girl looking into her desktop
Back to search results

Security Detection Senior Architect

Denver, Colorado;

Job Description:

Bank of America's Global Information Security team is looking for a Security Detection Senior Architect.

This position is responsible for helping to design, build, and deliver major components of Bank of America's security data, detection, and analytic strategy. You will work on a cross-functional team with deep knowledge of security processes and procedures, best practices, and red teaming to perform in-depth advanced log, system, and process analytics in order to pursue and prove or disprove hypotheses relating to malicious activity. Candidates will have strong technical leadership – able to operate with a geographically dispersed technical team to protect the Bank. Deep knowledge and experience with information security controls, infrastructure, and implementation techniques as well as familiarity with adversarial techniques, red teaming, and application and infrastructure assessment are key components for this role. You will demonstrate extraordinary organizational and cross-functional communication skills to drive analytics and investigations in to threats throughout the Enterprise. 

In this role, you will work with all operational and technical teams within Global Information Security (GIS) to gain insight into critical controls and architectural specifics in order to develop analytics that identify malicious behavior accurately while maintaining a low false positive rate. This role advises on and reviews product assessments, policy adjustments, and architectural transformations that impact the global Corporation, and will be a thought leader in the design of cutting-edge detective, preventative, and proactive controls. Direct coordination with control partners to build, improve, and evolve detections based on threat research and simulations. The use of industry-accepted and reviewed frameworks to enable the Bank to stay abreast of and participate in evolving security frameworks and concepts is a must. 

Required Skills: 

  • Must have deep technical expertise in security data architecture, including data pipeline technology (example: Kafka, Cribl), data platforms (example: Cloudera, Hadoop, Splunk), cloud storage, and SEIM technology
  • Must have deep experience performing data architecture strategy for large and complex data sets
  • Must be able to lead through influence, including with complex and technically challenging initiatives that will change the Bank
  • Must be able to effectively communicate to anyone in the organization, from the most technical assessor to the least technical business partner
  • Deep experience with analytics as a focus area within Information Security 
  • Deep experience writing and tuning custom security detections and preventative rules 
  • Extensive knowledge of all domains within Information Security 
  • Experience with offensive security and assessment methodology 
  • Experience explaining planning, coordinating, and reporting on threat detection and prevention implementation
  • Experience evaluating security logs and forensic review to develop detection guidance
  • Ability to see the larger picture when dealing with competing requirements and needs from across the teams in the organization in order to build consensus and drive results 
  • Ability to navigate and work effectively across a complex, geographically dispersed organization 
  • Experience with more than one EDR, SIEM, and manual log analysis techniques Mission-oriented with an emphasis on making the team successful 
  • Demonstrated ability to self-direct, with minimal supervision to achieve assigned goals 
  • Deep experience working with industry-wide frameworks and standards like MITRE ATT&CK, STIX, TAXII, and SCAP

Enterprise Role Overview:
Manages a team or teams accountable for providing cybersecurity defense across multiple disciplines. Leads the analysis, implementation, execution and ongoing improvement of proactive security controls to prevent external threat actors from infiltrating company information or systems. Utilizes experience and deep knowledge of IT platforms, tools, and concepts to ensure cybersecurity protection is integrated at all layers of defense. Leads alert responses and problem solving workgroups across multiple functions with a focus on the enterprise risk framework. Typically has over 10 years of relevant experience including managing teams.

Job Band:

H4

Shift: 

1st shift (United States of America)

Hours Per Week:

40

Weekly Schedule:

Referral Bonus Amount:

0

Job Description:

Bank of America's Global Information Security team is looking for a Security Detection Senior Architect.

This position is responsible for helping to design, build, and deliver major components of Bank of America's security data, detection, and analytic strategy. You will work on a cross-functional team with deep knowledge of security processes and procedures, best practices, and red teaming to perform in-depth advanced log, system, and process analytics in order to pursue and prove or disprove hypotheses relating to malicious activity. Candidates will have strong technical leadership – able to operate with a geographically dispersed technical team to protect the Bank. Deep knowledge and experience with information security controls, infrastructure, and implementation techniques as well as familiarity with adversarial techniques, red teaming, and application and infrastructure assessment are key components for this role. You will demonstrate extraordinary organizational and cross-functional communication skills to drive analytics and investigations in to threats throughout the Enterprise. 

In this role, you will work with all operational and technical teams within Global Information Security (GIS) to gain insight into critical controls and architectural specifics in order to develop analytics that identify malicious behavior accurately while maintaining a low false positive rate. This role advises on and reviews product assessments, policy adjustments, and architectural transformations that impact the global Corporation, and will be a thought leader in the design of cutting-edge detective, preventative, and proactive controls. Direct coordination with control partners to build, improve, and evolve detections based on threat research and simulations. The use of industry-accepted and reviewed frameworks to enable the Bank to stay abreast of and participate in evolving security frameworks and concepts is a must. 

Required Skills: 

  • Must have deep technical expertise in security data architecture, including data pipeline technology (example: Kafka, Cribl), data platforms (example: Cloudera, Hadoop, Splunk), cloud storage, and SEIM technology
  • Must have deep experience performing data architecture strategy for large and complex data sets
  • Must be able to lead through influence, including with complex and technically challenging initiatives that will change the Bank
  • Must be able to effectively communicate to anyone in the organization, from the most technical assessor to the least technical business partner
  • Deep experience with analytics as a focus area within Information Security 
  • Deep experience writing and tuning custom security detections and preventative rules 
  • Extensive knowledge of all domains within Information Security 
  • Experience with offensive security and assessment methodology 
  • Experience explaining planning, coordinating, and reporting on threat detection and prevention implementation
  • Experience evaluating security logs and forensic review to develop detection guidance
  • Ability to see the larger picture when dealing with competing requirements and needs from across the teams in the organization in order to build consensus and drive results 
  • Ability to navigate and work effectively across a complex, geographically dispersed organization 
  • Experience with more than one EDR, SIEM, and manual log analysis techniques Mission-oriented with an emphasis on making the team successful 
  • Demonstrated ability to self-direct, with minimal supervision to achieve assigned goals 
  • Deep experience working with industry-wide frameworks and standards like MITRE ATT&CK, STIX, TAXII, and SCAP

Enterprise Role Overview:
Manages a team or teams accountable for providing cybersecurity defense across multiple disciplines. Leads the analysis, implementation, execution and ongoing improvement of proactive security controls to prevent external threat actors from infiltrating company information or systems. Utilizes experience and deep knowledge of IT platforms, tools, and concepts to ensure cybersecurity protection is integrated at all layers of defense. Leads alert responses and problem solving workgroups across multiple functions with a focus on the enterprise risk framework. Typically has over 10 years of relevant experience including managing teams.

Shift:

1st shift (United States of America)

Hours Per Week: 

40

Learn more about this role

Full time

JR-22072429

Band: H4

Manages People: Yes

Travel: Yes, 5% of the time

Manager:

Talent Acquisition Contact:

Michael Geddie

Referral Bonus:

0

Colorado pay and benefits information

Colorado pay range:

$142,800 - $200,000 annualized salary, offers to be determined based on experience, education and skill set.

Discretionary incentive eligible

This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.

Benefits

This role is currently benefits eligible. We provide industry-leading benefits, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.

Jersey City pay and benefits information

Jersey City pay range:

$142,800 - $200,000 annualized salary, offers to be determined based on experience, education and skill set.

Discretionary incentive eligible

This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.

Benefits

This role is currently benefits eligible. We provide industry-leading benefits, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.