Back to search results

Assistant Vice President / Vice President, Digital Forensics Analyst, Global Information Security

Singapore, , Singapore

Job Description:

About Bank of America:

Our purpose as a firm is to make financial lives better, through the power of every connection. Across the world, we partner with leading corporate and institutional investors through our offices in more than 35 countries. In the U.S. alone, we serve almost all of the Fortune 500 companies and approximately 67 million consumer and small-business clients. We provide a full suite of financial products and services, from banking and investments to asset and risk management. We cover a broad range of asset classes, making us a global leader in corporate and investment banking, sales and trading.

Connecting Asia Pacific to the World

Our Asia Pacific team is spread across 19 cities in 12 markets. We are focused on connecting Asia to the world and the world to Asia, using our global expertise to ensure success is shared between us, our clients and our communities. Our regional footprint covers 12 currencies, more than a dozen languages and five time zones, placing us firmly among the region’s leading financial services companies.

Team Overview

The Cyber Security Defense (CSD) team’s aim is to protect the bank and has an end to end view and influence over all security controls at the Bank. Digital Forensics (DF) is part of CSD and a reactive investigations team that responds to events or incidents to identify and mitigate or reduce risk to the Bank. A variety of matters are investigated whether they are information security related or assisting in an investigation for our existing stakeholders by forensically preserving and analyzing digital evidence and presenting the findings.
 

Position Description

The role of the Digital Forensic Analyst is to examine data from many facets of the Bank’s enterprise environment, including but not limited to End-User, Midrange, Mainframe systems and platforms in a forensically sound manner with the aim of identifying, preserving, recovering, analyzing and presenting facts.

Ideal Candidate

The ideal candidate will possess wide and varied computing and networking knowledge. This will be in addition to the ideal candidate possessing experience in one of the following:

  • Digital Forensics and Incident Response experience; or alternatively
  • Linux, Unix Systems Administration or equivalent experience with the passion to learn and move into the Digital Forensics discipline, along with the appropriate training and guidance.

Key Responsibilities

  • Utilize forensic tools and leverage the bank’s in-house technologies to hunt and find evidential data;
  • Analyze evidential data and evaluate its relevance to a case under investigation, including but not limited to end-user data on endpoints and servers, as well centralized data from logging aggregators;
  • Recover evidential data from hard drives and other storage that have been deleted, damaged or otherwise manipulated;
  • Document each stage of an investigation and maintain a focus on case logs, repeatability and chain of custody;
  • Frequent change of mindset to suit a different audience and circumstance, meaning that it is required to wear many hats e.g. investigator, interviewer, a trouble-shooter;
  • Performing cohesively as a team player that is part of a local and global team, as well as an individual contributor;
  • Managing individual caseload, projects and related stakeholders, both locally and globally, through the bank’s “Follow-The-Sun” model, to ensure that the bank is protected from internal and external threats regardless of time zone or geography;
  • Communicate and present findings, both written and verbally, to team members and stakeholders in a clear, concise and inclusive manner;
  • Testify findings to senior management, audit, or in court, as and when required;
  • Adherence and cognizance of/to the bank’s risk and compliance policies throughout;
  • Improve upon existing digital forensics and incident response capabilities, by researching and introducing new tools and processes, to ensure that the bank is constantly improving and innovating to protect itself from internal and external threats;
  • Provision of case assignment and MI reporting, when required.

Key Requirements

  • Qualifications & Certifications
    • Bachelor’s Degree in a Computer Science, Computer Engineering, Information Security or Cyber/Digital Forensics related discipline; or
    • EnCE (Encase Certified Examiner); or
    • ACE (Access Data Certified Examiner); or
    • SANS (Incident Response or Forensics)
       
  • Technical
    • Broad and varied computing and networking knowledge; and
    • Basic knowledge of information security technologies, techniques and processes; and
    • Experience in one of the following technical backgrounds:
      • Digital Forensics and Incident Response (DFIR) experience from Law Enforcement, Government, or Consulting, with the ability to identify, preserve, recover, analyze and present evidential data from a wide range of systems during various investigative scenarios; or alternatively
      • Linux, Unix systems administration or equivalent experience, with excellent knowledge of operating system distribution (distro) nuances, file systems and inner workings. Though no direct experience in digital forensics is required, this should ideally be complemented by at least a basic understanding.
         
  • Hard & Soft Skills
    • Ability to think both vertically and laterally, potentially with a previously unfamiliar or undefined approach; and
    • An investigative and inquisitive mind to be able to learn and discover how unfamiliar technology works; and
    • Excellent project management and organizational skills to manage caseload, projects and ad-hoc requests; and
    • Ability to present technical subjects or concepts to a technical and non-technical audience, both written (such as report writing), as well as verbal, in a clear, concise and inclusive manner.

Desired Skills

  • Qualifications & Certifications
    • Masters, or Doctorate Degree in a Computer Science, Computer Engineering, Information Security or Cyber/Digital Forensics related discipline; or
    • Linux Professional Institute Qualifications (Eg. LPIC-1, LPIC-2 etc); or
    • Linux Foundation Certified System Administrator (LFCS); or
    • Red Hat System Administration I, II, III or Certified System Administrator (RHCSA); or
    • Any other distribution (distro) specific Linux or Unix qualification or certification.
       
  • Technical
    • Broad and varied knowledge of information security technologies, techniques and processes; or
    • Programming skills and experience, such as Java, C++, Python; or
    • Shell scripting experience within Windows or Linux environments; or
    • Experience with containerized environments, such as Docker and Kubernetes; or
    • Experience with Cloud or Network related specialisms from a Digital Forensics and Incident Response (DFIR) perspective would be advantageous; or
    • Experience in one of the following technical backgrounds:
      • Digital Forensics and Incident Response (DFIR) experience from a large scale enterprise or banking environment, with the ability to identify, preserve, recover, analyze and present evidential data from a wide range of enterprise systems during various enterprise investigative scenarios; or alternatively
      • Linux, Unix systems administration experience, particular with RedHat or other enterprise scale distributions (distros), with excellent knowledge of operating system nuances, file systems and inner workings, as well as managing and configuring large scale enterprise server environments. Though no direct experience in digital forensics is required, this should ideally be complemented by at least a basic understanding.
         
  • Hard & Soft Skills
    • Experience in working in an enterprise, 24x7 operational environment, with managing stakeholders across different geographies and time zones; or
    • Experience working in a “Follow-The-Sun” or equivalent response model;
    • Experience working overseas in different geographies; or
    • Experience of testifying in court, or to senior management.

Learn more about this role

Full time

JR-20054977

Manages People:

Manager:

Talent Acquisition Contact:

Referral Bonus:

Check out the Singapore office

Our office is near favourite Seah Im Food Centre and a short hop to Sentosa—a popular island resort and home of the Merlion, Singapore’s guardian of prosperity.

Close-up side shot of the words Bank of America Merrill Lynch on outside office wall

Street Address

Primary Location:
2 HARBOURFRONT PLACE, #02-01, Singapore, 098499