Senior Insider Threat Hunt Investigator

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.

Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.

Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.

At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!

Job Description:

The position of the Senior Insider Threat Hunt Investigator is responsible for analyzing and correlating large data sets to uncover insider threats and attack techniques that may be present within the bank’s environments. A Senior Insider Threat Hunter will be tasked with and collaborate with data science, threat research, Cyber Threat Hunt Intelligence and Defense teams to identify opportunities to build and respond to Insider tactics and techniques. In support of these processes, the role will also include developing and documenting new and innovative Insider hunt hypotheses to increase the team’s ability to find existing insider threats.

Required Skills:

• 10+ years’ work experience with an insider threat focus or technical background that could be applied to understand key insider risk components
• High proficiency with forensic tools (ENCASE), CrowdStrike and other similar investigative and/or monitoring tools
• Direct experience working with very large datasets and log analysis tools including but not limited to: Splunk, Python, SQL
• Routine review of application/software user activity
• Correlation analysis of existing case types and escalations to ensure issue is relevant to dig deeper/ escalate
• Strong analytical and problem solving skills
• Expertise in running endpoint analysis
• Experience analyzing system, network, and application logging for attack techniques at all stages of the cyber kill chain.
• Excellent collaboration skills to effectively work with other technical teams
• Ability to work both independently and as part of a team to achieve goals
• Diversity of thought, critical thinking, willingness to learn, and persistence to identify risk
• Methodical and systematical approach to utilizing technical tools, applications, etc.
• Exceptional written and verbal communication skills
• Mindset of curiosity: not afraid to learn new things
• Excellent organizational skills to manage caseload, projects and ad hoc requests
• Familiarity with participating/driving incident response events

Desired Skills:

• An understanding of human behavior / human psychology or investigative background
• Technical experience with information security / data loss prevention tools or controls such as Intrusion Detection & Prevention technologies (IDS/IPS) and/or SIEM systems and other data correlation engines.
• Certifications - Security+, Network+, CEH, CISSP, CCNA, CCNP, EnCE other cyber security related certifications
• High proficiency with sleuthing in OSINT
• Familiarity with working in cloud
• Networking/System administration experience
• Bachelor’s in computer science or related fields

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

Shift:

1st shift (United States of America)

Hours Per Week: 

40

Pay Transparency details

US - CO - Denver - 1144 15th St - Denver Gis (CO9926), US - DC - Washington - 1800 K St NW - 1800 K Street NW (DC1842), US - IL - Chicago - 540 W Madison St - Bank Of America Plaza (IL4540), US - NJ - Jersey City - 101 Hudson St - 101 Hudson (NJ2101)

Pay and benefits information

Pay range

$137,300.00 - $190,100.00 annualized salary, offers to be determined based on experience, education and skill set.

Discretionary incentive eligible

This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.

Benefits

This role is currently benefits eligible. We provide industry-leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.