Manual Ethical Hacking Sr. Manager

Charlotte, North Carolina;

Additional locations See less

Job Description:

The Application & Technology Assurance Team (ATAT) within the Cyber Security Assurance (CSA) division of Global Information Security (GIS) is looking for a talented and experienced manager to join a team of world-class offensive security talent. This manager will manage the execution of the Application Security Testing function and will be expected to assist in mentoring, training, and actively testing with a suite of teams who validate controls, test technologies, replicate threats, and research emerging threats.

Additionally, the manager in this role is expected to provide technical expertise to junior engineers, coordinate with Consumer and GIS senior leadership on development projects, and assist the application stakeholders understand the vulnerabilities identified and articulate the risk in salient business terms. The manager in this role should be equally capable of managing team operations, operating on an assessment, and mentoring less experienced subordinates.

Specific Skillsets Desired:

Must experience leading talented technical talent and be able to motivate individuals to be their best
Must have experience effectively interacting with a diverse set of personalities and talent
Must be able to effectively communicate to anyone in the organization, from the most technical assessor to the least technical business partner
Must innately understand Application Security, and able to articulate risk of a particular vulnerability in salient business terms
Must demonstrate knowledge of tactics, techniques, and procedures associated with malicious insider activity, organized crime/fraud groups and both state and non-state sponsored threat actors.
Must be able to critically examine an organization and system through the perspective of a threat actor and articulate risk in clear, precise terms.
Ability to effectively code in a scripting language (Python, Perl, etc.)
Prefer previous experience working in the financial industry

Enterprise Position Overview: Manages a team or teams accountable for providing cybersecurity defense across multiple disciplines. Leads the analysis, implementation, execution and ongoing improvement of proactive security controls to prevent external threat actors from infiltrating company information or systems. Utilizes experience and deep knowledge of IT platforms, tools, and concepts to ensure cybersecurity protection is integrated at all layers of defense. Leads alert responses and problem solving workgroups across multiple functions with a focus on the enterprise risk framework. Typically has over 10 years of relevant experience including managing teams.

Job Band:

Shift:

1st shift (United States of America)

Hours Per Week:

Weekly Schedule:

Referral Bonus Amount:

Job Description:

Specific Skillsets Desired:

Must experience leading talented technical talent and be able to motivate individuals to be their best
Must have experience effectively interacting with a diverse set of personalities and talent
Must be able to effectively communicate to anyone in the organization, from the most technical assessor to the least technical business partner
Must innately understand Application Security, and able to articulate risk of a particular vulnerability in salient business terms
Must demonstrate knowledge of tactics, techniques, and procedures associated with malicious insider activity, organized crime/fraud groups and both state and non-state sponsored threat actors.
Must be able to critically examine an organization and system through the perspective of a threat actor and articulate risk in clear, precise terms.
Ability to effectively code in a scripting language (Python, Perl, etc.)
Prefer previous experience working in the financial industry

Enterprise Position Overview: Manages a team or teams accountable for providing cybersecurity defense across multiple disciplines. Leads the analysis, implementation, execution and ongoing improvement of proactive security controls to prevent external threat actors from infiltrating company information or systems. Utilizes experience and deep knowledge of IT platforms, tools, and concepts to ensure cybersecurity protection is integrated at all layers of defense. Leads alert responses and problem solving workgroups across multiple functions with a focus on the enterprise risk framework. Typically has over 10 years of relevant experience including managing teams.

Shift:

1st shift (United States of America)

Hours Per Week:

Learn more about this role

We strive to provide you with information about products and services you might find interesting and useful. Relationship-based ads and online behavioral advertising help us do that.

Here's how it works: We gather information about your online activities, such as the searches you conduct on our Sites and the pages you visit. This information may be used to deliver advertising on our Sites and offline (for example, by phone, email and direct mail) that's customized to meet specific interests you may have.

If you prefer that we do not use this information, you may opt out of online behavioral advertising. If you opt out, though, you may still receive generic advertising. In addition, financial advisors/Client Managers may continue to use information collected online to provide product and service information in accordance with account agreements.

Also, if you opt out of online behavioral advertising, you may still see ads when you sign in to your account, for example through Online Banking or MyMerrill. These ads are based on your specific account relationships with us.

To learn more about relationship-based ads, online behavioral advertising and our privacy practices, please review Bank of America Online Privacy Notice and our Online Privacy FAQs.

Manual Ethical Hacking Sr. Manager

Street Address

Primary Location:

Additional Locations:

Advertising Practices