Job Description: At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.
One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We're devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.
Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.
Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!
Your background Bank of America is seeking to expand and diversify their Digital Forensics and Incident Response (DFIR) capability with motivated and adaptable individuals from a range of different backgrounds and experience. This role is open to individuals with at least 3 years of Digital Forensics experience.
Required Background and Experience: Identify, analyze, and present evidential data from workstation orientated systems, including but not limited to systems installed with Microsoft Windows; Experience in investigating specific facets or workstreams of various incident scenarios/investigations as part of a broader DFIR/investigative team; Generalist or broad knowledge in computing and networking, together with a generalist understanding of information security technologies, techniques, and processes; Experience in leading or starting to lead a limited amount of incident scenarios/investigations from commencement to cessation (not a requirement). Desired Background and Experience: Identify, analyze, and present evidential data from a wide range of enterprise systems for a wide range of incident or investigative scenarios, especially involving cloud technology (e.g., Azure or AWS); Experience in investigating and leading various incident scenarios/investigations as part of a broader DFIR/investigative team from commencement to cessation; Well-versed knowledge in computing and networking, together with information security technologies, techniques, and processes; Initiated or driven initiatives to transform, evolve or upgrade incident scenarios/investigative processes and/or technologies. Skills and Qualifications: One of the below qualifications or certifications are a requirement: Bachelor's, Masters or Doctorate Degree in a Computer Science, Computer Engineering, Information Security or Cyber/Digital Forensics related discipline; Digital Forensics and Incident Response Certification (i.e., EnCE or related SANS certification, such as GCFA). One or more of the following qualifications or certifications are highly advantageous, though not essential: A Cloud related qualification or certification, such as Certified Cloud Security Professional (CCSP), or related to Microsoft Azure and Amazon Web Services (AWS); Linux Qualification or Certification, e.g., Red Hat Certified System Administrator. One or more of the following skills or experience are also highly advantageous and would be particularly exciting, though not essential: Programming and scripting skills or experience, such as: Programming skills and experience, such as Java, C++, Python; Batch or shell scripting experience within Windows or Linux environments. Experience in one of the following Digital Forensics and Incident Response (DFIR) backgrounds: Cloud and/or containerization technologies (i.e., Docker and Kubernetes) within an enterprise environment; Linux/Unix systems with particular focus on RedHat or other enterprise scale distributions (distros). What you can expect: The Cyber Threat Defense (CTD) team's aim is to protect the bank and has an end-to-end view and influence over all security controls at the Bank. Digital Forensics (DF), which is part of CTD, is a reactive team that responds to events or incidents in order to identify and mitigate risk to the Bank. The Digital Forensics team is well trained and comprises individuals with a variety of backgrounds, including law enforcement and consulting. Training and certification opportunities are commonplace and actively encouraged, as well as the empowerment to invest time in learning new technologies that improve our incident response.
What you will do: Utilize your extensive Digital Forensics and Incident Response experience to conduct and manage your individual caseload across the entire incident response or investigative lifecycle from start to finish. Discover unfamiliar technology or data during the midst of an incident or investigation and assess its relevance to the issues at hand, i.e., stored information, auditing capability, evidential value, etc. Leverage your ability to communicate, both written and verbal, in a clear, concise, and inclusive manner to technical and non-technical audiences with colleagues, peers, and stakeholders at all levels. Embrace new and upcoming technologies and assess how they could apply and improve our incident response. Work alongside a global team with colleagues in the USA and Europe, emphasizing collaboration and sharing of ideas and methodologies. Undertake and share the responsibilities of working an on-call schedule to respond to incidents or investigations when required. #J-18808-Ljbffr