Bank of America Cyber Security Analyst in Addison, Texas
Cyber Security Analyst
Resource will function as a member of an enterprise network application layer intrusion, detection, prevention, and response team. Will develop and implement custom alerts and dashboards monitoring controls based on OSI layer 7 attack and threat indicators. Provides leadership in assessing new threat vectors and the effectiveness of controls. Leverages advanced investigative skills using best in class data correlation and network/packet analysis tools. Will partner with senior leaders from lines of business organizations to triage security events and report on impacting security initiatives. Responsible for mentoring and developing the skill sets of less experienced team members. Develops and implements processes or controls in support of audit and risk requirements.
Enterprise Role Overview
As an experienced professional, provide advice to client management with regard to moderately complex security issues. Assists in the review, development, testing and implementation of security plans, products and control techniques. Coordinates the reporting data security incidents. Provides technical support to the client and management and staff in risk assessments and implementation of appropriate data security procedures and products. Monitors existing and proposed security standard setting groups. State and Federal legislation and regulations. Identifies and escalates changes that will affect information security policy, standards and procedures. Executes security controls to prevent hackers from infiltrating company information or jeopardizing e-commerce programs. Researches attempted efforts to compromise security protocols. Administers security policies to control access to systems and maintains the company firewall. Works on complex problems where analysis of situations or data requires an in-depth evaluation of various factors. Exercises judgment within broadly defined practices and policies in selecting methods, techniques, and evaluation criterion for obtaining results. Work leadership may be provided by assigning work and resolving problems. Typically 5-7 years of IT experience.
Required Skills & Experience:
Strong Splunk skill set. The security analyst will leverage Splunk to analyze logs and other security events to find targeted attacks against network based bank assets.
Strong Intrusion Analysis background. Resource must be able to identify and interpret weblogs from various webservers.
Knowledgeable of current exploits. Resource must be able to identify common exploits from the appropriate web and event logs.
Working knowledge of Linux, Windows, and OS X operating systems.
Comfortable with scripting languages and regular expressions
Strong knowledge common network protocols
Working knowledge of enterprise Client / Server architecture
We are a front line team that handles active security events and highly current threats. On call and after hours work can be expected although we rotate to approximately one week every 2 months.
The analyst will use new intelligence to update existing controls to detect new threats against the bank. Will be expected to have solid technical skills to operate independently and to support others within the security team.
Desired Skills & Experience:
Experience doing packet captures and interpreting them (wireshark for example).
Understanding of stateful firewalls and able to interpret firewall rules.
Able to interpret SQL, Apache web logs, IIS, Active Directory and other security logs.
Full understanding of modern web site deployments and technology.
Familiarity with web application attacks including SQL injection, cross-site scripting, and remote file inclusion.
Use tools to detect anomalous/malicious data transmissions on the network.
Use advanced analytics / security tools to detect malware on the network.
Job: TR-Systems Security
Primary Location: US-TX-Addison
Work Locations: TX8044 16001 N Dallas Pkwy Addison 75001
Organization: 2898286-GLOBAL INFORMATION SECURITY (GIS) VJ
Travel: Yes, 5 % of the Time
Job Posting Date: Oct 18, 2016
Unposting Date: Nov 1, 2016
Hours Per Week: 40.00
Shift: 1st Shift
Req ID: 16051005