דרושים ב-Bank Of America ב-United States, Chicago

Job Description:

Job Description:

Key Responsibilities:

• Develop and maintain security detection use cases across DLP channels (e.g., endpoint, cloud, network).
• Drive tuning and refinement of detection logic to improve fidelity and reduce false positives.
• Leverage knowledge of proxy architectures and internet connectivity patterns to optimize detection logic, ensure visibility and address evasion techniques.
• Partner with control owners (e.g., DLP, Email, Endpoint) to ensure detection alignment with business risk and policy coverage.
• Design and document automation playbooks to support consistent detection response workflows, ensuring they can be operationalized by the appropriate teams.
• Consult with policy and control owners on new projects and proposed changes to ensure detection coverage remains effective and aligned to data protection requirements.
• Review proposed control changes and new technology integrations to validate they meet detection and monitoring requirements.
• Map detection logic to threat models, including MITRE ATT&CK, and continuously evaluate coverage gaps.
• Collaborate with Response Managers, Threat Intelligence, and Engineering to validate and optimize alerting logic.
• Translate validated adversary behaviors from hunt exercises, threat intelligence, and incident trends into refined detection use cases and tuning strategies.
• Perform targeted detection-focused hunts within DLP channels to validate coverage and identify gaps.
• Review detection health and signal integrity, and lead quality assurance of rule performance.
• Create and maintain runbooks and detection documentation to support SOC operations and audit requirements.
• Provide technical oversight and mentorship to analysts and detection stakeholders across regions.
• Collaborate with audit and risk teams to demonstrate detection control effectiveness and alignment to regulatory expectations.

Core Competencies:

• Strong analytical skills with the ability to identify detection gaps and operational inefficiencies.
• Excellent communication and documentation skills; able to translate technical content for various audiences.
• Proactive, collaborative, and capable of working across global teams.
• Adept at managing competing priorities and leading through influence.

Required Qualifications

• 7+ years of experience in cybersecurity roles with a focus on detection, security operations, or threat response.
• Deep knowledge of SIEM platforms, EDR, DLP, UEBA, and cloud telemetry (e.g., Splunk, CrowdStrike, Symantec, Microsoft Purview, Sentinel, Wiz).
• Experience collaborating with threat hunting or conducting targeted hunts to identify detection gaps and inform use case development
• Familiarity with structured detection logic (EDM, Regex, YARA, Sigma) and signal tuning principles.
• Strong understanding of MITRE ATT&CK and threat-informed defense frameworks.
• Experience in regulated industries (e.g., financial services) preferred.

Skills:

• Cyber Security
• Data Privacy and Protection
• Problem Solving
• Process Management
• Threat Analysis
• Business Acumen
• Data and Trend Analysis
• Interpret Relevant Laws, Rules, and Regulations
• Risk Analytics
• Stakeholder Management
• Access and Identity Management
• Data Governance
• Encryption
• Information Systems Management
• Technology System Assessment

Job Description:

The Information Security Officer will be a member of the Business Information Security Officer's (BISO) organization and work closely with the line of business Front Line Units (FLU) / CIO executives. In this role, you will be supporting a group/team to develop a deep understanding of the business in order to have specialized information security risk-based discussions. This relationship will ensure a focus on the right risk priorities. You will also provide guidance on information security topics, policies and controls.Scale/Scope
• Contribute to the ongoing information security initiatives and improvements development, implementation and maintenance of information security for FLU/Ops
• Serves as an Information Security subject matter expert and participates in the development, implementation and maintenance of information security for FLU/Ops
• Aligned to Fraud Authentication , Financial Center, and Automated Teller Machines channel segments to drive a security strategy and to ensure appropriate security by design requirements execution
• Provides guidance and advocacy regarding the prioritization of investments that impact information security
• Advises management on risk issues related to information security and recommends actions in support of the bank's wider risk management and compliance programs
• Monitors information security trends internal and external to the bank and keeps leadership informed
• Manages quality control and reporting
• Ensures compliance with policies and lawsRequired Skills
• Information Security & Technology professional with 10+ years’ experience
• 7+ years of risk management experience with proven ability to effectively apply risk principles to challenging business situations
• Subject matter expertise in application security, vulnerability testing and development of risk appetite
• Experience evaluating cyber security controls and providing guidance for platform or distributed computing platforms (Cloud, PaaS)
• Experience evaluating third party information security control and providing guidance to reduce risk on identify observations
• Experience with information security for No SQL, Big Data , and unstructured data stores (Cassandra, Hadoop, and /or Teradata)
• Knowledge in Windows, Midrange and Mainframe Platforms with emphasis on security application security controls
• Exceptional executive presentation and communication skills
• Excellent influencing and problem resolution skills
• Advises LOB management on risk issues related to information security and recommends actions in support of the bank's wider risk management and compliance programs
• Ability to be comfortable delivering messages across a wide spectrum of individuals having varying degrees of technical understanding
• Strong leadership skills and qualities which enable you to work with peers and various levels of managementDesired Skills:
• Bachelors and/or Master’s degree in Computer Science, Information Technology or related field
• Experience working on cloud control assessment in Microsoft Azure, Amazon Web Services and Google Cloud Platform environments

