Malware Defense Malware Analyst

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.

Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.

Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.

At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!
 

Bank of America is one of the world’s leading financial institutions, serving over 66 million consumers and small businesses. Company success is only possible with a strong cyber defense, which enables Bank of America to safely conduct global operations across the United States and in approximately 35 countries. Our primary goal is to safeguard not only the company, but our clients and their trust. The Malware Defense Team is looking for top talent who would like to join one of the most advanced cybersecurity teams in the world.

Responsibilities include, but are not limited to:
•    In-depth analysis of malware, including authoring analysis reports.
•    Tracking malware campaigns, malicious actors, and related infrastructure.
•    Creation of tools and scripts to assist in the analysis of malware analysis.
•    Field escalations of potentially malicious files and websites from teams within Malware Defense.

Required Qualifications:
•    Strong direct experience of analyzing malware.
•    Intermediate to advanced malware analysis skills.
•    Experience creating innovative ways to track progression of malware families, infrastructure, and campaigns conducted by e-crime, and cyber espionage actors.
•    Experience creating tools and scripts to accelerate malware and threat analysis.
•    Background in network traffic analysis – WireShark, Fiddler, proxy logs, etc.
•    Experience analyzing malicious web content such as ClickFix, ClearFake, SocGholish, etc.
•    Experience authoring YARA, Suricata, and EKFiddle detection rules.
•    Experience with penetration testing and/or adversary emulation is a plus.
•    Able to work independently on tasks, but also work well within a team environment

Desired Qualifications:
•    Experience analyzing malware targeting Linux, Android, and IOT platforms.
 

Skills:

• Cyber Security

• Data Privacy and Protection

• Problem Solving

• Process Management

• Threat Analysis

• Business Acumen

• Data and Trend Analysis

• Interpret Relevant Laws, Rules, and Regulations

• Risk Analytics

• Stakeholder Management

• Access and Identity Management

• Data Governance

• Encryption

• Information Systems Management

• Technology System Assessment

Shift:

Hours Per Week: