דרושים Senior Cyber Crime Specialist ב-Bank Of America ב-United States, Denver

Job Description:

Job Description:

Our Security Operations and Threat Response team within Bank of America’s Cyber Security Technology function works to continuously strengthen the bank’s cyber security posture through partnership and delivery of technology to support our content detection and threat hunt teams. This team works with partners in Cyber Security Operations to deliver robust technology solutions and support for detection engineering environments and content scenarios.

Required Qualifications:

• Minimum of 6+ years of experience in a technical role in the areas of Security Operations, Incident Response, Content Development or Equivalent Experience in a large Enterprise Splunk Environment performing triage and administrative duties.
• Direct experience performing content detection engineering and threat hunting in an active corporate environment.
• Significant experience working with Splunk Procedure Language to create and tune detections.
• Experience mapping data fields to a common data model such as CEF, OCSF.
• Direct experience working with very large datasets and log analysis tools including but not limited to: Splunk, Python, Pandas, SQL, Hadoop, Hue
• Ability to see the larger picture when dealing with competing requirements and needs from across the organization in order to build consensus and drive results.
• Ability to navigate and work effectively across a complex, geographically dispersed organization.
• Experience with enterprise scale EDR, SIEM, and SOAR tools.
• Experience in requirements gathering around the Splunk tool, documenting requirements, requirement analysis, product testing, etc.
• Splunk Infrastructure Management Experience/Knowledge
• Collaborate with teams to Monitor and optimize the performance of the Splunk environment, to ensure efficient data processing and search capabilities on our search heads.
• Ability to troubleshoot, triage and resolve issues related to Splunk Infrastructure, ensuring high availability and reliability.
• Experience in Splunk enterprise and Splunk Cloud

Data Ingestion and Parsing:

• Design and implement data ingestion strategies for various log sources into Splunk.
• Develop and maintain parsing configurations to normalize and enrich incoming data for effective analysis.
• Collaborate with application owners and IT teams to onboard new data sources into Splunk.
• Search and Reporting:
• Create and optimize search queries and reports to extract valuable insights from the indexed data.
• Customize and implement Splunk dashboards for different stakeholders to visualize key performance indicators and security metrics.

Security and Compliance:

• Implement security best practices within Splunk to safeguard sensitive data.
• Collaborate with the security team to configure and monitor alerts for suspicious activities or security incidents.
• Ensure compliance with industry regulations and internal policies related to log management and data retention.
• Automation and Scripting:
• Develop automation scripts using SPL (Search Processing Language) and other scripting languages to streamline administrative tasks.
• Continuously seek opportunities to improve efficiency through automation in Splunk processes.

Documentation and Training:

• Maintain thorough documentation of Splunk configurations, processes, and troubleshooting procedures.
• Provide training and support to other IT team members on Splunk best practices and usage.
• Experience consuming, analyzing, and reporting Cyber Threat Intelligence for actionable takeaways
• Demonstrated ability to self-direct, with minimal supervision to achieve assigned goals.

Desired Qualifications:

• Experience with offensive security tools and integration of SIEM, SOAR, CSPM and other technical integrations within large enterprise networks.
• Knowledge of basic Data Science concepts and processes.
• Experience performing security analysis and threat hunting in Cloud environments such as Azure, M365, AWS
• Experience Maintaining KV Stores.
• Experience Performing Regular Updates/Upgrades on Splunk Apps and Add-ons. As well as the Splunk environment as a whole.

Skills:

• Influence
• Result Orientation
• Solution Design
• Stakeholder Management
• Technical Strategy Development
• Access and Identity Management
• Critical Thinking
• Cyber Security
• Information Systems Management
• Risk Management
• Collaboration
• DevOps Practices
• Financial Management
• Solution Delivery Process
• Test Engineering

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

Job Description:

Job Description:

Role Description:

As the development lead, you will drive the strategic vision for a multi environment platform that integrates security tools, telemetry, automation, and analytics into a unified experience. You will collaborate closely with SOC analysts, threat hunters, incident responders, and security engineers to ensure that the interface meets operational needs while reducing friction and improving response times.