Risk Management
• Drives GIS/FLU/Ops risk deliverables
• Collaborates with risk partners on info security critical priorities
• Participates in senior FLU/Ops specific Risk Management & Business Continuity Routines
• Identifies and measures global information security (GIS) controls on most critical business processes or channelsLeadership/Strategy
• Ability to build strong Partner relationships with peer technology groups and supported FLU/Ops
• Supports the triage process with the client and helps them understand the GIS support structure
• Drives required risk culture and partnership with peer technology teams and supported FLU/Ops
• Participates in key operating routines to drive information security risk strategy

** On call and weekend rotation required**

Responsibilities include but are not limited to:

Crisis and Event Response
• Serve in a critical response role during crisis events, coordinating efforts to mitigate impact and facilitate recovery.
• Responsible for the continuous improvement, development and execution of crisis response plans, ensuring alignment with organizational business continuity strategies.
• Coordinate with cross-functional teams to prepare for and respond to incidents, including cyber threats, natural disasters, and other emergencies.

Documentation and Reporting
• Maintain up-to-date documentation of operational event response plans, procedures, protocols, and incident reports.
• Provide regular updates to senior management on the status of related business continuity initiatives and response activities.

Continuous Improvement
• Stay informed about industry best practices, regulatory requirements, and emerging threats related to business continuity and cybersecurity.
• Identify opportunities for process improvement and contribute to the enhancement of the organization's resilience capabilities.
• Lead or participate in Project Management activities

Required Qualifications
• 3+ years of experience in crisis management, or a related role, preferably within the cybersecurity sector.
• Strong analytical skills and the ability to assess complex situations and develop effective solutions.
• Excellent communication and interpersonal skills, with the ability to collaborate with diverse teams and stakeholders
• Experience with risk management frameworks and methodologies
• Knowledge of disaster recovery planning and execution, including IT disaster recovery strategies.
• Understanding of cybersecurity principles, threats, and vulnerabilities that may impact business operations.
• Ability to analyze complex situations, identify vulnerabilities, and develop effective solutions.
• Strong problem-solving skills to address challenges and make informed decisions during event/crisis

This job is responsible for providing moderately complex research, reporting, and analytical support for the delivery of end-to-end support for Global Markets sales, trading and underwriting business for securities, foreign exchange, fixed income, exchange traded derivatives, and over-the-counter derivatives across multiple Lines of Business. Key responsibilities include carrying out duties under general supervision and assisting teammates while following established procedures.

Responsibilities:

• Conducting client due diligence (CDD) and enhanced due diligence (ECDD) in accordance with internal policies, procedures and regulatory guidelines

• Review of refresh requirements for assigned jurisdiction in line with related Client Identification Profile (CIP)/CDD Procedures to ensure adequacy and accuracy before the requirements are sent to the client.

