Back to search results

Assistant Vice President / Vice President, Information Security Threat Management Specialist (Application Monitoring & Response), Global Information Security

Singapore, , Singapore

Job Description:

Your background

  • Strong hands-on experience in application security detection and response technologies and processes
  • Understanding of common exploits, web application attacks, network protocols and infrastructure/application logs (eg weblogs, AD logs, security logs) for an efficient intrusion analysis
  • Advanced log analysis skills leveraging tools such as Splunk or other SIEM solutions to find targeted attacks and hunting exercises
  • Comfortable with scripting languages and regular expressions
  • Working knowledge of common operating systems (Windows/Linux/ OS  X)
  • Experience in packet captures and analysis (e.g. Wireshark) is desirable
  • Ability to independently work in a fast-paced environment and drive continuous improvement
  • Relevant technical certifications (SANS, CISSP, etc.) desirable
  • Excellent communication skills, able to adapt a message to various audiences

What you can expect

The Global Information Security (GIS) team is responsible for protecting bank information systems, confidential and proprietary data, and customer information. The Cyber Security Defense (CSD) team aims to protect the bank by having an end-to-end view and influence over all security controls at the Bank. The CSD Information Security Threat Management team specifically aims to reduce risk across the Bank of America by leveraging multiple methods of application layer intrusion detection, prevention and response activities for the security, safeguarding, continuity and confidentiality of information at Bank of America. As senior member of the team, you can expect yourself to be on forefront of application security detection and response practice while collaborating with other security teams.

The CSD team operates in FTS (follow the sun) model among Singapore, UK and US. We are a front line team that handles active security events and highly current threats. On call and after-hours work can be expected although we rotate to approximately one week every 2 months.

What you will do

  • Analyze application layer alerts, conduct investigations, respond to disrupt malicious actions of threat actors and feedback to improve defensive capabilities
  • Leverage advanced investigative skills using best in class data correlation and network/packet analysis tools to investigate incidents
  • Provides leadership in assessing new threat vectors and leverage new intelligence to update existing controls or design new controls
  • Develop and implement custom alerts and dashboards monitoring controls based on OSI layer 7 attack and threat indicators
  • Responsible for mentoring and developing the skill sets of less experienced team members
  • Develops and implements processes or controls in support of audit, compliance and risk requirements
  • Partner with senior leaders of business organizations to triage security events and report on impact
  • Execute and improve relevant risk management strategies

About Bank of America

Our purpose as a firm is to make financial lives better, through the power of every connection. Across the world, we partner with leading corporate and institutional investors through our offices in more than 35 countries. In the U.S. alone, we serve almost all of the Fortune 500 companies and approximately 67 million consumer and small-business clients. We provide a full suite of financial products and services, from banking and investments to asset and risk management. We cover a broad range of asset classes, making us a global leader in corporate and investment banking, sales and trading.

Connecting Asia Pacific to the world

Our Asia Pacific team is spread across 19 cities in 12 markets. We are focused on connecting Asia to the world and the world to Asia, using our global expertise to ensure success is shared between us, our clients and our communities. Our regional footprint covers 12 currencies, more than a dozen languages and five time zones, placing us firmly among the region’s leading financial services companies.

Job Band:

H5

Shift: 

Hours Per Week:

40

Weekly Schedule:

Referral Bonus Amount:

0

Job Description:

Your background

  • Strong hands-on experience in application security detection and response technologies and processes
  • Understanding of common exploits, web application attacks, network protocols and infrastructure/application logs (eg weblogs, AD logs, security logs) for an efficient intrusion analysis
  • Advanced log analysis skills leveraging tools such as Splunk or other SIEM solutions to find targeted attacks and hunting exercises
  • Comfortable with scripting languages and regular expressions
  • Working knowledge of common operating systems (Windows/Linux/ OS  X)
  • Experience in packet captures and analysis (e.g. Wireshark) is desirable
  • Ability to independently work in a fast-paced environment and drive continuous improvement
  • Relevant technical certifications (SANS, CISSP, etc.) desirable
  • Excellent communication skills, able to adapt a message to various audiences

What you can expect

The Global Information Security (GIS) team is responsible for protecting bank information systems, confidential and proprietary data, and customer information. The Cyber Security Defense (CSD) team aims to protect the bank by having an end-to-end view and influence over all security controls at the Bank. The CSD Information Security Threat Management team specifically aims to reduce risk across the Bank of America by leveraging multiple methods of application layer intrusion detection, prevention and response activities for the security, safeguarding, continuity and confidentiality of information at Bank of America. As senior member of the team, you can expect yourself to be on forefront of application security detection and response practice while collaborating with other security teams.

The CSD team operates in FTS (follow the sun) model among Singapore, UK and US. We are a front line team that handles active security events and highly current threats. On call and after-hours work can be expected although we rotate to approximately one week every 2 months.

What you will do

  • Analyze application layer alerts, conduct investigations, respond to disrupt malicious actions of threat actors and feedback to improve defensive capabilities
  • Leverage advanced investigative skills using best in class data correlation and network/packet analysis tools to investigate incidents
  • Provides leadership in assessing new threat vectors and leverage new intelligence to update existing controls or design new controls
  • Develop and implement custom alerts and dashboards monitoring controls based on OSI layer 7 attack and threat indicators
  • Responsible for mentoring and developing the skill sets of less experienced team members
  • Develops and implements processes or controls in support of audit, compliance and risk requirements
  • Partner with senior leaders of business organizations to triage security events and report on impact
  • Execute and improve relevant risk management strategies

About Bank of America

Our purpose as a firm is to make financial lives better, through the power of every connection. Across the world, we partner with leading corporate and institutional investors through our offices in more than 35 countries. In the U.S. alone, we serve almost all of the Fortune 500 companies and approximately 67 million consumer and small-business clients. We provide a full suite of financial products and services, from banking and investments to asset and risk management. We cover a broad range of asset classes, making us a global leader in corporate and investment banking, sales and trading.

Connecting Asia Pacific to the world

Our Asia Pacific team is spread across 19 cities in 12 markets. We are focused on connecting Asia to the world and the world to Asia, using our global expertise to ensure success is shared between us, our clients and our communities. Our regional footprint covers 12 currencies, more than a dozen languages and five time zones, placing us firmly among the region’s leading financial services companies.

Learn more about this role

Full time

JR-21075713

Band: H5

Manages People:

Manager:

Talent Acquisition Contact:

Wayne Tan

Referral Bonus:

0

Street Address

Primary Location:
2 HARBOURFRONT PLACE, #02-01, Singapore, 098499