Cybercrime Identification Senior Specialist
Description:
Position Summary
Our Cybercrime Disruption & Response team within Bank of America’s Cyber Crime Defense function works to continuously strengthen the bank’s cybercrime posture through research, use of threat intelligence, and extensive use of data analysis. This team works with partners throughout the bank to both discover and develop mitigations from threats to help detect, prevent cybercrime and fraud from taking advantage of our customers or infrastructure.
Key Responsibilities
The position of Senior Cybercrime Identification Specialist is responsible for analyzing and correlating large data sets to uncover threats and attack techniques. A Senior Cybercrime Identification Specialist will be tasked with collaborating with data science, threat research, and fraud teams to identify opportunities to develop analytical methods to detect advanced threat actors who utilize emerging tactics and techniques. In support of these processes, the role will also include developing and documenting new and innovative threat detection hypotheses to increase the team’s ability to find existing threats that are otherwise going unidentified or unnoticed. External engagement in sharing and collaborating with other members of critical infrastructure will be key in helping fight cybercrime has a whole across the industry. The role will also be expected to actively share knowledge and mentor more junior members of the Cybercrime Defense Disruption & Response team. The role will work with all Cybercrime Defense and line of business fraud teams to gain insight into critical security controls and architectural specifics to develop valuable identification strategies and analytics that identify malicious behavior accurately while maintaining a low false positive rate. This role advises on new fraud strategies and controls that may enhance detection or prevent cybercrime that attempt to take advantage of our customers or infrastructure. This role will be a thought leader in the design of cutting-edge detective, preventative, and proactive controls.
Minimum Qualifications
Experience using transactional data to identify fraud, money laundering, and other suspicious financial activity.
3+ years of experience in a technical role in the areas of Fraud detection, Threat hunting. Security Operations, Incident Response, Detection Engineering, DevSecOps, Security Engineering, and/or Cyber Threat Intelligence.
Direct experience working with large volumes of structured and unstructured data in various data management systems that include but are not limited to: IBM DB2, SQL Server, Azure Cosmos DB, Hadoop, Teradata, Oracle, MySQL (MariaDB), and MongoDB,
Proficiency in the Python programming language including a solid understanding of object-oriented programming, dataclasses, test-driven development, performance testing, and continuous integration/development.
Proficiency with various Python data analytics and visualization libraries, frameworks, and tools that include but are not limited to: Pandas, NumPy, scikit-learn, matplotlib, seaborn, d3, and Jupyterhub.
Experience consuming, analyzing, and processing Cyber Threat Intelligence data to provide actionable recommendations to stakeholders.
Experience explaining complex ideas, methods, processes, and workflows to senior leadership.
Ability to drive large projects while dealing with competing requirements, priorities, and needs from across the organization in order to drive results.
Ability to navigate and work effectively across a complex, geographically dispersed organization.
Demonstrated ability to self-direct, with minimal supervision to achieve assigned goals.
Basic statistical knowledge and reasoning
Experience with OSINT, killchains, social engineering and general methods used to compromise and exploit systems or people.
Shift:1st shift (United States of America)
Hours Per Week: 40
24014787