• Liaise with sales/ client outreach teams to obtain and validate correct documentation to fulfill refresh requirements

• Perform client refresh through the review of client documentation, vendor databases and data entered into proprietary systems to ensure all refresh requirements are met

• Ensure all jurisdictional regulatory requirements related to KYC are adhered to

• Support business with KYC related queries and requests

• Participate in remediation, internal/external Audits (where applicable)

• Maintains accuracy of client portfolio using internal and external comparison tools

• Performs research and conducts moderately complex analyses using established techniques, including transactions that require special handling and exception handling

• Explores methods to enhance processes, further reduce risks, and boost client experience

• Creates reports and liaises with internal partners to ensure proper client reporting and assist with regulatory reporting

• Escalates potential risks and exposures to manager in a timely manner

• Assists with ad-hoc projects, new processes, or initiatives requiring coordination among subject matter experts representing multiple product areas or functions

Job Requirements:

• 2+ years of financial services experience

• Excellent verbal and written communications skills

• Documented experience performing in a process-oriented production environment that changes periodically

• Familiar with MS Office Suite(Excel/Word/Outlook/Access)

• Work in a team environment

• Organize work, prioritize tasks and handle multiple assignments simultaneously

• Successfully meet tight deadlines while ensuring data accuracy and integrity

• Work and execute with minimal supervision or remote management

Skills:

• Attention to Detail

• Critical Thinking

• Data Collection and Entry

• Recording/Organizing Information

• Research

• Fraud Management

• Interpret Relevant Laws, Rules, and Regulations

• Problem Solving

• Quality Assurance

• Risk Management

• Adaptability

• Customer and Client Focus

• Prioritization

• Result Orientation

• Written Communications

Job Description:

The Application Remediation Governance Consultant will contribute to reduction of technology risk in the bank by driving down the time taken to remediate identified application vulnerabilities, working with application managers and risk partners to resolve vulnerabilities in a time frame aligned to the Bank’s risk appetite.

The candidate will attend report out calls following a security assessment of a particular application aligned with an assigned 4 dot hierarchy. Candidate will track the identified vulnerabilities in the system of record and work with the application or vendor manager until resolution. Update status of vulnerabilities as required in the system of record and will aid the application and/or vendor manager with any technical or process related queries during resolution of the identified vulnerabilities.

Required Qualifications:

• Knowledge of the Continuous Monitoring Tool, as well as ROCK and Cloudera Data Visualizer.
• Excellent skills in data management and manipulation, creating pivot tables, etc.
• Critical thinker and logical problem solver. Ability to understand a problem, explore solutions and present them with pros, cons and other considerations. Possesses an Operational Excellence mindset.
• Excellent communication, both written and verbal, and excellent interpersonal skills.
• Strong organizational and time management skills, as well as the ability to be a self-starter and work independently.
• Experience assembling impactful reporting packages
• Demonstrates intellectual curiosity.
• 2+ years of general experience in information security.

Skills:

• Controls Management

• Cyber Security

• Data Governance

• Information Systems Management

• Risk Management

• Architecture

• Customer and Client Focus

• Executive Presence

• Threat Analysis

• Vendor Management

• Advisory

• Business Acumen

• Business Intelligence

• Cloud Solutions

• Technology System Assessment

Job Description:

Job Description:

The Information Security Transformation Lead willdrivethe design, integration, and execution of enterprise-wide transformation initiatives to strengthen data protection and data security capabilities within the Data Loss Prevention (DLP) organization. The role spans all DLP channels — endpoint, network, cloud, email, internet, and data at rest — ensuring the program evolves to meet advanced threats, regulatory requirements, and strategic business needs.

This highly technical position demands deep expertise in information security architecture, engineering, and threat detection with a proven track record in implementing modern, scalable, and secure data protection capabilities. The Transformation Lead serves as the strategic and technical lead for DLP transformation, ensuring the DLP organization delivers best-in-class data protection capabilities across all channels.

