Job Information
Bank of America Digital Forensics Analyst in Charlotte, North Carolina
Digital Forensics Analyst
Charlotte, North Carolina;Jersey City, New Jersey; Denver, Colorado
Job Description:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.
One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.
Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.
Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!
Job Description:
Bank of America is seeking to expand and diversify their Digital Forensics and Incident Response (DFIR) capability with motivated and adaptable individuals from a range of different backgrounds and experience. This role is open to individuals with at least 3 years of Digital Forensics experience.
Required Background and Experience
Identify, analyze and present evidential data from workstation orientated systems, including but not limited to systems installed with Microsoft Windows; and
Such candidates will have experience in investigating specific facets or workstreams of various incident scenarios/investigations as part of a broader DFIR/investigative team; and
This particular type of candidate will have accumulated some form of generalist or broad knowledge in computing and networking, together with at least a generalist understanding of information security technologies, techniques and processes.
This candidate may also have led or started to lead a limited amount of incident scenarios/investigations from commencement to cessation, though not a requirement.
Desired Background and Experience
Identify, analyze and present evidential data from a wide range of enterprise systems for a wide range of incident or investigative scenarios. Scenarios involving cloud technology, such as Azure or AWS, would be especially advantageous; and
Such candidates will have experience in investigating and leading various incident scenarios/investigations as part of a broader DFIR/investigative team from commencement to cessation; and
This particular type of candidate will be able to draw upon their well-versed knowledge in computing and networking, together with information security technologies, techniques and processes.
This candidate may also have initiated or driven initiatives to transform, evolve or upgrade incident scenarios/investigative processes and/or technologies.
For all candidates, please refer to the following in terms of skills and qualifications:
One of the below qualifications or certifications are a requirement:
Bachelor’s, Masters or Doctorate Degree in a Computer Science, Computer Engineering, Information Security or Cyber/Digital Forensics related discipline; or
Digital Forensics and Incident Response Certification (i.e. EnCE or related SANS certification, such as GCFA).
One or more of the following qualifications or certifications are highly advantageous, though not essential:
A Cloud related qualification or certification, such as Certified Cloud Security Professional (CCSP), or related to Microsoft Azure and Amazon Web Services (AWS); or
Linux Qualification or Certification, e.g Red Hat Certified System Administrator
One or more of the following skills or experience are also highly advantageous and would be particularly exciting, though not essential:
Programming and scripting skills or experience, such as:
Programming skills and experience, such as Java, C++, Python; or
Batch or shell scripting experience within Windows or Linux environments; or
Experience in one of the following Digital Forensics and Incident Response (DFIR) backgrounds:
Cloud and/or containerization technologies (i.e. Docker and Kubernetes) within an enterprise environment; or
Linux/Unix systems with particular focus on RedHat or other enterprise scale distributions (distros). This experience should also include excellent knowledge of operating system nuances, file systems and inner workings.
What you can expect
The Cyber Security Operation (CSO) team’s aim is to protect the bank and has an end to end view and influence over all security controls at the Bank. Digital Forensics (DF), which is part of CSO, is a reactive team that responds to events or incidents in order to identify and mitigate risk to the Bank. Digital Forensics purview encompasses a wide breadth of incidents, which includes but are not limited to third party breaches, determining data exfiltration and anything else in-between. The Digital Forensics team are well trained and comprise of individuals with a number of different backgrounds, which range from law enforcement, consulting and from within industry. The Digital Forensics team has a vested interest in taking members of the team to the next level. Regardless of levels of experience, training and certification opportunities are commonplace and actively encouraged, as well as the empowerment to invest time in learning new and upcoming technologies that improve on the way that we respond to incidents.
What you will do
Not one day is the same for Cyber Security Operation (CSO) team and this is especially true for Digital Forensics (DF). Anyone working within the Digital Forensics team can expecting the following:
Utilizing your extensive Digital Forensics and Incident Response experience to conduct and manage your individual caseload across the entire incident response or investigative lifecycle from start to finish;
Discovering unfamiliar technology or data during the midst of an incident or investigation and assessing its relevance to the issues at hand, i.e. stored information, auditing capability, evidential value etc.;
Leveraging upon your ability to communicate, both written and verbal, in a clear, concise and inclusive manner to technical and non-technical audiences with colleagues, peers and stakeholders at all levels;
Embracing new and upcoming technologies and assessing how they could apply and improve on the way in which the team responds to incidents;
Working alongside a global team with colleagues in the USA and Europe, whilst placing emphasis on collaboration and sharing of ideas and methodologies;
Undertaking and sharing the responsibilities of working an on-call schedule so that the bank is well placed to respond to incidents or investigations when required.
This job is responsible for supporting evaluations of cyber security threats and updating defensive capabilities to reduce the bank's risk of exposure. Key responsibilities include conducting analyses of the threat environment and threats to the bank, including post incident analysis, applying a multi-faceted situational awareness of cyber security processes to protect against threats, and implementing proactive defensive actions for the security, continuity, and confidentiality of information.
Shift:
1st shift (United States of America)
Hours Per Week:
40
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity and affirmative action, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
To view the "EEO is the Law" poster, CLICK HERE (https://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf) .
To view the "EEO is the Law" Supplement, CLICK HERE (https://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP_EEO_Supplement_Final_JRF_QA_508c.pdf) .
View the LA County Fair Chance Ordinance (https://dcba.lacounty.gov/wp-content/uploads/2024/08/FCOE-Official-Notice-Eng-Final-8.30.2024.pdf) .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy (“Policy”) establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
To view Bank of America’s Drug-free Workplace and Alcohol Policy, CLICK HERE .
This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.
Bank of America
- Bank of America Jobs