Bank Of America Info Security Incident Management Specialist 

United States, Colorado, Denver 

105723510

Job Description:

Job Description:

This job is responsible for supporting a rapid, globally coordinated, and managed response for moderately complex information security events and cyber security threats that may impact the confidentiality, integrity, and availability of the bank’s information and information systems. Key responsibilities include supporting the containment of escalated incidents, identifying and recovering abnormal and malicious activity, and reducing the impact and exposure to legal, financial, reputational, operational, and regulatory risks.

Required Skills

• Proven experience handling Information Security related events and incidents
• Experience in an operations focused role with an emphasis on incident response
• Demonstrable experience in the coordination of containment activities related to cyber security incidents

• Strong judgment, and decision-making in a high-pressure environment
• Prioritization, poise, and multi-tasking skill to operate in a fast-paced environment and take action without causing an undue delay
• Ability to work both independently and collaboratively within a group
• Strong creative and critical thinking skills to develop solutions for complex and/or difficult tasks while remaining risk and objective focused

• Security vulnerability identification and remediation
• Malware, phishing, and malicious web content
• Data loss prevention and insider threat investigations
• Denial of service and other network attacks
• Cloud security principles and controls
• Attacker tools, techniques, and procedures

• Establish oversight of information security events and incidents and communicate analysis, containment and remediation efforts to all business partners.
• Incident response and recovery plans will be available to use and should be maintained by the team. Any issues that require management escalation will be expected to be completed in a timely manner including all appropriate information in relation to risk and action times.
• The Incident Manager will be expected to provide status updates and post-incident reports for executives and stakeholders in non-technical terms encompassing risk, impact, likelihood, containment and remediation activities and threat actors.
• Risk management including briefing and recommending actions to executive leadership within Global Information Security and other business partners on events and incidents
•
• This job will be open and accepting applications for a minimum of seven days from the date it was posted.

1st shift (United States of America)