Talent.com
Bank of America
Manual Ethical HackerBank of America • Charlotte
Manual Ethical Hacker

Manual Ethical Hacker

Bank of America • Charlotte
30+ days ago
Salary
$117,000.00 yearly
Job type
  • Full-time
Job description

Description

:

Manual Ethical Hacking is part of the Application Development Security Framework Program within Bank of America’s Cyber Security Assurance Offensive Security group. The program provides services to assess the vulnerability of the bank’s applications to malicious hacking activity.

This intermediate technical role is responsible for performing application security assessments of the bank's technologies, applications, and cyber security controls while adapting testing methods to evolving and emerging threats. Key responsibilities include performing research, understanding the bank’s security policies, working with the appropriate partners to complete assessments and simulations, identifying misconfigurations and vulnerabilities, and reporting on associated risk. These individuals partner closely with security partners, CIO clients and multiples lines of business.

Key Responsibilities in order of importance:

  • Perform assigned analysis of internal and external threats on information systems and predict future threat behavior
  • Incorporate threat actors' tactics, techniques, and procedures into offensive security testing
  • Perform assessments of the security, effectiveness, and practicality of multiple technology systems
  • Leverage innovative thinking to help solve problems or introduce new ideas to processes or products applicable to offensive security.
  • Prepare and present detailed technical information for various media including documents, reports, and notifications
  • Provide clear and practical advice regarding managed risks
  • Learn and develop advanced technical and leadership skills, Mentor Junior assessors in technical tradecraft and soft skills

Required Skills:

  • Minimum of 4 years of professional pentesting, application security or ethical hacking experience, preferably in a large, complex, enterprise environment
  • Detailed technical knowledge in at least 3 of the following areas: security engineering; application architecture; authentication and security protocols; application session management; applied cryptography; common communication protocols; mobile frameworks; single sign-on technologies; exploit automation platforms; RESTful web services
  • SQL injection/XSS attack without the use of tools
  • Experience performing manual code reviews for security relevant issues
  • Experience working with SAST tools to identify vulnerabilities
  • Able to manually identify and reproduce findings, discuss remediation concepts, develop PoCs for vulnerabilities, use scripting/coding techniques, proficiently execute common penetration testing tools, triage, and support incidents, and produce high value findings
  • Experience performing manual web application assessments i.e., must be able to simulate a
  • Knowledge of network and Web related protocols/technologies (e.g., UNIX/LINUX, TCP/IP, Cookies)
  • Experience with vulnerability assessment tools and penetration testing techniques
  • Solid programming/debugging skills
  • Experience of using a variety of tools, included, but not limited to, IBM AppScan, Burp and SQL Map
  • Threat Analysis
  • Innovative Thinking
  • Technology Systems Assessment
  • Technical Documentation
  • Advisory

Desired:

  • CISSP, CEH, OSCP, OSWE, GPEN, PenTest+ or similar
  • Strong programming/scripting skills
  • Mobile application analysis
  • Frida
  • Binary analysis (disassembly skills)

Skills:

  • Advisory
  • Innovative Thinking
  • Technical Documentation
  • Technology System Assessment
  • Threat Analysis
  • Adaptability
  • Collaboration
  • Executive Presence
  • Scenario Planning and Analysis
  • Test Engineering
  • Controls Management
  • Information Systems Management
  • Issue Management
  • Mentoring
  • Presentation Skills

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

Shift:

1st shift (United States of America)

Hours Per Week:

40

Pay Transparency details

US - CO - Denver - 1144 15th St - Denver Gis (CO9926), US - DC - Washington - 1800 K St NW - 1800 K Street NW (DC1842), US - IL - Chicago - 540 W Madison St - Bank Of America Plaza (IL4540), US - MA - Boston - 100 Federal St - 100 Federal St Lp (MA5100), US - NJ - Jersey City - 101 Hudson St - 101 Hudson (NJ2101), US - WA - Seattle - 401 Union St - Rainier Square (WA1510)Pay and benefits informationPay range$117,000.00 - $147,700.00 annualized salary, offers to be determined based on experience, education and skill set.Discretionary incentive eligibleThis role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.BenefitsThis role is currently benefits eligible. We provide industry-leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.
Create a job alert for this search

Manual Ethical Hacker • Charlotte

Similar jobs

Manual Machinist (Various Shifts) - (P)

Siemens EnergyCharlotte, North Carolina, United States of America
Full-time

Siemens Energy is actively recruiting for full-time positions across various shifts, encompassing a range of days and time slots.Currently hiring in different product line/ operations including – S... Show more

 • Promoted

Martech Enablement Operations Lead

BrightspeedCharlotte, North Carolina, United States
Full-time

At Brightspeed, we are reimagining how people live, work, play and connect by providing fast, reliable internet connections and an awesome customer experience in twenty states throughout the Midwes... Show more

 • Promoted

Strategic Sourcing Specialist Direct & MRO

MRINetworkCharlotte, NC, United States
Full-time

Strategic Sourcing Specialist Indirect / MRO.A multi-site manufacturing organization is hiring a Strategic Sourcing Specialist to lead Indirect / MRO sourcing across operations.This role is for so... Show more