Skills

• Deep expertise in cybersecurity operations, threat detection, and incident response workflows.
• Proven experience designing and deploying platforms that integrate SIEM, SOAR, TIP, EDR, and cloud-native telemetry
• Strong understanding of federated data access, log normalization, and real-time streaming (e.g., Cribl, Kafka)
• Familiarity with LLM orchestration frameworks (e.g., LangChain, LlamaIndex) and AI/ML-driven analytics
• Experience with advanced SOAR Playbooks and/or AI Agents.
• Experience with data modeling, schema mapping, and field correlation across hybrid/multi-cloud environments
• Strong interpersonal and executive communication skills; ability to translate technical vision into business value
• Demonstrated ability to lead cross-functional teams of engineers, data scientists, and security analysts
• Experience with agile development, DevSecOps, and secure software lifecycle practices
• Experience developing technology for MDR, or other large scale cybersecurity platform software providers.

Roles & Responsibilities

• Partner to lead the development of an AI-augmented threat hunting and security operations platform that unifies telemetry, automation, and analytics
• Architect and oversee the integration of federated data sources across cloud, on-prem, and legacy environments
• Collaborate with cybersecurity teams and engineering teams to define use cases for LLMs in threat detection, log correlation, and contextual enrichment
• Drive the implementation of a modular, scalable platform that supports real-time streaming, historical search, and AI-assisted investigation
• Champion the use of structured data models and field taxonomies (e.g., OCSF, ECS) to enable semantic search and automation
• Integrate LLMs to support use cases such as data cataloging, field mapping, log summarization, and hypothesis-driven hunting
• Establish performance metrics and feedback loops to continuously improve platform usability, detection efficacy, and analyst productivity
• Partner with SOAR teams to develop agent-based playbooks for automated context gathering and response
• Ensure platform security, compliance, and auditability across all integrated components

Required Qualifications:

• 10+ years of experience in cybersecurity engineering, threat detection, or security platform development
• 7+ years of leadership experience managing cross-functional technical teams
• Strong background in building or integrating security data platforms (e.g., Splunk, Elastic, Chronicle, Snowflake, Anvilogic)
• Experience with cloud-native security architectures (AWS, Azure, GCP) and hybrid infrastructure
• Familiarity with LLMs, vector databases, and AI/ML pipelines for security use cases
• Hands-on experience with log streaming, data normalization, and federated search technologies (e.g., Cribl, Trino, Anvilogic)
• Deep understanding of SOC workflows, threat hunting methodologies, and MITRE ATT&CK framework
• Experience with API-based integrations, open-source security tooling, and secure platform design
• Secure Coding experience.

Managerial Responsibilities:
This position may also have responsibilities for managing associates. At Bank of America, all managers at this level demonstrate the following responsibilities, in addition to those specific to the role, listed above.

• Opportunity & Inclusion Champion: Models an inclusive environment for employees and clients, aligned to company Great Place to Work goals.
• Manager of Process & Data: Demonstrates deep process knowledge, operational excellence and innovation through a focus on simplicity, data based decision making and continuous improvement.
• Enterprise Advocate & Communicator: Communicates enterprise decisions, purpose, and results, and connects to team strategy, priorities and contributions.
• Risk Manager: Ensures proper risk discipline, controls and culture are in place to identify, escalate and debate issues.
• People Manager & Coach: Provides inspection, coaching and feedback to motivate, differentiate and improve performance.
• Financial Steward: Actively manages expenses and budgets in alignment with objectives, making sound financial decisions.
• Enterprise Talent Leader: Assesses talent and builds bench strength for roles across the organization.
• Driver of Business Outcomes: Delivers results by effectively prioritizing, inspecting and appropriately delegating team work.

Skills:

• Influence
• Risk Management
• Solution Design
• Stakeholder Management
• Technical Strategy Development
• Analytical Thinking
• Application Development
• Collaboration
• Result Orientation
• Solution Delivery Process
• Agile Practices
• Architecture
• Automation
• Data Management
• DevOps Practices

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

Job Description:

Job Description:

This senior technical role is responsible performing and leading ethical hacking assessments of the bank's technologies, applications, and cyber security controls while adapting testing methods to evolving and emerging threats. Key responsibilities include leading and performing research, understanding the bank's security policies, working with appropriate partners to complete assessments and simulations, identifying misconfigurations and vulnerabilities, and reporting on associated risk. These individuals partner closely with security partners, CIO clients and multiples lines of business. These individuals are expected to perform application security-oriented dynamic and static assessments across a multitude of technologies including web UI, web APIs, mobile and cloud, including associated source code.

