girl looking into her desktop
Back to search results

Offensive Security Engineer - Vulnerability Researcher

Dublin, , Ireland

Job Description:

Job Title: Offensive Security Engineer – Vulnerability Researcher

Corporate Title: Vice President

Location: Dublin

Role Description:

As an experienced professional, performs research, analysis, and testing of computer/network vulnerabilities via vulnerability research, exploit development, reverse engineering, detection and mitigation analysis, and/or penetration testing a wide variety of platforms and systems.  Clearly outlines and documents risk impacts of test findings in reports.  Assists Lines of Businesses with questions regarding vulnerabilities and remediation efforts. 

The successful candidate will be a team-oriented individual with excellent communication skills at explaining the "so what?" of a vulnerability issue to a non-technical audience.   Individual will be expected to work with other members of Global Information Security, technical stakeholders, risk partners, and executive leadership to ensure that risk is identified and remediated across a variety of Lines of Businesses.  Typically 7-10+ years of IT experience, with 5+ of those focused on vulnerability testing.

Required Skills:

• Must have experience and be very proficient with the common tools associated with vulnerability research and exploit development (IDA, Ghirda, etc.)

• Must have a solid understanding of exploit development and related skills, including debugging, assembly, and exploit mitigations

• Must have experience and be very proficient with the common tools associated with penetration testing (Metasploit, Burp Suite, Cobalt Strike, etc)

• Must have a solid understanding of voice and data networks, major operating systems, active directory, and their associated peripherals

• Must demonstrate knowledge of tactics, techniques, and procedures associated with malicious insider activity, organized crime/fraud groups and both state and non-state sponsored threat actors.

• Must be able to critically examine an organization and system through the perspective of a threat actor and articulate risk in clear, precise terms.

• Must be able to both work independently as well as effectively work in teams with individuals with a variety of skills and backgrounds

• Ability to effectively code in a scripting language (Python, Perl, etc)

• Desirable certifications:  OSCP, GPEN, OSCE

Bank of America:

Every day, across the globe, our employees bring a commitment to our purpose and to driving responsible growth by living our values: deliver together, act responsibly, realize the power of our people and trust the team. A key aspect of driving responsible growth is doing so in a sustainable manner, a critical pillar of which is being a great place to work for our teammates.

In line with these values, in EMEA we have 9 Employee Networks, a wide range of Sports & Social clubs, and other development and networking opportunities so that you can enjoy a range of experiences and connect with colleagues across the bank. We also offer exclusive discounts to some of the most iconic cultural experiences for you to enjoy in your spare time outside of work. Learn more about our benefits here.

Good conduct and sound judgment is crucial to our long term success. It’s important that all employees in the organisation understand the expected standards of conduct and how we manage conduct risk. Individual accountability and an ownership mind-set are the cornerstones of our Code of Conduct and are at the heart of managing risk well.

We are an equal opportunities employer, and ensure that no applicant is subject to less favourable treatment on the grounds of gender, gender identity, marital status, race, colour, nationality, ethnic or national origins, age, sexual orientation, socio-economic background, responsibilities for dependants, physical or mental disability. The Bank selects candidates for interview based on their skills, qualifications and experience.

We strive to ensure that our recruitment processes are accessible for all candidates and encourage any candidates to tell us about any adjustment requirements. As part of our standard hiring process to manage risk, please note background screening checks will be conducted on all hires before commencing employment.

Job Band:

H4

Shift: 

Hours Per Week:

35

Weekly Schedule:

Referral Bonus Amount:

0

Job Description:

Job Title: Offensive Security Engineer – Vulnerability Researcher

Corporate Title: Vice President

Location: Dublin

Role Description:

As an experienced professional, performs research, analysis, and testing of computer/network vulnerabilities via vulnerability research, exploit development, reverse engineering, detection and mitigation analysis, and/or penetration testing a wide variety of platforms and systems.  Clearly outlines and documents risk impacts of test findings in reports.  Assists Lines of Businesses with questions regarding vulnerabilities and remediation efforts. 

The successful candidate will be a team-oriented individual with excellent communication skills at explaining the "so what?" of a vulnerability issue to a non-technical audience.   Individual will be expected to work with other members of Global Information Security, technical stakeholders, risk partners, and executive leadership to ensure that risk is identified and remediated across a variety of Lines of Businesses.  Typically 7-10+ years of IT experience, with 5+ of those focused on vulnerability testing.

Required Skills:

• Must have experience and be very proficient with the common tools associated with vulnerability research and exploit development (IDA, Ghirda, etc.)

• Must have a solid understanding of exploit development and related skills, including debugging, assembly, and exploit mitigations

• Must have experience and be very proficient with the common tools associated with penetration testing (Metasploit, Burp Suite, Cobalt Strike, etc)

• Must have a solid understanding of voice and data networks, major operating systems, active directory, and their associated peripherals

• Must demonstrate knowledge of tactics, techniques, and procedures associated with malicious insider activity, organized crime/fraud groups and both state and non-state sponsored threat actors.

• Must be able to critically examine an organization and system through the perspective of a threat actor and articulate risk in clear, precise terms.

• Must be able to both work independently as well as effectively work in teams with individuals with a variety of skills and backgrounds

• Ability to effectively code in a scripting language (Python, Perl, etc)

• Desirable certifications:  OSCP, GPEN, OSCE

Bank of America:

Every day, across the globe, our employees bring a commitment to our purpose and to driving responsible growth by living our values: deliver together, act responsibly, realize the power of our people and trust the team. A key aspect of driving responsible growth is doing so in a sustainable manner, a critical pillar of which is being a great place to work for our teammates.

In line with these values, in EMEA we have 9 Employee Networks, a wide range of Sports & Social clubs, and other development and networking opportunities so that you can enjoy a range of experiences and connect with colleagues across the bank. We also offer exclusive discounts to some of the most iconic cultural experiences for you to enjoy in your spare time outside of work. Learn more about our benefits here.

Good conduct and sound judgment is crucial to our long term success. It’s important that all employees in the organisation understand the expected standards of conduct and how we manage conduct risk. Individual accountability and an ownership mind-set are the cornerstones of our Code of Conduct and are at the heart of managing risk well.

We are an equal opportunities employer, and ensure that no applicant is subject to less favourable treatment on the grounds of gender, gender identity, marital status, race, colour, nationality, ethnic or national origins, age, sexual orientation, socio-economic background, responsibilities for dependants, physical or mental disability. The Bank selects candidates for interview based on their skills, qualifications and experience.

We strive to ensure that our recruitment processes are accessible for all candidates and encourage any candidates to tell us about any adjustment requirements. As part of our standard hiring process to manage risk, please note background screening checks will be conducted on all hires before commencing employment.

Learn more about this role

Full time

JR-21059831

Band: H4

Manages People:

Manager:

Talent Acquisition Contact:

James Bannerman

Referral Bonus:

0

Street Address

Primary Location:
BLOCK D LEOPARDSTOWN RD, Dublin, 18