 • Promoted

Senior Software Engineer (Hybrid)

A.P. Moller - MaerskCharlotte, NC, United States
Full-time

Moller - Maersk is an integrated container logistics company that is responsible for moving 20% of global trade every year.With a dedicated team of over 100,000 employees across 130 countries, we g... Show more

 • Promoted

Director Strategic Sourcing, Software

HoneywellCharlotte, NC, United States
Full-time

At Honeywell, we are driving global transformation within IT and Procurement.In this role, you will be responsible for global sourcing strategy and execution for Honeywell spend in Software (SaaS, ... Show more

 • Promoted

(USA) Fashion Coach

Wal-MartFort Mill, SC, United States
Full-time +1

Provides supervision and development opportunities for hourly associates by hiring, training, and mentoring of associates; assigning duties; setting clear expectations; providing associate recognit... Show more

 • Promoted

IT Recruiter

Leading Utilities OrganizationCharlotte, NC, United States
Full-time +1

Duration: Full Time Employment/Permanent Location: REMOTE, but San Antonio/Detroit/Charlotte preferred Pay: Salary Base, plus bonus/commission.Are you a self-motivated IT Recruiter interested in wo... Show more

 • Promoted

Data Architect with Healthcare Applications

Balin Technologies LLCCharlotte, NC, US
Full-time

Hi, Job Title: Data Architect with Healthcare Applications Mandatory Location: Charlotte, NC This Application Architect Position (Modernization) with Healthcare expertise.JD for Data Architect: We ... Show more

 • Promoted

Staff Software Engineer, Energy Intelligence

PalmettoCharlotte, NC, United States
Full-time

Palmetto is a leading clean tech company on a mission to accelerate the transition to a clean energy future.Our award-winning technology platform empowers homeowners, businesses, and entrepreneurs ... Show more

 • Promoted

Craft Recruiter

DPR ConstructionCharlotte, NC, United States
Full-time

The Craft Recruiter is responsible for assisting in all recruitment efforts of Skilled Trades/Craft candidates for DPR Construction across a national footprint.This role will entail close interacti... Show more

 • Promoted

Head of Blockchain Product Management

ConfidentialCharlotte, NC, United States
Full-time

Head of Blockchain Product Management.Innovative blockchain technology company.Information Technology and Services.The Company is seeking a Head of Blockchain Product Management to take on a foundi... Show more

 • Promoted

Director Strategic Sourcing, Software

Honeywell International, Inc.Charlotte, NC, United States
Full-time

At Honeywell, we are driving global transformation within IT and Procurement.In this role, you will be responsible for global sourcing strategy and execution for Honeywell spend in Software (SaaS, ... Show more

 • Promoted

Platform Engineer IV - Integration, Messaging Technologies

Capital GroupCharlotte, North Carolina, United States
Full-time

We want you to feel comfortable doing great work and bringing your best, authentic self to everything you do.We value your talents, traditions, and uniqueness-and we're committed to fostering a str... Show more

 • Promoted

US IT Recruiter - Internal Role

EuclidCharlotte, NC, United States
Full-time

Euclid Innovations is looking for a results-oriented Internal US IT Recruiter to join our core talent acquisition team.Unlike agency recruiting, this role is about building the future of our compan... Show more

 • Promoted

Prime Brokerage (ETF, capital markets)

Cognixia USACharlotte, NC, United States
Full-time

Prime Brokerage (ETF, Capital Markets).Collabera is a leading Digital Solutions company providing software engineering solutions to the world's most tech-forward organizations.With more than 25 yea... Show more

 • Promoted

Medical Technologist - Atrium Health Charlotte PRN

Atrium HealthCharlotte, North Carolina, United States
Full-time +1

Department 60901 Atrium Health University City - Lab Status Part time Benefits Eligible No Hours Per Week 0 Schedule Details / Additional Information Rotational Weekends, variable 12 hour shift... Show more

 • Promoted

Payments Architecture Lead - Modernization & Strategy

AccentureCharlotte, NC, United States
Full-time

A global consulting firm is seeking an experienced Payments Technical Architect to design and optimize payment solutions.This role involves leading strategies for payments modernization and working... Show more

 • Promoted

Recruiter

Scout MotorsCharlotte, NC, United States
Full-time

Here at Scout Motors, we're carrying forward the heritage of one of the most iconic American vehicles in history.One that forged the path for future generations of rugged SUVs and trucks and will d... Show more

 • Promoted

Analyst, Strategic Initiatives

TresataCharlotte, NC, United States
Full-time

If you're a highly motivated, multi-talented individual with a bit of personality who's ready to dive into the exciting world of AI, buckle up!! We're on the hunt for a dynamo to join our ridiculou... Show more

 • Promoted

Senior Solution Architect - Personalization Strategist

ContentfulCharlotte, NC, United States
Full-time

About the Opportunity We are hiring a Senior Personalization Solution Architect with deep domain expertise in personalization and experimentation to join Contentful’s Professional Services team.Thi... Show more