Key Responsibilities in order of importance:

• Perform assigned analysis of internal and external threats on information systems and predict future threat behavior.
• Incorporate threat actors' tactics, techniques, and procedures into offensive security testing to identify high-value vulnerabilities/chained attacks.
• Developing Proof-of-concepts for exploitation.
• Perform assessments of the security, effectiveness, and practicality of multiple technology systems.
• Leverage innovative thinking to help solve problems or introduce new ideas to processes or products applicable to offensive security.
• Prepare and present detailed technical information for various media including documents, reports, and notifications.
• Provide clear and practical advice regarding managing risks.
• Learn and develop advanced technical and leadership skills, mentor Junior and Intermediate assessors in technical tradecraft and soft skills.
• Respond to security incidents and provide technical assistance to leadership across the Information Security organization.

Required Skills:

• Minimum of 5+ years of professional pentesting, application security or ethical hacking experience, preferably in a large, complex, enterprise environment
• Detailed technical knowledge in at least 5 of the following areas:
  • security engineering
  • application architecture
  • authentication and security protocols
  • application session management
  • applied cryptography
  • common communication protocols
  • mobile frameworks
  • single sign-on technologies
  • exploit automation platforms
  • Web APIs
  • Cloud environments
  • LLM security
• Able to manually identify and reproduce findings, discuss remediation concepts, develop PoCs for vulnerabilities, use scripting/coding techniques, proficiently execute common penetration testing tools, triage, and support incidents, and produce high value findings
• Experience performing manual web application assessments i.e., must be able to simulate a OWASP Top 10 vulnerabilities without the use of tools
• Experience performing manual code reviews for security relevant issues
• Experience working with DAST and SAST tools to identify vulnerabilities
• Knowledge of network and Web related protocols/technologies (e.g., UNIX/LINUX, TCP/IP, Cookies)
• Experience with vulnerability assessment tools and penetration testing techniques.
• Solid programming/debugging skills, development frameworks, CVE and CWE research/reproduction
• Threat Analysis, threat modelling and SBOM analysis
• Innovative thinking, threat actor simulation
• Technology Systems Assessment
• Technical Documentation
• Advisory

Desired:

• CEH, OSCP/OSCE/OSWE/GXPN/GPEN/GWAPT/GMOB/All Practitioner Certs [Port Swigger BSP Academy]/Cloud Cert(s)/ eWPT; eWPTX; eMAPT [INE Pentester Academy]
• Strong programming/scripting skills

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

Job Description:

Merrill is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.

This job is responsible for performing a variety of specialized functions across a team of Financial Advisors, such as business management, business development, wealth planning, investment management, or relationship management. Key responsibilities include providing quality client service, and operations support and executing problems where extensive analysis and evaluation is required. Job expectations include having knowledge of the Merrill Wealth Management business and supporting team members as needed.

This position is subject to SAFE Act registration requirements. Pursuant to the SAFE Act requirements, all employees engaged in residential loan mortgage originations must register with the federal registry system and remain in good standing. Since this position requires SAFE Act registration, employees are required to register and to submit to the required SAFE Act background check and registration process. Failure to obtain and/or maintain SAFE Act registration may result in disciplinary action up to and including termination.

Job Description:

This EGP Specialist Trainee is a training program to develop and prepare candidates to further develop and service the FA Teams client base. The Trainee role allows EGP Specialist to achieve the appropriate designations before taking on the full EGP Specialist role. This position operates in a marketing and sales development role by implementing and executing the Elite Growth Practice (EGP). Specific accountabilities for the role may vary depending on the team’s practice. Performance is measured by the FA or FA team through specific goals, metrics, and behaviors related to the execution of the EGP model. This position is subject to SAFE Act registration requirements. Pursuant to the SAFE Act requirements, all employees engaged in residential loan mortgage originations must register with the federal registry system and remain in good standing. Since your position requires SAFE Act registration, you will be required to register and to submit to the required SAFE Act background check and registration process. Failure to obtain and/or maintain SAFE Act registration may result in disciplinary action up to and including termination. Requirements: Either SIE, Series 7 and 66 registrations or SIE, Series 7, 63, and 65.

