Manual Ethical Hacker
Bank of America ATM
Manual Ethical Hacker
Denver, Colorado;Seattle, Washington; Jacksonville, Florida; Charlotte, North Carolina; Jersey City, New Jersey; Boston, Massachusetts; Washington, District of Columbia; Chicago, Illinois
To proceed with your application, you must be at least 18 years of age.
Acknowledge (
Bank of America employees are required to meet all posting eligibility requirements prior to applying for any new position.
Acknowledge (
Refer a friend
To proceed with your application, you must be at least 18 years of age.
Acknowledge (
Bank of America employees are required to meet all posting eligibility requirements prior to applying for any new position.
Acknowledge (
Job Description:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.
Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.
At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!
Job Description:
Manual Ethical Hacking is part of the Application Development Security Framework Program within Bank of America's Cyber Security Assurance Offensive Security group. The program provides services to assess the vulnerability of the bank's applications to malicious hacking activity.
This intermediate technical role is responsible for performing application security assessments of the bank's technologies, applications, and cyber security controls while adapting testing methods to evolving and emerging threats. Key responsibilities include performing research, understanding the bank's security policies, working with the appropriate partners to complete assessments and simulations, identifying misconfigurations and vulnerabilities, and reporting on associated risk. These individuals partner closely with security partners, CIO clients and multiples lines of business.
Key Responsibilities in order of importance:
Perform assigned analysis of internal and external threats on information systems and predict future threat behavior
Incorporate threat actors' tactics, techniques, and procedures into offensive security testing
Perform assessments of the security, effectiveness, and practicality of multiple technology systems
Leverage innovative thinking to help solve problems or introduce new ideas to processes or products applicable to offensive security.
Prepare and present detailed technical information for various media including documents, reports, and notifications
Provide clear and practical advice regarding managed risks
Learn and develop advanced technical and leadership skills, Mentor Junior assessors in technical tradecraft and soft skills
Required Skills:
Minimum of 4 years of professional pentesting, application security or ethical hacking experience, preferably in a large, complex, enterprise environment
Detailed technical knowledge in at least 3 of the following areas: security engineering; application architecture; authentication and security protocols; application session management; applied cryptography; common communication protocols; mobile frameworks; single sign-on technologies; exploit automation platforms; RESTful web services
SQL injection/XSS attack without the use of tools
Experience performing manual code reviews for security relevant issues
Experience working with SAST tools to identify vulnerabilities
Able to manually identify and reproduce findings, discuss remediation concepts, develop PoCs for vulnerabilities, use scripting/coding techniques, proficiently execute common penetration testing tools, triage, and support incidents, and produce high value findings
Experience performing manual web application assessments i.e., must be able to simulate a
Knowledge of network and Web related protocols/technologies (e.g., UNIX/LINUX, TCP/IP, Cookies)
Experience with vulnerability assessment tools and penetration testing techniques
Solid programming/debugging skills
Experience of using a variety of tools, included, but not limited to, IBM AppScan, Burp and SQL Map
Threat Analysis
Innovative Thinking
Technology Systems Assessment
Technical Documentation
Advisory
Desired:
CISSP, CEH, OSCP, OSWE, GPEN, PenTest+ or similar
Strong programming/scripting skills
Mobile application analysis
Frida
Binary analysis (disassembly skills)
Skills:
Advisory
Innovative Thinking
Technical Documentation
Technology System Assessment
Threat Analysis
Adaptability
Collaboration
Executive Presence
Scenario Planning and Analysis
Test Engineering
Controls Management
Information Systems Management
Issue Management
Mentoring
Presentation Skills
This job will be open and accepting applications for a minimum of seven days from the date it was posted.
Shift:
1st shift (United States of America)
Hours Per Week:
40
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
View your "Know your Rights ( " poster.
View the LA County Fair Chance Ordinance ( .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank's required accommodation request process before your first day of work.
This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.
