Cyber Security Vulnerability Analyst

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities, and shareholders every day.

Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.

At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!

Position Summary:

The Vulnerability Analysis (VA) team is a global function responsible for the evaluation and prioritization of security vulnerabilities to enable appropriate remediation across the company. This individual contributor role will join a team of vulnerability analysts around the globe who support vulnerability management activities by leveraging analytic and technical skills to assess cyber security related risks.

Responsibilities include, but are not limited to:

1. Analyze disclosed vulnerabilities, threat scenarios, and mitigating controls.
2. Research and evaluate threats and vulnerabilities to assist in prioritization of remediation actions.
3. Review and validate vulnerabilities using available data sources, tools, and identifying new data sources as needed.
4. Collaborate with stakeholders on appropriate remediation & mitigation solutions.
5. Leverage creativity and influence to enhance the Vulnerability Analysis program.

Required Qualifications:

1. 3+ years of experience in Cyber Security.
2. Broad knowledge of information security principles.
3. Understanding of Vulnerability Management principles and Risk Assessment methodologies.
4. Knowledge of vulnerability attack methods, exploit results, attack chains.
5. Knowledge of industry standard scoring models such as CVSS, CCSS.
6. Process-oriented with keen attention to detail.
7. Ability to proactively anticipate problems and execute solutions.
8. Strong work ethic and ability to effectively multi-task in a fast-paced operational environment.
9. Strong analytical and problem-solving mindset.
10. Effective communication skills.
11. Highly motivated and willing to learn.

Desired Qualifications:

1. CISSP / CISM / Security+ certification.
2. Experience in cloud Vulnerability Management operations.
3. Experience as a Vulnerability or Threat Analyst.

Shift: 1st shift (United States of America)

Hours Per Week: 40

Pay Transparency details:

Pay range: $95,000.00 - $143,700.00 annualized salary, offers to be determined based on experience, education, and skill set. This role is eligible to participate in the annual discretionary plan.

Benefits: This role is currently benefits eligible. We provide industry-leading benefits, access to paid time off, resources, and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.