Vice President, Human Threat Prevention Analyst, Global Information Security

  • Competitive
  • Hong Kong Hong Kong Hong Kong HK
  • Permanent, Full time
  • Bank Of America / Merrill Lynch
  • 19 Sep 18 2018-09-19

Vice President, Human Threat Prevention Analyst, Global Information Security


About Bank of America Merrill Lynch:

Our purpose as a firm is to make financial lives better, through the power of every connection. Across the world, we partner with leading corporate and institutional investors through our offices in more than 40 countries. In the U.S alone, we serve almost all Fortune 500 companies and approximately 59 million consumers and small-business customers. We provide a full suite of financial products and services, from banking and investments to asset and risk management. We cover a broad range of asset classes, making us a global leader in corporate and investment banking, sales and trading.

Connecting Asia Pacific to the World

Our Asia Pacific team is spread across 23 offices in 12 markets. We are focused on connecting Asia to the world and the world to Asia, using our global expertise to ensure success is shared between us, our clients and our communities. Our regional footprint covers 12 currencies, more than a dozen languages and five time zones, placing us firmly among the region's leading financial services companies.

Bank of America Merrill Lynch is committed to attracting, recruiting and retaining top diverse talent from across the globe. Our diversity and inclusion mission is to actively promote an inclusive work environment where all employees have the opportunity to achieve personal success and contribute to the growth of our business. Each of our global Employee Networks bring together employees, create dialogue and awareness in support of our Diversity and Inclusion mission.

Bank of America Merrill Lynch is an equal opportunities employer.

Position Description

Background: Bank of America's Cyber Security Operations team is looking to recruit a Human Threat Prevention Security Engineer. The role will be responsible for conducting data analysis of insider threat auditing and monitoring software resources to detect and identify insider risk activities. In addition, you will be required to complete investigations by analyzing and verifying information through various investigative techniques, internal resources, and conversations/interviews with persons of interest. Candidates should be comfortable working with incomplete facts, be able to quickly rationalize and drive clarity, translate to actionable tasks, and demonstrate tenacity by working assigned investigations through to completion. Candidates must be willing to be enrolled in AIM (Associate Investment Monitoring) program.

Key Responsibilities

Your responsibilities will be:

  • Conduct investigations by analyzing and verifying information through various investigative techniques, internal resources, and conversations/interviews with persons of interest;
  • Complete written reports in compliance with current reporting procedures and policies. Must have the ability to write detailed, concise, and accurate reports;
  • Ability to manage high risk regional information security incidents by working in conjunction with response partners and other risk teams;
  • Utilizing next generation tools and technology to conduct deep behavioral analytics assessments/ investigations with a focus on mitigating information security related insider threats;
  • Provides on-call duties and support which may include after-hours support and coordination among GIS response teams.

Key Requirements
  • Analyze data and evaluate relevance to an specific incident under investigation;
  • Document each stage of the investigation and maintain a focus on case logs and details;
  • Present findings via written reports and orally to key stakeholders in clear and concise language;
  • Effectively communicates investigative findings to non-technical audiences;
  • Ability to interact with and lead discussions with senior Bank executives across different functions and lines of business;
  • Ability to manage high risk regional information security incidents by working in conjunction with response partners and other risk teams;
  • Ability to navigate and work effectively across a complex organization that is geographically dispersed;
  • Maintain an awareness of industry challenges and advancements in order to add value to existing technologies and processes used within the team

Nice to have:
  • Foundational knowledge in conducting complex investigations with an Insider Threat emphasis
  • Certifications- CFE, CFCE, CISSP, GCIH, SANS, GIAC
  • Experience conducting investigative interviews a plus
  • Networking/System administration experience
  • Foundational knowledge in computer forensics, incident response a plus

Posting Date: 12/09/2018
Location:
51 KWAI CHEONG ROAD - KOWLOON COMMERCE CENTER TOWER 2
- Hong Kong

Full / Part-time: Full time
Hours Per Week: 40