Senior Threat Hunter

Locations: Denver, Colorado; Washington, District of Columbia; Chicago, Illinois

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities, and shareholders every day.

We are committed to being a diverse and inclusive workplace, hiring individuals from broad backgrounds and investing heavily in our teammates and their families by offering competitive benefits supporting physical, emotional, and financial well-being.

Our Cyber Threat Hunting, Intelligence & Defense team within the Cyber Security Defense function works to strengthen the bank’s cybersecurity posture through research, threat simulations, threat hunting, and offensive security engagements. This team collaborates across the bank to discover and develop mitigations against threats, securing a critical infrastructure interacting with millions of customers.

• Analyze and correlate large data sets to uncover novel threats and attack techniques within the bank’s environments.
• Collaborate with data science, threat research, and cyber defense teams to develop analytical methods for detecting advanced threat actors.
• Develop and document new threat hunt hypotheses to improve threat detection capabilities.
• Share knowledge and mentor junior team members.
• Work with Cyber Defense teams to develop effective hunt strategies and analytics, ensuring accurate detection with low false positives.
• Review product assessments, policy adjustments, and architectural transformations impacting security.

• Experience performing threat hunting in a corporate environment.
• 8+ years in Security Operations, Incident Response, Detection Engineering, Offensive Security/Red Team, or Cyber Threat Intelligence.
• Experience analyzing system, network, and application logs for attack techniques.
• Proficiency with large datasets and log analysis tools such as Splunk, Python, Pandas, SQL, Hadoop, Hue.
• Ability to analyze Cyber Threat Intelligence for actionable insights and apply it effectively.
• Knowledge of offensive security strategies and assessment methodologies.
• Excellent communication skills to explain threat hunt objectives and risks clearly.
• Ability to work across complex, geographically dispersed organizations.
• Experience with enterprise-scale EDR and SIEM tools.
• Previous experience in digital forensics or incident response.
• Self-directed with minimal supervision to achieve goals.

• Knowledge of Data Science concepts.
• Experience with offensive security tools like Cobalt Strike/Metasploit and techniques such as OSINT.
• Experience with security analysis and threat hunting in Cloud environments like Azure, M365, AWS.

This position is open for applications for at least seven days from the posting date. The shift is 1st shift (U.S. hours), with 40 hours per week.