Job Description

:About UsAt Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We\xe2\x80\x99re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!Global Business ServicesGlobal Business Services delivers Technology and Operations capabilities to Lines of Business and Staff Support Functions of Bank of America through a centrally managed, globally integrated delivery model and globally resilient operations. Global Business Services is recognized for flawless execution, sound risk management, operational resiliency, operational excellence and innovation. In India, we are present in five locations and operate as BA Continuum India Private Limited (BACI), a non-banking subsidiary of Bank of America Corporation and the operating company for India operations of Global Business Services.Process Overview*The Global Information Security organization (GIS) at Bank of America protects bank information systems, confidential and proprietary data, and customer information. The Cyber Threat Evaluation and Prevention Team (CTEP) assesses threats and emerging risks, evaluates cyber security controls, and defines observations to remediate risks.*The Evaluation Analyst plays an essential role in the Cyber Threat Defense Framework. The CTEP Evaluation Analyst conducts threat and incident evaluations and identifies opportunities for process and control enhancement. They support the CTEP Evaluation Manager in improving defense capabilities based on threats, incidents, and issues throughout the bank. The analyst assists ongoing evaluations by comprehensively documenting threats and ensuring all threats/incidents are comprehensive, complete, and accurate. Analyses include reviews of:

• Threats identified from internal and external intelligence sources.

• Cyber incidents managed at the Bank (e.g., third-party incidents).

• Assessments conducted by GIS teams (e.g., Adaptive Threat Simulations).

Responsibilities*Within CTEP, the Evaluation team:

• Analyzes threats and incidents sourced from GIS partner teams to identify and triage process and control weaknesses in context of risks arising from the threat.

• Documents defensive posture, process and control weaknesses, and overall risk of each threat.

• Reviews threats/incidents holistically to identify broad themes and strategic issues, enabling GIS to protect against cyber threats effectively and proactively.

Requirements*Education* BE/B.Tech/MCACertifications If Any : NAExperience Range* 4-6YearsFoundational skills*

• Strong technical writing capabilities; writing technical content in a broadly consumable format.
• Functional knowledge of information security, IT infrastructure, and risk management.
• Ability to prioritize and manage time effectively and work independently with minimal direction.
• Knowledge of Cyber Industry Frameworks like MITRE/NIST.
• Strategic thinking AND attention to detail \xe2\x80\x93 ability to think \xe2\x80\x9clike a threat actor.\xe2\x80\x9d
• Proficient computer/analytics skills \xe2\x80\x93 esp. Jira, Excel, Word, Power Point, Alteryx, etc.

Desired skills

• Experience with cyber threat intelligence collection, analysis, and reporting.
• Experience responding to and managing security incidents and events.
• Experience creating, executing, and documenting assessments and exercises.
• General understanding of bank policies, specific to data and privacy, third parties, incident management, vulnerability management, etc.

Work Timings* 12:30 PM 09:30 PMJob Location* Hyderabad, Chennai

Bank of America