Senior Manual Ethical Hacker
Bank of America
Senior Manual Ethical Hacker
Denver, Colorado;Seattle, Washington; Jacksonville, Florida; Charlotte, North Carolina; Jersey City, New Jersey; Boston, Massachusetts; Washington, District of Columbia; Chicago, Illinois
To proceed with your application, you must be at least 18 years of age.
Acknowledge (
Bank of America employees are required to meet all posting eligibility requirements prior to applying for any new position.
Acknowledge (
Refer a friend
To proceed with your application, you must be at least 18 years of age.
Acknowledge (
Bank of America employees are required to meet all posting eligibility requirements prior to applying for any new position.
Acknowledge (
Job Description:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.
Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.
At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!
Job Description:
Manual Ethical Hacking is part of the Application Development Security Framework Program within Bank of America's Cyber Security Assurance Offensive Security group. The program provides services to assess the security resilience of the bank's applications to malicious hacking activity.
This senior technical role is responsible performing and leading ethical hacking assessments of the bank's technologies, applications, and cyber security controls while adapting testing methods to evolving and emerging threats. Key responsibilities include leading and performing research, understanding the bank's security policies, working with appropriate partners to complete assessments and simulations, identifying misconfigurations and vulnerabilities, and reporting on associated risk. These individuals partner closely with security partners, CIO clients and multiples lines of business. These individuals are expected to perform application security-oriented dynamic and static assessments across a multitude of technologies including web UI, web APIs, mobile and cloud, including associated source code.
Key Responsibilities in order of importance:
Perform assigned analysis of internal and external threats on information systems and predict future threat behavior.
Incorporate threat actors' tactics, techniques, and procedures into offensive security testing to identify high-value vulnerabilities/chained attacks.
Developing Proof-of-concepts for exploitation.
Perform assessments of the security, effectiveness, and practicality of multiple technology systems.
Leverage innovative thinking to help solve problems or introduce new ideas to processes or products applicable to offensive security.
Prepare and present detailed technical information for various media including documents, reports, and notifications.
Provide clear and practical advice regarding managing risks.
Learn and develop advanced technical and leadership skills, mentor Junior and Intermediate assessors in technical tradecraft and soft skills.
Respond to security incidents and provide technical assistance to leadership across the Information Security organization.
Required Skills:
Minimum of 5+ years of professional pentesting, application security or ethical hacking experience, preferably in a large, complex, enterprise environment
Detailed technical knowledge in at least 5 of the following areas:
security engineering
application architecture
authentication and security protocols
application session management
applied cryptography
common communication protocols
mobile frameworks
single sign-on technologies
exploit automation platforms
Web APIs
Cloud environments
LLM security
Mobile application analysis
Able to manually identify and reproduce findings, discuss remediation concepts, develop PoCs for vulnerabilities, use scripting/coding techniques, proficiently execute common penetration testing tools, triage, and support incidents, and produce high value findings
Experience performing manual web application assessments i.e., must be able to simulate a OWASP Top 10 vulnerabilities without the use of tools
Experience performing manual code reviews for security relevant issues
Experience working with DAST and SAST tools to identify vulnerabilities
Knowledge of network and Web related protocols/technologies (e.g., UNIX/LINUX, TCP/IP, Cookies)
Experience with vulnerability assessment tools and penetration testing techniques.
Solid programming/debugging skills, development frameworks, CVE and CWE research/reproduction
Threat Analysis, threat modelling and SBOM analysis
Innovative thinking, threat actor simulation
Technology Systems Assessment
Technical Documentation
Advisory
Desired:
CEH, OSCP/OSCE/OSWE/GXPN/GPEN/GWAPT/GMOB/All Practitioner Certs [Port Swigger BSP Academy]/Cloud Cert(s)/ eWPT; eWPTX; eMAPT [INE Pentester Academy]
Strong programming/scripting skills
Frida
Binary analysis (disassembly skills)
Skills:
Advisory
Innovative Thinking
Technical Documentation
Technology System Assessment
Threat Analysis
Adaptability
Collaboration
Scenario Planning and Analysis
Test Engineering
Written Communications
Attention to Detail
Information Systems Management
Issue Management
Presentation Skills
Prioritization
This job will be open and accepting applications for a minimum of seven days from the date it was posted.
