52 applicants
Bank of America · 2 days ago
Manual Ethical Hacker
Jersey City, NJ
Full-time
Onsite
Mid Level
4+ years exp
Wonder how qualified you are to the job?
Maximize your interview chancesAsset ManagementBanking
Insider Connection @Bank of America
Responsibilities
Understanding the requirements of the applications and how to use it
Testing applications using a variety of tools to identify vulnerabilities that could expose the Bank to risk
Monitoring existing and proposed security standard setting groups
Conducting meetings to communicate the findings and implications and set realistic timescales for remediation
Providing technical support to clients, management and staff throughout risk assessments and the implementation of appropriate data security procedures and products
Acting as a SME, providing guidance and knowledge to reduce the vulnerabilities and risk when apps are being created
Sharing knowledge with technical and non-technical colleagues through training sessions
Risk management
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
Minimum of 4+ years of professional experience
Expert level experience and very detailed technical knowledge in at least 3 of the following areas: general information security; security engineering; application architecture; authentication and security protocols; applications session management; applied cryptography; common communication protocols; mobile frameworks; single sign-on technologies; exploit automation platforms; RESTful web services
Able to manually identify and reproduce findings, discuss remediation concepts, develop PoCs for vulnerabilities, can use scripting/coding techniques, proficiently execute common penetration testing tools, triage and support incidents, and produce high-value findings
One or more of the following certifications (desirable): CISSP, CJEH, OSCP or qualified work experience
Technical expertise in conducting web application ethical hacking assessments.
Ability to demonstrate manual web application testing experience i.e. must be able to simulate a SQL inject/Cross-site script attack without the use of tools
Knowledge of network and Web related protocols/technologies (e.g. UNIX/LINUX, TCP/IP, Cookies)
Experience with vulnerability assessment tools and penetration testing techniques
Solid programming/debugging skills
Experience of using a variety of tools, included, but not limited to, IBM AppScan, Burp and SQL Map
Strong scripting skills desirable
Ability to learn and apply critical thinking in a variety of situations
Effective written and oral communication skills
Ability to multi task and handle multiple projects
Benefits
Competitive benefits to support physical, emotional, and financial well-being
Company
Bank of America
Bank of America is a financial institution that offers credit cards, home loans, and auto loan services.
10,001+ employees
H1B Sponsorship
Bank of America has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Trends of Total Sponsorships
2023 (422)
2022 (766)
2021 (728)
2020 (930)
Funding
Current Stage
Public CompanyTotal Funding
$1.2BKey Investors
Berkshire Hathaway
2020-07-28Post Ipo Equity· $400M
2020-07-23Post Ipo Equity· $800M
2018-12-17Post Ipo Equity· Undisclosed
Leadership Team
M
Michael Joo
COO, Global Corporate & Investment Banking
Aniko DeLaney
SVP, Head of Ultra High Net Worth Marketing
Recent News
2024-05-14
2024-04-30
Company data provided by crunchbase