Elite Growth Practice (EGP) Wealth Management Specialistposition may be filled at a Trainee, Specialist or Senior level depending on experience of the candidate and needs of the Financial Advisor Team. The Trainee is a non-exempt position for a hire lacking required security licenses and/or designation. This position allows the individual to become fully licensed and achieve the appropriate designations required for the position. If Series 7 and 66 (or 63 & 65) licenses and approved designation are not currently held, must be obtained within a specified timeframe to be eligible for Specialist position.

This

Responsibilities:

• Provides quality client service and effective operations support by resolving client issues and analyzing data to address risk issues and trends

• Escalates issues and provides resolution on complex inquiries, requests, and problems related to client concerns

• Documents client interactions and provides team members with time sensitive updates

• Attends client review meetings to capture notes, document in Salesforce, and tracks all actions/activities to ensure the highest level of client service is provided

• Provides advice and assists with training for team members

Required Qualifications:

• Series 7, 63/65 or 66 or equivalent; must obtain all state registrations held by the Financial Advisor(s) and Advisor Team(s) they support
• SAFE ACT Registration; ADV-2B Required
• Obtain and/or maintain at least one firm approved designation
• Demonstrated expertise and impact in at least two of the following specialized functions: Wealth Planning, Investment Management, Business Development, Business Management and/or Relationship Management
• Possess and demonstrate strong communication skills
• Demonstrate an understanding of how to deliver a strong overall client experience
• Thorough knowledge and understanding of the suite of Wealth Management products and services
• Detail oriented with strong organizational skills and ability to manage multiple tasks and priorities at once
• Strong partnership and relationship management skills; ability to work across Elite Growth Program (EGP) functions and organizational lines/levels
• Ability to influence and demonstrate clear communication and collaboration with others to make sound decisions without direct authority
• Analytical skills with ability to identify trends, root cause and effects and implement improved processes to increase growth and mitigate risk
• Ability to identify client needs and concerns and articulate appropriate approach to align solutions to goals to support responsible growth​

Skills:

• Account Management

• Business Acumen
• Customer Service Management
• Client Management
• Portfolio Management
• Referral Identification
• Referral Management
• Relationship Building
• Administrative Services
• Process Simplification

Minimum Education Requirement:High School Diploma / GED / Secondary School or equivalent

Job Description:

GIS Policy Regulatory Management Specialist represents Global Information Security (GIS) while working with Compliance, Risk, Legal, FLU's and Enterprise functions, consulting on all regulations with Global Information Security applicability. Expected to read published laws rules regulations and guidance’s (LRRGs), understand how they apply to GIS and map them to GIS policy. Maintain the inventory of LRRGs and mappings in the system of record and update the mappings as needed when policy language changes. Must be able to assess regulatory requirements against GIS policy, controls and assessment proof points. Drive action plans to address any regulatory gaps and ensure accurate risk and compliance reporting. Will work closely with subject matter experts including GIS Policy, Risk, Audit, Lines of Business, Legal, Compliance and external regulators as needed.Additional expectations of role:
• Ensure Laws, Rules, Regulations and Guides (LRRGs) in the GIS inventory are mapped to GIS policies and identified gaps are addressed to ensure policy coverage of regulatory requirements, industry standards and best practices.
• Breakdown and map assigned Laws, Rules, Regulations and Guides (LRRGs) to GIS policy requirements
• Raise any identified policy language gaps to be validated and remediated
• Perform Impact Assessments for any GIS policy changes (standards and baselines) to ensure coverage is maintained to aligned LRRGs
• Perform Impact Assessments for GIS Policy Exception Types to ensure a policy violation is not created based on aligned LRRGs
• Maintain accurate data for all LRRGs and GIS policy mappings in the system of records through BAU and QA routines
• Publish routine reports for Regulatory Landscape, metrics, newsletters, etc
• Maintain process documentation and playbooks
• Analytical mindset and teamwork to support and improve the GIS Policy Governance ecosystem.
• Technical and business knowledge to ensure policy language gaps are covered by policy and have aligned controls.
• Result-oriented, business focused, and successful individual to interface across multiple organizational units, at various levels.
• Knowledge/experience/exposure with information security topics, including the design, development, testing, implementation or governance of information security practices and solutions
• Knowledge of access management/risk identification and mitigation/project management skills.

