Listing Description
The Malware Prevention Team’s mission is to reduce risk across Bank of America by using existing or establishing robust cyber-hacking and malicious code containment activities for the security, safeguarding, continuity and confidentiality of information at Bank of America.
The Malware Prevention Analyst will be responsible for analyzing various malware samples, performing host investigations to identify indicators of compromise, responding to malicious attempts against the organization and identifying methods to improve the over security posture against malicious attacks.
Successful candidates must be able to work independently on their given tasks, work well in a team environment, and come up with innovative ways to track progression of malware families, infrastructure, and campaigns conducted by malicious actors.
Enterprise Role Overview: Key individual contributor, with accountability for researching, designing, engineering, implementing, and supporting information security & technology systems (software & hardware).
Utilizes in-depth technical knowledge and business requirements to design & implement secure solutions to meet customer / client needs while protecting the Bank's assets.
Develops and implements security standards, procedures, and guidelines for multiple platforms and diverse environment (e.g. client server, distributed, mainframe, etc.).
Exercises judgment within broadly defined practices and policies in selecting methods, techniques, and evaluation criterion for obtaining results.
Qualifications Required Skills:
3+ years of direct experience in incident response surrounding malware related events (or must show equivalent competency)
• Investigate computer systems to identify malware infections or evidence of malware related activity
• Must have solid understanding of Microsoft Windows malware
• Should have a solid understanding of dynamic/static analysis of malware
• Background or experience in static analysis a plus
• Background in responding to malicious events
• Must be able to think outside the box and develop solutions to accomplish difficult tasks
• Ability to create scripts to automate certain tasks a plus
• Solid background in network traffic analysis
• Experience in encryption / obfuscation and how to reverse it a plus
• Proficient knowledge of networking protocols: TCP/IP, HTTP/HTTPs, FTP, IRC, RPC, DNS, etc.
• Excellent written and verbal communication skills
• Must be able to document findings, create reports and document processes to improve workflow• Perform system investigations using various forensic toolsets to identify indicators of compromise
• Respond to malicious events within the organization to reduce the risks surrounding malware within the environment
• Perform static/dynamic analysis of malware samples to identify functionality and malware family
• Document event and incident findings and provide detailed description of actions taken
• Identify methods to improve the existing anti-malware controls to improve malware prevention efforts
Listing Details
- Citizenship: Us Citizen
- Incentives: Not Provided
- Education: No Requirements
- Travel: Travel 25
- Telework: No Telecommute