Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.

Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.

At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!

Position Summary:

The Vulnerability Analysis (VA) team is a global function responsible for the evaluation and prioritization of security vulnerabilities to enable appropriate remediation across the company. This individual contributor role will join a team of vulnerability analysts around the globe who support vulnerability management activities by leveraging analytic and technical skills to assess cyber security related risks.

Responsibilities include, but are not limited to:

• Analyze disclosed vulnerabilities, threat scenarios, and mitigating controls.

• Research and evaluate threats and vulnerabilities to assist in prioritization of remediation actions.

• Review and validate vulnerabilities using available data sources, tools and identifying new data sources as needed.

• Collaborate with stakeholders on appropriate remediation & mitigation solutions.

• Leverage creativity and influence to enhance the Vulnerability Analysis program.

Required Qualifications:

• 3+ years of experience in Cyber Security

• Broad knowledge of information security principles

• Understanding of Vulnerability Management principles and Risk Assessment methodologies

• Knowledge of vulnerability attack methods, exploit results, attack chains

• Knowledge of industry standard scoring models such as CVSS, CCSS

• Process oriented with keen attention to detail

• Ability to proactively anticipate problems and execute solutions

• Strong work ethic and ability to effectively multi-task in a fast paced operational environment

• Strong analytical and problem solving mindset

• Effective communication skills

• Highly motivated and willing to learn

Desired Qualifications:

• CISSP / CISM / Security+

• Experience in cloud Vulnerability Management operations

• Experience as a Vulnerability or Threat Analyst

Shift:

Hours Per Week: