Malware Prevention Analyst, Global Information Security

Job Description:At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities, and shareholders every day.One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!Your backgroundStrong direct experience of analyzing malwareMust have a solid understanding of dynamic/static analysis of malwareBackground in network traffic analysis related to malwareExperience in encryption/obfuscation and how to reverse engineer (desirable)GCIH, GREM, GCFA, CISSP or CCSP desirableAt least 3+ years of direct experience analyzing malware (or show equivalent competency)Able to work independently on tasksAble to work well within a team environmentCan create innovative ways to track progression of malware families, infrastructure and campaigns conducted by various threat actorsKnowledge of networking protocols: TCP/IP, HTTP/HTTPs, FTP, IRC etc.Ability to create scripts and other forms of automationExcellent communication skills, able to adapt a message to various audiencesKnowledge/experience of at least one major cloud services provider (AWS, GCP, Azure) technologiesWhat you can expectThe Global Information Security (GIS) team is responsible for protecting bank information systems, confidential and proprietary data, and customer information. The Cyber Threat Defense (CTD) team aims to protect the bank by having an end-to-end view and influence over all security controls at the Bank. The CTD Malware Defense team specifically aims to reduce risk across the Bank of America by using leveraging multiple methods of malicious code detection and containment activities for the security, safeguarding, continuity and confidentiality of information at Bank of America. The Malware Defense Analyst role undertakes incident response activities with a primary focus on malware analysis.CTD Malware Defense team operates 24x7 on follow-the-sun model having teams based in APAC, EMEA and AMRS. This role may require working on public holidays and weekends as part of 24x7 coverage.What you will doAnalyze various malware alerts and corresponding eventsRespond to actions by threat actors and disrupt their attempted actionsPerform static and dynamic forensic analysis of malwarePerform disk based and memory-based analysis of systemsExecute and improve relevant risk management strategiesPerform real-time analysis and trending of security log data from various security devices and systems.Maintain data sources feeding the log monitoring system, develop and maintain detection and alerting rules.Respond to user incident reports and evaluates the type and severity of security events.Execute initial triage of incidents to rule out false positives.Identify recurring security issues and risks and develops mitigation plans and recommends process improvements.Interpret and apply security policies and procedures.Establish escalation processes for security incidents and develops contingency plans and disaster recovery procedures.