Key Responsibilities

• Own the DLP transformation roadmap for data protection and data security across all channels, aligning with enterprise information security architecture and DLP strategy.
• Conduct deep technical assessments of DLP and adjacent security capabilities, identifying architecture, tooling, and process gaps.
• Partner with control owners to develop functional and non-functional requirements for new capabilities, ensuring alignment to threat models and compliance requirements.
• Architect and guide the delivery of integrated data protection solutions, incorporating DLP tooling, encryption, cloud-native controls, and internet security capabilities.
• Develop and maintain threat models for data exfiltration and insider threat scenarios, mapping to frameworks such as MITRE ATT&CK.
• Oversee technical design for secure internet traffic inspection, advanced policy enforcement, and automation for faster detection and response.
• Ensure all transformation efforts meet regulatory, audit, and security policy standards (e.g., NIST 800-53, FFIEC, GDPR, CCPA).
• Act as a trusted advisor to GIS, CTO, and enterprise stakeholders on advanced data protection strategies and engineering practices.
• Provide clear executive-level reporting on transformation progress, security posture improvements, and program maturity.

Required Qualifications

• Minimum of 7 years of information security expertise in architecture, engineering, and operations, with focus areas in:
  • DLP across endpoint, network, email, cloud, and data at rest
  • Internet protocols, proxy and gateway security, firewall policy design
  • Cloud security architectures and SaaS data protection
  • Encryption, key management, and secure data handling
• Proven experience integrating data protection solutions with SIEM, SOAR, CASB, EDR/XDR, IAM, and secure web gateways.
• Strong capability in threat modeling and translating results into security architecture changes.
• Understanding of regulatory and industry standards for high-risk data in financial services and other regulated environments.
• Ability to lead technical design reviews and challenge architectural decisions to ensure security-by-design.
• Exceptional relationship management and influence skills across complex, global organizations.

Desired Qualifications

• Security certifications such as CISSP, CCSP, CISM, or GIAC.
• Automation and scripting skills (Python, PowerShell, etc.).
• Experience in AI-assisted anomaly detection for data security.
• Background in financial services or similarly regulated industries.

Skills:

• Cyber Security
• Data Privacy and Protection
• Problem Solving
• Process Management
• Threat Analysis
• Access and Identity Management
• Business Acumen
• Interpret Relevant Laws, Rules, and Regulations
• Risk Analytics
• Stakeholder Management
• Data Governance
• Data and Trend Analysis
• Incident Management
• Information Systems Management
• Technology System Assessment

Job Description:

Job Description:

Responsibilities

As a Critical Infrastructure Assurance Review (CIAR) - Info Security Exposure Mgmt. Sr Specialist, the individual will be focused on the following areas:
• Performing Critical Infrastructure Assurance Review (CIAR) process design and maturation.
• Testing of Core Infrastructure identified AITs, leveraging industry standard guidance against evolving ransomware and malware tactics, techniques, and procedures.
• Partnering with infrastructure teams and SMEs to facilitate the collection of evidence.
• Exercising independent judgment in evaluation criteria to obtain results.
• Performing QA and determining levels of compliance.
• Submitting observations for remediation tracking.
• Tracking and reporting of assessment status to leadership team.
• Iterating on the assessment and continually improving its in-scope questions and controls.

Required Skills:
• Experience in Information Security and/or IT Audit
• Technical writing and verbal communication skill
• Ability to effectively work with partners at varying knowledge and organization levels.
• Ability to communicate clearly and effectively with both technology/development and business partners – ability to translate between these two constituencies.
• Highly organized and motivated to deliver results with minimal direction.
• Creative and proactive problem solver – ability to understand what the team needs and offer suggestions above and beyond what they desire.
• Naturally curious individual with the ability to quickly become the authority in the various data and systems used by the team.
• Strong relationship, team building and facilitation skills.
• Good knowledge of current ransomware and malware threats and vulnerabilities, operating systems, database management and OSI Model.
• Proficient with Microsoft Office (Word, PowerPoint, Excel), Tableau, SharePoint.

Desired skills:
• Information Security certifications, including ISO27002 / CISSP / CEH / CISM / CISA
• Experience in coordinating team projects
• Knowledge of NIST and NSA guidelines

• Education: B.E. / B. Tech/M.E. /M. Tech/B.Sc./M.Sc./BCA/MCA (prefer IT/CS specialization)

This job will be open and accepting applications for a minimum of seven days from the date it was posted.