$104k - $156k
...security controls across laptops and mobile devicesBuild automation and tooling to enforce secure configuration baselines and reduce manual effortPartner with IT on device management, deployment, and lifecycle securityReduce enterprise risk by hardening devices, limiting...SuggestedRelativity
Jacksonville, FL4 days ago$72.34k - $93.06k
...bending spine at the waist. Occurs to a considerable degree and requires full motion of the lower extremities and back muscles. Manual Dexterity: Picking, pinching, or otherwise working, primarily with fingers rather than with the whole hand as in handling. Grasping...SuggestedFull timeWork at officeMonday to FridayFlexible hoursCity of Jacksonville Beach, FL
Jacksonville Beach, FL3 days ago- ...vulnerability management program to identify and correct any problems within. Responsibilities Security Metrics – Uses automated and manual processes to produce regular reports communicating the status of the Information Security program Policies and Procedures –...SuggestedWork experience placement
Intercontinental Exchange
Jacksonville, FL21 hours ago $102k - $138k
...effectively describes IT risk and control strengths and concerns to audit and client contacts. Maintains IT audit files and review manuals, policies, reports, and other written materials to collect information. Compiles test exceptions to determine root cause and...SuggestedFor contractorsWork experience placementEverBank
Jacksonville, FL4 days ago- ...tracking purposes and ensuring traceability among test cases, code, and requirements ~ You are not afraid to spend time performing manual tests yet have the urge to automate those as efficiently as possible ~ You are experienced in using systems like Jira or...Suggested
RIT Solutions, Inc.
Jacksonville, FL1 day ago $500 per month
Become a Professional Game Tester We're looking for passionate gamers to join our elite team of mobile game testers. Get paid to play and test the latest games before they launch. $500+ Avg Monthly Pay 5-10 Hours/Week 100% Remote Position Requirements: ...Remote work10 hours per weekFlexible hoursBabki
Jacksonville, FL1 day ago- ...will translate user requirements into test strategies, plans, scenarios, and cases. Required Skills : Test Plans/Cases/Scripts,Manual QA Testing Basic Qualification : Additional Skills : QA / Tester,Applications Architect Background Check : No Drug...
Kaav Inc.
Jacksonville, FL1 day ago $50 per hour
...test case management tool Test mobile applications across cellular phones and tablets Someone capable of writing and executing manual tests for web and mobile applications. Ability to understand and create test plans/cases from specifications or verbal...Contract workWork at officeImmediate startMonday to FridayFlexible hoursWeekend workRIT Solutions, Inc.
Jacksonville, FL3 days ago- ...System Test Specialist Required Skills: Test Plans/Cases/Scripts, Manual QA Testing Will execute the testing efforts for technology based business solutions in.NET environments. This testing will apply to stand-alone applications, enhancing current client applications...
Syntricate Technologies
Jacksonville, FL3 days ago - ...projects. This entry-level role is perfect for recent graduates and those changing careers, offering comprehensive paid training in manual and automated testing. After training, job placement assistance is provided with leading U.S. technology companies. Enjoy remote...Remote work
Ace IT Careers
Jacksonville, FL6 days ago - .... Create, execute, and maintain test scenarios, test cases, test data sets, and test scripts to be used in software testing for manual and automated testing. Implement integration and regression tests. Performs regression system testing to ensure that application...
Samprasoft
Jacksonville, FL3 days ago - Chief Information Security Officer (CISO) Organization: Nymbus Location: Fully remote; occasional travel may be required for client meetings and team gatherings. Description: About the job ABOUT NYMBUS: Nymbus is a modern fintech company delivering ...Contract workRemote workNight shift
The Security Executive Council
Jacksonville, FL21 hours ago - Chief Information Security Officer (CISO), Growth About the Company Accomplished provider of top-tier security services Industry Security and Investigations Type Privately Held About the Role The Company is seeking a Chief Information ...
Confidential
Jacksonville, FL1 day ago - Chief Information Security Officer (CISO) About the Company Mission-driven online provider of musculoskeletal therapy Industry Health, Wellness and Fitness Type Privately Held, VC-backed Founded 2015 Employees 501-1000 Funding $200+ million ...
Confidential
Jacksonville, FL1 day ago - A modern fintech company is seeking a Chief Information Security Officer (CISO) to lead their Information Security Program. The ideal candidate will have over 10 years of information security experience in regulated environments, such as banking or fintech. This role is...Remote work
NYMBUS
Jacksonville, FL21 hours ago $141.9k - $286k
...Professionals® (CISSP®); Certified Information Systems Auditor® (CISA®); Certified Information Security Manager® (CISM®); Certified Ethical Hacker (CEH); GIAC certifications or equivalent security certifications • Industry Thought Leadership Excellent written, oral,...Work experience placementInternshipLocal areaRSM Global
Jacksonville, FL3 days ago- Virtual Chief Information Security Officer (CISO) About the Company Flourishing provider of market research & business intelligence services Industry Market Research Type Privately Held About the Role The Company is in need of a Virtual...Part time
Confidential
Jacksonville, FL21 hours ago - ...minimal direction of the assignment supervisor and subject matter experts, this assignment is responsible for developing and executing manual functional tests for new or modified applications/systems in collaboration with other cross functional team members. To ensure the...
