Senior Manual Ethical Hacker jobs in United States
cer-icon
Apply on Employer Site
company-logo

Bank of America · 1 day ago

Senior Manual Ethical Hacker

positionJersey City
timeFull-time
remoteOnsite
senioritySenior Level
money$160K/yr - $205K/yr
date5+ years exp

Bank of America is committed to helping make financial lives better through the power of every connection. The Senior Manual Ethical Hacker role is responsible for leading ethical hacking assessments of the bank's technologies and applications to identify vulnerabilities and report on associated risks.

Asset ManagementBankingFinanceFinancial ServicesFinTech
check
H1B Sponsor Likelynote

Responsibilities

Perform assigned analysis of internal and external threats on information systems and predict future threat behavior
Incorporate threat actors' tactics, techniques, and procedures into offensive security testing to identify high-value vulnerabilities/chained attacks
Developing Proof-of-concepts for exploitation
Perform assessments of the security, effectiveness, and practicality of multiple technology systems
Leverage innovative thinking to help solve problems or introduce new ideas to processes or products applicable to offensive security
Prepare and present detailed technical information for various media including documents, reports, and notifications
Provide clear and practical advice regarding managing risks
Learn and develop advanced technical and leadership skills, mentor Junior and Intermediate assessors in technical tradecraft and soft skills
Respond to security incidents and provide technical assistance to leadership across the Information Security organization

Qualification

PentestingApplication SecurityEthical HackingThreat AnalysisTechnical DocumentationSecurity EngineeringWeb APIsCloud EnvironmentsProgramming SkillsInnovative ThinkingAdvisoryCollaborationAttention to DetailWritten Communications

Required

Minimum of 5+ years of professional pentesting, application security or ethical hacking experience, preferably in a large, complex, enterprise environment
Detailed technical knowledge in at least 5 of the following areas: security engineering, application architecture, authentication and security protocols, application session management, applied cryptography, common communication protocols, mobile frameworks, single sign-on technologies, exploit automation platforms, Web APIs, Cloud environments, LLM security, Mobile application analysis
Able to manually identify and reproduce findings, discuss remediation concepts, develop PoCs for vulnerabilities, use scripting/coding techniques, proficiently execute common penetration testing tools, triage, and support incidents, and produce high value findings
Experience performing manual web application assessments i.e., must be able to simulate a OWASP Top 10 vulnerabilities without the use of tools
Experience performing manual code reviews for security relevant issues
Experience working with DAST and SAST tools to identify vulnerabilities
Knowledge of network and Web related protocols/technologies (e.g., UNIX/LINUX, TCP/IP, Cookies)
Experience with vulnerability assessment tools and penetration testing techniques
Solid programming/debugging skills, development frameworks, CVE and CWE research/reproduction
Threat Analysis, threat modelling and SBOM analysis
Innovative thinking, threat actor simulation
Technology Systems Assessment
Technical Documentation
Advisory

Preferred

CEH, OSCP/OSCE/OSWE/GXPN/GPEN/GWAPT/GMOB/All Practitioner Certs [Port Swigger BSP Academy]/Cloud Cert(s)/ eWPT; eWPTX; eMAPT [INE Pentester Academy]
Strong programming/scripting skills
Frida
Binary analysis (disassembly skills)

Benefits

Discretionary incentive eligible
This role is currently benefits eligible.
We provide industry-leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.

Company

Bank of America

twittertwittertwitter
Glassdoor3.9
company-logo
Bank of America is a financial institution that offers credit cards, home loans, and auto loan services.
dateFounded in 1998
location
Charlotte, North Carolina, USA
people-size10001+ employees
web-link
https://www.bankofamerica.com

H1B Sponsorship

Bank of America has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (780)
2024 (546)
2023 (590)
2022 (759)
2021 (715)
2020 (931)

Funding

Current Stage
Public Company
Total Funding
$3.59B
Key Investors
Berkshire Hathaway
2025-02-20Post Ipo Debt· $386.79M
2024-11-26Post Ipo Debt· $2B
2020-07-28Post Ipo Equity· $400M

Leadership Team

leader-logo
Charissa Messer
Senior Vice President, Creative Agency Executive (Enterprise Creative Solutions)
linkedin
leader-logo
Rami Salem
SVP Strategic Competitive Intelligence
linkedin

Recent News

semafor.com
Exclusive / Little evidence of US slowdown, says BofA’s Moynihan
2026-01-22
Business Wire
Installed Building Products Announces Closing of $500 Million Notes Offering and an Amended and Increased $375 Million ABL Revolving Credit Facility
2026-01-22
PYMNTS.com
President Trump Takes Affordability Fight to Davos
2026-01-22
Company data provided by crunchbase