Resolution Analyst

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.

Being a Great Place to Work and providing a culture of caring is core to how we drive Responsible Growth. We are intentional about fostering an inclusive workplace where every teammate has the opportunity to succeed, build a career and contribute to our shared success. This includes attracting and developing exceptional talent, recognizing and rewarding performance, and supporting our teammates’ physical, emotional, and financial wellness through affordable, competitive and flexible benefits.

We value the unique perspectives individuals bring from all backgrounds and career paths - whether shaped by military service, community college education, or a wide range of work and life experiences. These journeys foster resilience, leadership and innovation, strengthening our workforce and positively impact the communities we serve.

Bank of America is committed to an in-office culture that supports collaboration, engagement, and career development. Our approach includes clear in-office expectations, while providing an appropriate level of flexibility based on role-specific responsibilities and business needs.

At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!

Job Description:

The Resolution Analyst plays a critical role in the Cyber Threat Defense Framework as an individual contributor responsible for identifying actions and owners for driving the resolution of cybersecurity risks impacting bank controls. This role will manage key relationships with action owners and work closely with the Cyber Threat Evaluation and Prevention organization to develop and implement strategies for mitigating cybersecurity risks.

The Resolution Analyst will prioritize work effectively, collaborate across functions, and drive the discovery of opportunities to improve risk outcomes through data‑driven solutions. Additionally, this role will support the Resolution Lead in enhancing cyber defense capabilities by addressing threats, incidents, and issues across the bank

The Team: 

The Cyber Threat Evaluation and Prevention (CTEP) team evaluates threats and emerging risks, assesses cybersecurity controls, and defines actions for risk reduction. The four key steps in the cyber threat defense process are: threat intake, control evaluation, resolution, and quality assurance.

The CTEP program integrates across Global Information Security, leveraging current risk assessments and control testing to identify gaps for action by Control Owners, Action Owners, and/or Policy/Standard owners. The program aims to evaluate and enhance Bank of America’s risk and control environment for cybersecurity threats and emerging risks.

Responsibilities

• Resolution Analysts leverage their expertise and creative problem‑solving skills to drive engagement with action owners across diverse global technology teams. They play a pivotal role in accurately representing threats and gathering key leaders to identify and drive risk remediation efforts. Operating within a collaborative and transparent environment, they contribute to a culture of continuous improvement and proactive response to cybersecurity challenges, while providing guidance and mentorship to analysts across the team.

Typical job duties are:

• Examine threat evaluation information and lead engagement with subject matter experts to identify actions to reduce risk through remediation efforts.
• Reduce risk by driving and influencing remediation work in alignment with the known threat environment, ensuring effective and sustainable outcomes.
• Work with relevant control owners and technology teams to understand and identify areas for improvement in the identification of and response to information security threats and incidents.
• Translate complex technical findings into clear risk, control, and business impacts to support decision making.
• Drive alignment across multiple stakeholders to ensure progress on risk reduction efforts in the absence of direct authority.
• Provide guidance to colleagues to strengthen risk reduction and overall team effectiveness.

Required Qualifications:

• 3 years of professional experience with information security controls
• Strong data analysis skills with the ability to interpret and synthesize complex information
• Strong communication and relationship management skills across technical and non‑technical stakeholders
• Demonstrated ability to manage complex work and drive outcomes across multiple teams
• Ambitious, disciplined, hardworking, resilient, and committed to continuous learning
• Highly organized with strong project management and prioritization skills

Desired Qualifications

• Bachelor’s degree in Information Technology, Business Administration, or related field
• Ability to work effectively with both technical and non‑technical business owners
• Experience operating in cross‑functional or enterprise environments
• Proficiency with Jira or similar workflow management tools

Skills:

• Cyber Security
• Data Privacy and Protection
• Problem Solving
• Process Management
• Threat Analysis
• Business Acumen
• Data and Trend Analysis
• Interpret Relevant Laws, Rules, and Regulations
• Risk Analytics
• Stakeholder Management
• Access and Identity Management
• Data Governance
• Encryption
• Information Systems Management
• Technology System Assessment

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

Shift:

Hours Per Week: