Denver, Colorado

Job Description:

The Identity Defense organization aims to protect digital identities which allow access to the Bank's internal network, resources and applications An Identity Defense analyst has the accountability for researching, designing, engineering, implementing, and supporting solutions to prevent and detect anomalous use of accounts.

Support design efforts related to build out of new processes, controls and supporting governance related to implementation of human and non-human account monitoring to protect the Bank. You will utilize in-depth technical knowledge and business requirements to help design and implement a scalable solution, inclusive of monitoring, alerting and escalation framework. Partner with senior leaders from line of business organizations to triage security events and report on impacting security incidents.

You will regularly collaborate with experts in and out of our team, both in country and in other regions, so excellent communication skills are very important. Role will also involve discussion with employees as part of alert analysis and disposition.  If you are seeking a demanding role within Global Information Security (GIS) and have the required skills, this will be a great opportunity for you. Typically, applicants should have 5 to 7 years of cybersecurity or engineering experience. 

Required Skills:

• Advanced cybersecurity monitoring and event analysis skills. The security analyst will leverage Splunk, SIEM, and other cybersecurity monitoring technologies to analyze traffic, activity, and events across the environment. Splunk experience is required.
• Data analysis/Data science skills.  The security analyst will analyze logs and other security telemetry using a combination of cybersecurity and data analytics tools. Experience with modern data analytics tooling is required, recent experience in an ELK stack or similar data framework is preferred.

• Strong Intrusion Analysis background.  Resource must be able to identify and interpret weblogs from various webservers.
• Knowledgeable of current exploits.  Resource must be able to identify common exploits from the appropriate web and event logs.
• Working knowledge of Linux, Windows, and OS X operating systems.
• Comfortable with scripting languages and regular expressions
• Strong knowledge common network protocols
• Working knowledge of enterprise Client / Server architecture
• MITRE ATT&CK Threat Framework/Threat Modeling
• Experience building operationally sustainable processes
• Experience designing solutions which meet or exceed regulatory guidelines (FFIEC)
• Advanced knowledge of authentication protocols and telemetries
• Analyze data and evaluate relevance to an specific incident under investigation
• Present findings via written reports and orally to key stakeholders in clear and concise language
• Effectively communicates investigative findings to non-technical audiences


1st shift (United States of America)

Hours Per Week: 


Denver, Colorado

You’ve led troops, now help lead your community 

As a leader in the military, you motivated troops to get the job done. We value your ability to influence change and encourage you to continue that influence here and in our communities. Our Military Affairs Team proudly supports veterans in our communities through education and volunteer events. Together, we can create better communities and a brighter future for us all. 

First you fought for the American dream, now you can guide its future

You joined the military to protect a nation and its people. Let the same passion for making a difference lead you to a new career. At Bank of America, we’re proud that more than 6,800 veterans work for us. They’ve discovered that their desire to help others didn’t end with their service. Here, you’ll help our customers and clients connect to better financial lives.

Similar jobs