Bank of America Cyber Security Intrusion Analyst / Splunk Engr in Chicago, Illinois

Job Description:

Resource will function as a member of an enterprise network application layer intrusion, detection, prevention, and response team. Will develop and implement custom alerts and dashboards monitoring controls based on OSI layer 7 attack and threat indicators. Provides leadership in assessing new threat vectors and the effectiveness of controls. Leverages advanced investigative skills using best in class data correlation and network/packet analysis tools. Will partner with senior leaders from lines of business organizations to triage security events and report on impacting security initiatives. Responsible for mentoring and developing the skill sets of less experienced team members. Develops and implements processes or controls in support of audit and risk requirements.

Required Skills:

  • Strong Splunk skill set. The security analyst will leveage Splunk to analyze logs and other security events to find targeted attacks against network based bank assets.

  • Strong Intrusion Analysis background. Resource must be able to indentify and interpret weblogs from various webservers.

  • Knoweldgable of current exploits. Resource must be able to identify common exploits from the appropriate web and event logs.

  • Working knowledge of Linux, Windows, and OS X operating systems.

  • Comfortable with scripting languages and regular expressions

  • Strong knowledge common network protocols

  • Working knowledge of enterprise Client / Server arcihtecture

  • We are a front line team that handles active security events and highly current threats. Oncall and after hours work can be expected although we rotate to approximately one week every 2 months.

  • The analyst will use new intelligence to update existing controls to detect new threats against the bank. Will be expected to have solid technical skills to operate independently and to support others within the security team.

Desired Skills:

  • Experience doing packet captures and interpreting them (wireshark for example).

  • Understanding of stateful firewalls and able to interpret firewall rules.

  • Able to interpret SQL, Apache web logs, IIS, Active Directory and other security logs.

  • Full understanding of modern web site deployments and technology.

  • Familiarity with web application attacks including SQL injection, cross-site scripting, and remote file inclusion.

  • Use tools to detect anomalous/malicious data transmissions on the network.

  • Use advanced analytics / security tools to detect malware on the network.

As an experienced professional, provide advice to client management with regard to moderately complex security issues. Assists in the review, development, testing and implementation of security plans, products and control techniques. Coordinates the reporting data security incidents. Provides technical support to the client and management and staff in risk assessments and implementation of appropriate data security procedures and products. Monitors existing and proposed security standard setting groups. State and Federal legislation and regulations. Identifies and escalates changes that will affect information security policy, standards and procedures. Executes security controls to prevent hackers from infiltrating company information or jeopardizing e-commerce programs. Researches attempted efforts to compromise security protocols. Administers security policies to control access to systems and maintains the company firewall. Works on complex problems where analysis of situations or data requires an in-depth evaluation of various factors. Exercises judgment within broadly defined practices and policies in selecting methods, techniques, and evaluation criterion for obtaining results. Work leadership may be provided by assigning work and resolving problems. Typically 5-7 years of IT experience.

Posting Date : 08/15/2017

Location : US-CA-Simi Valley, US-FL-Jacksonville, US-IL-Chicago, US-NC-Charlotte, US-TX-Addison

Travel : Yes, 5% of the time

Full / Part-time : Full time

Hours Per Week : 40

Shift : 1st shift

Assistance for Applicants with Disabilities

Bank of America is committed to ensuring that our online application process provides an equal employment opportunity to all job seekers, including individuals with disabilities. If you believe you need a reasonable accommodation in order to search for a job opening or to submit an application, please visit the Applicants with Disabilities page at http://careers.bankofamerica.com/us/applicants-with-disabilities .

Diversity & Inclusion

At Bank of America, our commitment to diversity and inclusion is helping us to create not only a great place to work, but also an environment where our employees, our customers and our communities around the world can reach their goals and connect with each other. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.

Frequently Asked Questions

Need to know how to apply online, view a list of your submitted job applications or reset your password? Visit our FAQ at http://careers.bankofamerica.com/us/faq section for answers to these questions and more.