Bank of America • Washington, DC 20080
Job #2692495101
Cyber Threat Intelligence Senior Analyst
Washington, District of Columbia;Chicago, Illinois; Denver, Colorado
Job Description:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.
One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We're devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.
The Cyber Threat Intelligence team works with partners, both internal and external, in order to reduce risk to the Bank and to the financial sector at large. The team provides timely situational awareness, conducts deep analysis of threats and translates indicators of threat into actionable information to reduce impact to the bank. Stakeholders include cyber-security response teams, internal lines of business, senior leadership and external organizations such as law enforcement, industry peers and intelligence sharing partners.
The Cyber Threat Intelligence Senior Analyst is responsible for conducting in-depth research, documentation, and intelligence analysis of key cyber threats to develop a comprehensive picture of the cyber threat landscape. This includes research via the use of various sources; development of historical, trend, and link analysis; and written and oral reporting to provide actionable intelligence. The analyst will also work to proactively research new threats and establish trends and patterns among existing attacks to help predict future risks.
Responsibilities include, but are not limited to:
Working in a tactical/strategic role cultivating intelligence sources, analyzing information, creating intelligence, and hunting for exposures or related incidents
Researching current and emerging threats, malware analysis, campaign assessment, data collection and analysis
Researching threat actors and cultivating and assessing new sources of threat information and intelligence
Collecting, assessing, and cataloguing threat indicators and responsibility for adding context to threat indicators to convey urgency, severity, and credibility
Risk management
Maintaining knowledge of threat landscape by monitoring OSINT and related sources
Tracking cyber threat actors and their infrastructure with a view to disrupting their activity
Collaborating with appropriate business partners and lines of business to analyze threats
Escalating issues to management in a timely manner with appropriate information regarding risk and impact
Exercising independent judgment in methods, techniques and evaluation criteria for obtaining results
Participating in technical bridge lines to facilitate the identification, mitigation and containment of cyber-security incidents
Drafting well-written analytical assessments and providing briefings to response teams, enterprise counterparts, and senior leadership on key issues
Mentoring and developing other analysts on the team
Experience as an intelligence analyst, and/or malware analyst is necessary
Bachelor's degree or higher-level education is a strong plus
Technical or information security certifications are also strong plus
Excellent organizational and analytical skills
Ability to communicate (verbal and written) with executives and stakeholders in non-technical terms while accurately encompassing risk, impact, likelihood, containment and remediation activities, and threat actor techniques, tactics and procedures
Excellent written and verbal communication skills
Ability to juggle multiple work efforts in a fast-paced environment and to be able to quickly change direction as needed
Strong influencing skills
Ability to prioritize conflicting tasks
Proven experience with Information Security related activities
Experience in an operations focused information security role
Experience conducting analysis/investigation and containment of potential data breaches or cyber security incidents
Familiarity with security vulnerabilities, exploits, malware and digital forensics
Familiarity with network security vulnerabilities, exploits and attacks
Familiarity with most operating systems, particularly UNIX and Windows
Ability to work in a strong team-oriented environment with a sense of urgency and resilience whilst able to work independently
Ability to work effectively with technical and non-technical business owners
The candidate should exhibit a firm understanding of the cyber threat landscape.
The candidate should be knowledgeable of emerging technologies and trends and should be able to identify strategic trends that may impact the bank based on data from a wide variety of sources.
This person must have an inquisitive mindset and be able to translate raw data into actionable intelligence.
Minimum of 5 years of InfoSec experience tracking and reporting on cyber threats
College degree desired.
Advanced degree in International Affairs or similar field a strong plus.
Technical or information security certifications are also a strong plus.
Foreign language fluency (Russian/Arabic/Farsi/Chinese/Korean)
Shift:
1st shift (United States of America)
Hours Per Week:
40
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity and affirmative action, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
To view the "EEO is the Law" poster, CLICK HERE (~~~) .
To view the "EEO is the Law" Supplement, CLICK HERE (~~~) .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
To view Bank of America's Drug-free workplace and alcohol policy, CLICK HERE .
Bank of America • Dulles, VA 20189 • Today
Bank of America • Dulles, VA 20189 • 5 Days Ago
Bank of America • Silver Spring, MD 20915 • 4 Days Ago
Bank of America • Washington, DC 20080 • 3 Days Ago
ManTech International Corporation • Lorton, VA 22199 • 13 Days Ago
Nightwing • Arlington, VA 22201 • May 6
Bering Straits Native Corporation (BSNC) • Washington, DC 20415 • Oct 18, 2023
Iron Vine Security • Suitland, MD 20746 • May 6