Shift:
1st shift (United States of America)
Hours Per Week:
40
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
View your "Know your Rights ( " poster.
View the LA County Fair Chance Ordinance ( .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank's required accommodation request process before your first day of work.
This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.
- ...validate pre-requisites for each engagement, ensuring all necessary access, documentation, and approvals are in place. Perform manual and automated testing to identify vulnerabilities, misconfigurations, and security weaknesses, leveraging industry-standard tools and...Senior
$200k - $225k
...intelligence ingestion, vulnerability tracking, reporting, and remediation coordination through automation, orchestration, and AI to reduce manual effort and improve response times. Manage and administer technologies associated with threat intelligence collection, aggregation,...SeniorFull timeWork at officeImmediate startFlexible hours- ...Trinnex is searching for a Senior Cyber Security Analyst to join their Security Team in Jersey City, New Jersey. This role focuses on securing the software development lifecycle for critical systems that support water utilities. You will analyze security threats, manage...Senior
- ...Senior Systems Technical Analyst (Integration Focus) Rate: Ideally $70/hr C2C but if you find people way higher still try them Location: Jersey City, NJ (Hybrid) Interview Process: Up to 3, one being onsite/in-person Candidates need to have a technical background...SeniorWork at officeShift work
- Software Development Engineer In Test Dynamic Work schedule - This is 5 days on site a month- in the same week then the remainder of the month is working from home. ( They can fly/drive into the office as well). If your candidate is not open to this please tell them...SeniorTemporary workWork experience placementWork at officeLocal areaWork from homeShift work
- ...Develop test infrastructure and custom automation tools as needed to expand test coverage and enable non-functional testing • Perform manual and automated tests for our website and applications • Prioritize test execution • Find and report defects with detailed,...
$102.17k
...Trinnex delivers value and impact to public sector clients across the country. Job Description Join the Trinnex Security Team as a Senior Cyber Security Analyst, where you will operate at the intersection of cybersecurity and DevSecOps to protect critical software systems...SeniorH1b- Need 11+ Years of Experience Network Data Job Description Expertise of network routing and switching technologies, multicast expertise, public cloud networking, and network hardware. Technical expertise in Cisco platforms including but not limited to Nexus Series (5...SeniorRemote work
- ...Senior Offensive Security Engineer - Pentester Denver, Colorado;Seattle, Washington; Jacksonville, Florida; Charlotte, North Carolina... ...technical knowledge, a deep understanding of threats, and a hacker mentality. You will lead and participate in collaborative, technical...SeniorWork at officeRemote workShift workDay shift
- ...Senior Product Architect Location: Jersey City (Hybrid) There's a need for a Senior Product Architect for Claims & Dispute who can... ...reduction, improved investigator productivity, and reduction in manual handling. Key Skills and Competencies: Deep, hands-on...Senior
$60k - $135k
...and automation scope Perform API testing, data validation, and backend verification Ensure high test coverage and reduce manual testing effort through automation Identify defects proactively and support root cause analysis Drive quality engineering...Minimum wageLocal area$45 - $55 per hour
...to excel in a short timeframe under short sprints Strong problem solving, analytical, communication and documentation skills Manual Testing process SDLC process Testing tools JIRA, ALM Essential Skills: Core Java Selenium Automation Experience...- ...Senior It Project Manager We are seeking an experienced and strategic Senior IT Project Manager to lead and deliver complex initiatives within Capital Markets and Operations technology. The ideal candidate will have a deep understanding of financial services, trading...Senior
- ...analyze problems, define solutions, and articulate those in a clear discernible manner. Connect with all levels of the organization, senior leadership to professional staff Keeps abreast of business, operational, and technology trends that may affect the portfolio and...Senior
- ...appropriate. May manage onshore and offshore teams throughout the project. - 60% 2 - Manages one or multiple project teams and work with Senior IT management to agree on yearly timelines. Determines team member responsibilities and holds individuals accountable. Mentor and...Senior
- ...Let's push the boundaries of what's possible together. As a Senior Director of Software Engineering at JPMorganChase within the Corporate... ...of record to increase straight-through processing and reduce manual touchpoints. Ensure comprehensive audit trails and analytics/...Senior
- ...role is ideal for recent graduates and career changers eager to launch their IT careers. Through comprehensive paid training covering manual and automated testing, API, and CI/CD pipelines, you'll gain the hands-on skills required to succeed. Upon successful completion...Work at officeRemote workFlexible hours
- ...test reports). • Create high-level test scenarios and detailed manual test cases; participate in peer reviews and incorporate feedback... ...transform QA teams. Ability to provide detailed reporting to senior management on implementation progress. Experience in...
