Bank of America Cyber Security Threat Intelligence Liaison in Charlotte, North Carolina

Job Description:

Cyber Security Operations (CSO) is the first line of defence at Bank of America for cyber based threats. The core tenets of CSO is to prevent external disruption to our infrastructure, prevent unauthorized data exfiltration and to prevent threat actors from compromising any of the computing devices on the Bank of America network. CSO must utilize the best

technology, best talent and the best culture in order to be successful. CSO aligns to the NIST Cyber Security model and is structured by core anticipated outcomes: Prepare – Anticipate the threat, Prevent – Plan for the threat, Detect – Understand the threat behavior, Respond – Contain and eradicate the threat, and Recover – Understand the threat’s impact and resume normal operations

The Cyber Security Operations team is seeking create the role of Threat Intelligence Liaison, which will be the primary point of contact between all CSO functions and the Cyber Threat

Intelligence (CTI) team. This role will ensure the timely and proper triaging of cyber threat

intelligence-related tasks, communicate updates on breaking situations to the CSO functions

during incidents will and drive requirements of the CTI team by CSO. This will be a key role and will participate in all cyber events and incidents directly affecting Bank of America and will stay connected to any that are affecting the industry as a whole.

• Work in a tactical/technical role cultivating intelligence sources, analyzing information,

creating intelligence, and hunting for exposures or related incidents.

• Contribute to daily internal stand-up calls, providing intelligence updates as necessary.

• Work within the Cyber Threat Operations Center to facilitate communication with internal teams and minimize response times for critical events.

• Lead via influence the CTI triage analysts responsible for collecting, assessing, and

prioritizing threats,

• Drive and coordinate recommended actions that strengthen controls.

• Continually and consistently review triage processes to identify reforms that could add to

increased speed, efficiency and accuracy in reporting.

• Ensure immediate notifications are followed by in-depth coordination and collaboration with control owners and appropriate business partners and lines of business.

Required Skills:

  • Technical or information security certifications are a strong plus.

  • 10+ years experience in cyber threat intelligence

  • 3+ year managing a team

  • 3+ years working in a 24x5 operational environment

  • Experience working in a Security Operations, Incident Management or Fusion Center operation

  • Excellent organizational and analytical skills.

  • Ability to communicate (verbal and written) with executives and stakeholders in non-technical terms while accurately encompassing risk, impact, likelihood, containment and remediation activities, and threat actor techniques, tactics and procedures.

  • Excellent written and verbal communication and presentation skills.

  • Ability to handle multiple work efforts in a fast-paced environment and to be able to quickly change direction as needed.

  • Strong influencing skills.

  • Ability to prioritize conflicting tasks.

  • Proven experience with cyber threat intelligence related activities.

  • Ability to coach, mentor and train analyst staff in cyber threat intelligence analytic methods, including effective writing, research, communications, critical thinking, etc.

  • Experience in an operations focused information security role.

  • Experience conducting analysis/investigation and containment of potential data breaches or cyber security incidents.

  • Familiarity with cyber threat landscape, geopolitical issues that could have cyber impacts, security vulnerabilities, exploits, malware, digital forensics, network security vulnerabilities,

  • exploits and attacks.

  • Ability to work in a strong team-oriented environment with a sense of urgency and resilience while being a self-starter and able to work independently.

  • Ability to work effectively with technical and non-technical business owners.

Desired Skills:

  • Bachelor’s degree or higher-level education    

Enterprise Role Overview:

Directs multiple / major technology teams within Information Security that research, engineer, develop, implement, communicate, monitor, and maintain the information security (authentication, perimeter security, security & compliance tools, etc), & directory technology systems (software & hardware) and security policies / procedures. Utilizes in-depth technical / project knowledge and business requirements to design / direct secure solutions to meet customer / client needs while protecting the Bank's assets. Serves as organization spokesperson with other technology or business groups. Exercises independent judgment in directing staff to achieve results. Works independently with directions / goals from the Information Security Technology Executive. Typically 7-10 years of experience, including people management responsibility.

Posting Date : 07/17/2017

Location : US-NC-Charlotte

Travel : Yes, 15% of the time

Full / Part-time : Full time

Hours Per Week : 40

Shift : 1st shift

Assistance for Applicants with Disabilities

Bank of America is committed to ensuring that our online application process provides an equal employment opportunity to all job seekers, including individuals with disabilities. If you believe you need a reasonable accommodation in order to search for a job opening or to submit an application, please visit the Applicants with Disabilities page at .

Diversity & Inclusion

At Bank of America, our commitment to diversity and inclusion is helping us to create not only a great place to work, but also an environment where our employees, our customers and our communities around the world can reach their goals and connect with each other. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.

Frequently Asked Questions

Need to know how to apply online, view a list of your submitted job applications or reset your password? Visit our FAQ at section for answers to these questions and more.