Cyber Crime Specialist (Data Analytics exp required) Charlotte, North Carolina;Addison, Texas; Denver, Colorado **To proceed with your application, you must be at least 18 years of age.** Acknowledge Refer a friend **To proceed with your application, you must be at least 18 years of age.** Acknowledge (https://ghr.wd1.myworkdayjobs.com/Lateral-US/job/Charlotte/Cyber-Crime-Specialist--Data-Analytics-exp-required-\_25036120) **Job Description:** At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day. Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve. Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us! **Position Summary:** Our Cybercrime Disruption & Response team within Bank of America’s Cyber Crime Defense function works to continuously strengthen the bank’s cybercrime posture through research, use of threat intelligence, and extensive use of data analysis. This team works with partners throughout the bank to both discover and develop mitigations from threats to help detect, prevent cybercrime and fraud from taking advantage of our customers or infrastructure. The position of Cybercrime Identification Specialist is responsible for analyzing and correlating large data sets to uncover threats and attack techniques under the mentorship of more senior members of the Cybercrime Disruption & Response team. A Cybercrime Identification Specialist will be tasked with collaborating with data science, threat research, and fraud teams to identify opportunities to develop analytical methods to detect advanced threat actors who utilize emerging tactics and techniques. In support of these processes, the role will also include developing and documenting new and innovative threat detection hypotheses to increase the team’s ability to find existing threats that are otherwise going unidentified or unnoticed. External engagement in sharing and collaborating with other members of critical infrastructure will be key in helping fight cybercrime has a whole across the industry. The role will work with all Cybercrime Defense and line of business fraud teams to gain insight into critical security controls and architectural specifics to develop valuable identification strategies and analytics that identify malicious behavior accurately while maintaining a low false positive rate. This role advises on new fraud strategies and controls that may enhance detection or prevent cybercrime that attempt to take advantage of our customers or infrastructure. This role will be a thought leader in the design of cutting-edge detective, preventative, and proactive controls. **Enterprise Role Overview:** Assists with analysis to help advise the enhancement of fraud controls and improvement of proactive security controls to prevent external threat actors from compromising customer information, company information or systems. Conducts research and provides leadership updates regarding advanced attempts/efforts to compromise customers or clients. Provides status updates and recommendations to the leadership team regarding new attack trends, impact of fraud or money laundering. Follows standard practices and procedures in analyzing situations or data. Typically has 1-3 years of relevant experience and will act as an individual contributor. + Maintain an operational understanding of social engineering techniques and tradecraft, including familiarity with latest attack trends + Manage operational risks related to ongoing social engineering disruption and response actions and implement mitigation steps + Review collected technical data to identify potential indicators of threat activity, and evaluate threats for response options + Assess third party communications and motivations, identify social engineering tradecraft and guide response activities + Prepare in-depth threat activity reports detailing social engineering activities, identified indicators, victim identification, and other relevant essential elements of information (EEIs) + Apply active defense models to Deny, Degrade, Disrupt, and Deter (4D) threat actors’ efforts + Ensure latest approved social engineering tradecraft is being employed correctly and legally + Identify novel social engineering tradecraft for inclusion in GIS threat reporting + Coordinate cyber-crime disruption efforts, integrating global teams and operations groups managing complex problem sets + Enable cross-functional stakeholders to identify gaps, develop solutions, and facilitate implementation + Establish trusted relationships with key cross-functional business partners including multiple product teams, regional offices, and support functions + Leverage knowledge of information security principles to mitigate financial crime and cyber-crime related activities + Lead collaboration with peers, industry associations, law enforcement, and other trusted groups + Build strategic partnerships across the company to reduce operational exposure to cyber-crime + Must be comfortable delivering messages across a wide spectrum of individuals having varying degrees of technical understanding + Prepare and present on social engineering threat activities relative to company customers and clients **Required Qualifications:** + **Experience with transactional data and data analytics.** + **3+ years of experience in a technical role in the areas of Fraud detection, Threat hunting. Security Operations, Incident Response, Detection Engineering, DevSecOps, Security Engineering, and/or Cyber Threat Intelligence.** + Direct experience working with various data management systems that include but are not limited to: IBM DB2, SQL Server, Python, Azure Cosmos DB, Hadoop, Teradata, Oracle, MySQL (MariaDB), and MongoDB, + Proficiency in the Python programming language including a solid understanding of object-oriented programming, data classes, test-driven development, performance testing, and continuous integration/development. + Proficiency with various Python data analytics and visualization libraries, frameworks, and tools that include but are not limited to: Pandas, NumPy, scikit-learn, matplotlib, seaborn, d3, and JupyterHub. + Experience explaining complex ideas, methods, processes, and workflows to peers and management. + Ability to drive large projects while dealing with competing requirements, priorities, and needs from across the organization in order to drive results. + Ability to navigate and work effectively across a complex, geographically dispersed organization. + Basic statistical knowledge and reasoning + Experience with OSINT, killchains, social engineering and general methods. This job will be open and accepting applications for a minimum of seven days from the date it was posted. **Shift:** 1st shift (United States of America) **Hours Per Week:** 40 Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates. To view the "Know your Rights" poster, CLICK HERE (https://www.eeoc.gov/sites/default/files/2023-06/22-088\_EEOC\_KnowYourRights6.12.pdf) . View the LA County Fair Chance Ordinance (https://dcba.lacounty.gov/wp-content/uploads/2024/08/FCOE-Official-Notice-Eng-Final-8.30.2024.pdf) . Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy (“Policy”) establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment. Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank’s required accommodation request process before your first day of work. This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.