Application Monitoring Response Security AnalystDenver, Colorado; Washington, District of Columbia; Chicago, Illinois
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities, and shareholders every day.
Resource will function as a member of an enterprise network application layer intrusion, detection, prevention, and response team. Will develop and implement custom alerts and monitoring controls to detect and mitigate threats. Provides leadership in assessing new threat vectors and designing and implementing effective controls. Leverages advanced investigative skills using best-in-class data correlation and log analysis tools. Will partner with senior leaders from lines of business organizations to triage security events and report on impacting security initiatives. Develops and implements processes or controls in support of audit and risk requirements.
Required Skills:
• Strong Splunk skill set. The security analyst will leverage Splunk to analyze logs and other security events to find targeted attacks against network-based bank assets.
• Strong Intrusion Analysis background. Resource must be able to identify and interpret weblogs from various webservers.
• Knowledgeable of current exploits. Resource must be able to identify common exploits from the appropriate web and event logs.
• Working knowledge of Linux, Windows, and MacOS operating systems.
• Comfortable with scripting languages and regular expressions.
• Strong knowledge of common network protocols.
• Working knowledge of enterprise Client/Server architecture.
We are a front-line team that handles active security events and current threats. On-call and after-hours work can be expected although we rotate to approximately one week every 2 months. The analyst will use new intelligence to update existing controls to detect new threats against the bank. Will be expected to have solid technical skills to operate independently and to support others within the security team.
Desired Skills:
• Able to interpret Apache web logs, IIS, Active Directory, and other security logs.
• Full understanding of modern website deployments and technology.
• Understanding of stateful firewalls and able to interpret firewall rules.
• Familiarity with web application attacks including SQL injection, cross-site scripting, and remote file inclusion.
• Use tools to detect anomalous/malicious data transmissions on the network.
• Use advanced analytics/security tools to detect malware on the network.
This job will be open and accepting applications for a minimum of seven days from the date it was posted.
Shift: 1st shift (United States of America)
Hours Per Week: 40
Pay Transparency details:
Pay range $93,700.00 - $142,500.00 annualized salary, offers to be determined based on experience, education, and skill set. Discretionary incentive eligible. This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company. This role is currently benefits eligible. We provide industry-leading benefits, access to paid time off, resources, and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.
#J-18808-Ljbffr