Minimum Years of Experience
5

Required Qualifications:
• Previous experience in Information Technology / Information Security
• Ability to identify, analyze and address problems to resolve issues whenever possible in a way that minimizes negative impact and risk to the organization
• Strong critical thinking/analytical skills/problem solving/conceptual thinking
• Highly effective written and verbal communication skills.
• Microsoft Office Proficient (Excel, Word, Outlook, Visio, PowerPoint, etc.)
• Ability to communicate complex information in simple terms (oral and written)
• Strong organization skills with the ability to prioritize requests and workload accordingly
• Strong analysis and fact-based decision-making
• Strong leadership skills and qualities which enable you to work with peers and various levels of management
• Proven ability of risk oriented approach and Strong risk management acumen.
• Influence horizontally and vertically across the organization and diverse audiences with varying degrees of technical understanding
• Ability to work independently on initiatives with little oversight.
• Motivated and willing to learn.
• Quick learner and self-starter

Desired Qualifications
• 5 years of experience operating within an information security environment.
• Bachelor's degree in Information Technology or related field
• Prior Governance, Compliance, and or Audit experience desired.
• Broad awareness of information security operations and/or enterprise information technology (Enterprise data management, application development, network management).
• Familiarity with independent audit, assessment, QA/QC functions desired.
• Leadership competency in geographically diverse matrixed environment.
• Must be comfortable communicating technology impacts and risk to various levels of executive management understanding the need to tailor and deliver appropriate content for given audience.
• Ability to work with Technical and Non Technical business owners
• Experience with Project Management or working with Project Managers

Skills:

• Customer and Client Focus
• Interpret Relevant Laws, Rules, and Regulations
• Policies, Procedures, and Guidelines
• Problem Solving
• Quality Assurance
• Business Acumen
• Controls Management
• Innovative Thinking
• Process Management
• Stakeholder Management
• Business Process Analysis
• Data Governance
• Data Privacy and Protection
• Data and Trend Analysis
• Risk Analytics

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

Job Description:

Job Description:

The Cyber Security Regulatory Engagement Lead is responsible for developing and supporting responses for audit, regulatory and compliance requests. Key responsibilities include applying knowledge of laws, rules, regulations and information security concepts (e.g., NIST, COBIT, ISO) to develop and write clear documentation and communications. Job expectations include drafting written responses and partnering with Global Information Security teams to validate accuracy of proposed communications.

Responsibilities:

• Responsible for applying prior Cyber Security and/or Technology Infrastructure knowledge, and an understanding of law, rules and regulations (LRRs) to support the regulatory, audit and compliance requests.
• Will be expected to quickly prioritize work and execute process on time.
• Prior experience supporting information security or technology-related policies in a regulated environment is expected. This role will be require the candidate to partner internal stakeholders and senior leaders, analyze and convey complex data elements and information security topics, and develop and report on adherence activities against assigned tasks.
• While this is an individual contributor role, prior experience serving as a Lead or Functional Manager is required

Requirements:

• 7+ years of professional experience including at least 2 years as a Lead or Functional Manager
• Experience supporting Information Security policy, including Laws, Rules and Regulations in a regulated environment, strong preference for financial services
• Demonstratable knowledge of key information security concepts (e.g., NIST, COBIT, ISO)
• Ability to analyze and interpret, applicable laws, rules, and regulations and align to policies.
• Ability to provide legal and regulatory guidance in connection with firm policies, procedures, and guidelines.
• Ability to identify, understand and prioritize the needs of internal, external, prospective and existing customers in order to provide solutions, resolve problems, and address questions.
• Ability to draw upon past knowledge and experiences to find a solution and define a path of action.
• Ability to analyze and interpret data and trends and use insights gathered to inform and communicate statistical analysis results and/or predictions.
• Strong interpersonal skills with prior experience communicating and interfacing with senior leaders and technically minded SMEs in a IT based Policy Governance Lifecycle
• Ability to deep-dive and deconstruct complicated process to identify and validate adherence to LRRs and Policy

Skills:

• Clear written communication
• Interpret Relevant Laws, Rules, and Regulations
• Policies, Procedures, and Guidelines
• Problem Solving
• Quality Assurance
• Business Acumen
• Controls Management
• Innovative Thinking
• Process Management
• Stakeholder Management
• Business Process Analysis
• Data Governance
• Data Privacy and Protection
• Data and Trend Analysis
• Risk Analytics

This job will be open and accepting applications for a minimum of seven days from the date it was posted.