight managing multiple investigations simultaneously

• Demonstrated vendor management skills

• Strong analytical skills/problem solving/conceptual thinking

• Ability to resolve issues with minimal negative impact and risk to the organization.