Back to search results

Assistant Vice President / Vice President, Information Security Threat Management Specialist (Application Monitoring & Response), Global Information Security, Sydney, Australia

Sydney, Australia
Refer a friend

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.

Being a Great Place to Work and providing a culture of caring is core to how we drive Responsible Growth. We are intentional about fostering an inclusive workplace where every teammate has the opportunity to succeed, build a career and contribute to our shared success. This includes attracting and developing exceptional talent, recognizing and rewarding performance, and supporting our teammates’ physical, emotional, and financial wellness through affordable, competitive and flexible benefits.

We value the unique perspectives individuals bring from all backgrounds and career paths - whether shaped by military service, community college education, or a wide range of work and life experiences. These journeys foster resilience, leadership and innovation, strengthening our workforce and positively impact the communities we serve.

Bank of America is committed to an in-office culture that supports collaboration, engagement, and career development. Our approach includes clear in-office expectations, while providing an appropriate level of flexibility based on role-specific responsibilities and business needs.

At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!

Job Description:

The Global Information Security (GIS) team is responsible for protecting bank information systems, confidential and proprietary data, and customer information. The Cyber Security Defense (CSD) team aims to protect the bank by having an end-to-end view and influence over all security controls at the Bank. The CSD Information Security Threat Management team specifically aims to reduce risk across the Bank of America by leveraging multiple methods of application layer intrusion detection, prevention and response activities for the security, safeguarding, continuity and confidentiality of information at Bank of America. As senior member of the team, you can expect yourself to be on forefront of application security detection and response practice while collaborating with other security teams.

The CSD team operates in FTS (follow the sun) model among Australia, Singapore, UK and US. We are a front-line cyber response team that handles active security events and highly current threats. On call and after-hours work can be expected although we rotate to approximately one week every 2 months.

Responsibilities:

  • Analyze application layer alerts, conduct investigations, respond to disrupt malicious actions of threat actors and feedback to improve defensive capabilities
  • Leverage advanced investigative skills using best in class data correlation and network/packet analysis tools to investigate incidents
  • Provides leadership in assessing new threat vectors and leverage new intelligence to update existing controls, design new controls and participate in testing and deployment of new controls
  • Develop and implement custom alerts and dashboards monitoring controls based on OSI layer 7 attack and threat indicators
  • Responsible for mentoring and developing the skill sets of less experienced team members
  • Develops and implements processes or controls in support of audit, compliance and risk requirements
  • Partner with senior leaders of business organizations to triage security events and report on impact
  • Execute and improve relevant risk management strategies

Required Skills:

  • Strong hands-on experience in application security detection and response technologies and processes
  • Understanding of common exploits, web application attacks, network protocols and infrastructure/application logs (eg weblogs, AD logs, security logs) for an efficient intrusion analysis
  • Advanced log analysis skills leveraging tools such as Splunk or other SIEM solutions to find targeted attacks and hunting exercises
  • Experience of maintaining and fine-tuning signatures on WAF of leading vendors such as FE (ASM) and Akamai
  • Comfortable with scripting languages and regular expressions
  • Working knowledge of common operating systems (Windows/Linux/ OS  X)
  • Experience in packet captures and analysis (e.g. Wireshark) is desirable
  • Ability to independently work in a fast-paced environment and drive continuous improvement
  • Relevant technical certifications (SANS, CISSP, etc.) desirable
  • Excellent verbal and written communication skills, able to adapt a message to various audiences

Learn more about this role

Refer a friend

Full time

JR-26024327

Manages People:

Age requirement: Must at least be 18 years of age.

Street Address

Primary Location:

1 FARRER PLACE, Sydney, 2000