Samprasoft
Jacksonville, FL3 days ago - HR Delivered is committed to providing comprehensive human resources solutions to businesses, ensuring they operate smoothly while maintaining compliance with regulations. We are seeking a System Analyst to join our team. The System Analyst is responsible for providing...
HRDelivered
Jacksonville, FL6 days ago - A leading fintech company is seeking a Chief Information Security Officer (CISO) to lead and enhance its enterprise security program. This fully remote role involves participating in strategic decision-making, overseeing the security team, and ensuring compliance with banking...Remote work
The Security Executive Council
Jacksonville, FL21 hours ago - Title: Network Data Analyst Location: Jacksonville FL Duration: 12 Months Contract (Possible Extension or Hire) Job Description: As part of a technical group within Client's Cyber Security Department, this position is responsible for ...Contract workRemote work
TriOptus LLC
Jacksonville, FL2 days ago - Title: ICS: Systems Analyst - Wonderware Belong, Connect, Grow, with KBR! Program Summary KBR Government Solutions pioneers comprehensive professional and technical services, enhancing operational preparedness and fostering innovation across diverse domains...Work at officeLocal areaRemote workWorldwideFlexible hours
KBR
Jacksonville, FL21 hours ago - DirectViz Solutions, (DVS) is a rapidly growing government contractor that provides strategic services that meet mission IT needs for government customers. DVS provides innovative information technology solutions to government clients through the knowledge and expertise...For contractorsLocal areaRemote work
DirectViz Solutions
Jacksonville, FL1 day ago - Position Type : Full time Type Of Hire : Experienced (relevant combo of work and education) Education Desired : Bachelor of Accounting Travel Percentage : 1 - 5% Job Description As the world works and lives faster, FIS is leading the way....Full timeWork at office
FIS
Jacksonville, FL1 day ago - Position Title * IT Security Specialist Position Responsibilities IT Security Specialist Location: Jacksonville Florida ( 3 days onsite 2 days remote) Need nearby Candidates ( only W2 required) Responsibilities: • Establish...Remote work
Apex Informatics
Jacksonville, FL1 day ago - Overview: Job Purpose Intercontinental Exchange is looking for a Senior IT Auditor in our Atlanta, GA office. This position will be responsible for developing, leading, and performing information technology (IT) audits and if needed, assisting the Sarbanes-Oxley IT ...Work at office
Intercontinental Exchange
Jacksonville, FL21 hours ago - IT Auditor Senior As the world works and lives faster, FIS is leading the way. Our fintech solutions touch nearly every market, company and person on the planet. Our teams are inclusive and diverse. Our colleagues work together and celebrate together. If you want to...Work at office
Fisglobal
Jacksonville, FL2 days ago - Information Technology Senior Auditor We have openings in various cities across Florida. An Information Technology (IT) Senior Auditor participates in the audit, analysis, and testing of IT controls across all layers of computing environments such as physical, operating...
GovernmentJobs.com
Jacksonville, FL2 days ago $87.7k - $164k
...experience for yourself, and a better working world for all. The exceptional EY experience. It's yours to build. EY focuses on high-ethical standards and integrity among its employees and expects all candidates to demonstrate these qualities. Today’s world is fuelled...Summer holidayLocal areaFlexible hoursEY
Jacksonville, FL21 hours ago$63.94 - $71.94 per hour
Big Data Engineer Genesis10 is currently seeking a Big Data Engineer for an onsite position located in Charlotte, NC, Denver, CO, Jacksonville, FL, and Chicago, IL. This is a 12+ month contract opportunity. Join a passionate, tight-knit, and supportive team as a ...Hourly payContract workWork experience placementGenesis10
Jacksonville, FL2 days ago
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Manual Ethical Hacker. Be the first to apply!