- ...give them the tools, autonomy, and scale to build technology that matters - for millions of customers and the global economy. As a Senior Principal Software Engineer at JPMorganChase within Corporate Technology, you will serve as a technical authority driving the...SeniorWork at office
- ...JPMorganChase's global technology community, as well as in partnership with some of the most important technology firms in the world. As a Senior Principal Architect at JPMorganChase within Corporate and Investment Bank Technology, you will spearhead the transformation and...Senior
- ...services. Proficiency in testing WASP TOP 10 and SANS TOP 25 guidelines for enterprise applications using both automated tools and manual assessments. Proficient in security assessment activities (secure design review, source code review & security testing). Strong domain...
$171k - $260k
...enhance, build, and deliver top-notch technology products. As a Senior Lead Software Engineer at JPMorgan Chase within the Commercial... ...adoption and evolution. Automate testing processes and any manual workflows to enhance efficiency and accuracy. Ensure the successful...Senior- ...Job Title: Senior Cloud Engineer Location: Jersey City, NJ - 5 Days onsite role Long Term Project... ...platforms to enable continuous integration and delivery with minimal manual intervention. • Monitoring & Observability Implement comprehensive...Senior
- ...exceptional professionals for this role. JOB DESCRIPTION As a Senior Applied AI/ML Associate within our dynamic team of innovators... ...emerging AI technologies to optimize ETL workflows, reduce manual effort, and enhance overall engineering productivity. Required...Senior
- ...Position Title: Senior Python Developer with GenAI, LLM Location: Jersey City, New Jersey 07310 (5 Days Onsite) Duration: 6 Months... ...Contract to hire) Level - 603 Tech Screening - Glider / Manual Job Description: Proficiency in Python and experience...SeniorContract workCasual work
- ...Senior Engineer, Hardware Location : Hoboken, NJ Division: Technology Department : Engineering Reports to : Hardware Engineering... ...low-level firmware (C, Verilog, VHDL, etc.) Experience with manual board prototyping/refurbing using essential equipment like...SeniorContract workRemote work
$60.4 per hour
...Job Title: Senior QA Automation Engineer Location: Jersey City, NJ / Charlotte, NC Duration: Contract - 12 months Pay Range: $60.40/hr... ...Design, create, and manage test data to support execution. Execute manual and automated tests and record results with clarity and accuracy...SeniorContract work$151.5k - $185k
...range of technologies, platforms, and vendor offerings to drive targeted business outcomes. Develops software solutions to address manual and repeatable work or inefficient processes and contributes to the technology strategy for end‑to‑end engineering solutions and provides...SeniorWork experience placementShift workDay shift- Job Title: Sr Systems Analyst Location: Jersey City Hybrid - Local to NY, NJ, CT Only Duration: Full Time JD This is a BA/Systems Analyst role, but the person needs to be very hands on technical. Programming background. Want an SQL expert. SSIS/SSRS...SeniorFull timeLocal areaImmediate start
- ...Senior Principal Software Engineer We're looking for a tech leader ready to take their career to new heights. Join the ranks of top talent at one of the world's most influential companies. As a Senior Principal Software Engineer at JPMorganChase within the CDAO...Senior
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior Manual Ethical Hacker. Be the first to apply!
- senior robotics software engineer Jersey City, NJ
- senior java software engineer Jersey City, NJ
- senior specialist Jersey City, NJ
- senior product specialist Jersey City, NJ
- senior director clinical development Jersey City, NJ
- senior software test automation engineer Jersey City, NJ
- senior consulting engineer Jersey City, NJ
- senior staff systems engineer Jersey City, NJ
- senior dynamics crm developer Jersey City, NJ
- senior application security Jersey City, NJ


