Attack Surface Network and Vulnerability Data Analytics Analyst - (SQL) / (Python) /advanced data mining and analytics req)

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.

Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.

Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.

At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!

Position Summary:

The Attack Surface Research and Analysis team delivers advanced data mining and analytics to identify, measure, and interpret the firm’s attack surface. This role is responsible for designing, developing, and delivering high‑quality queries, datasets, and visualizations that support Global Information Security stakeholders, using technologies such as Hue (Hive and Impala), Power BI, SQL Server, Cloudera, .NET, and Python.

The successful candidate will be highly collaborative, analytical, detail‑oriented, and persistent, ensuring insights are accurate, actionable, and delivered on time. The role requires 5–8 years of SQL database management experience, including at least 3 years supporting IT systems development in large‑scale data environments, along with demonstrated ability to analyze complex data sets to identify gaps, trends, and actionable intelligence.

Work as part of a team developing methods to quickly reference systems of record (SOR’s), systems of origin (SOO’s) and other available data stores for a comprehensive reliable and timely view of the Bank’s attack surface and vulnerability exploitability potential, with the goal of enabling answers to the following three questions as quickly as possible.

• Do we have it?

• Are we vulnerable?

• Is it exploitable?

Required Qualifications:

• SQL Development - 5+ years of professional experience writing queries and analyzing output or closely related role

• Large Volume Database Management and Maintenance - millions of rows data flow per update

• SQL Server Development: Indexes, constraints, table switching, transaction management, error handling, & activity logs

• SQL Server Integration: Services Dev Ops, C# script task, packaging, deployment conditional predecessor/successors

• Hands-on experience with large datasets and tools including data ingestion (batch & real time), transformation and delivery -ETLs

• Python development (front-and back-end)

• MS-Reporting Services (SSRS) MS-Integration Services (SSIS): subscriptions, report management, Tablix, matrix, cascading parameters 

• Excellent research skills – able to identify relevant data sources for information about bank technologies, gain an understanding of how things work and be willing to dig in and help identify usage throughout the firm

• Strong analytical skills/problem solving/conceptual thinking.

• Self-Motivating and Self-Drive

Desired Qualifications:

• Understanding of Network devices such as servers, switches, load balancers, etc.

• Qualys and Tanium Tools experience

• Knowledge of information security concepts, research tools, and products

• Ability to work with Technical and Non-Technical business owners

• Hue (Hive and Impala)

• ASP.NET

• IIS (Internet Information Services)

• Javascript

• Power BI

This job will be open and accepting applications for a minimum of seven days from the date it was posted

Shift:

Hours Per Week: