Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.

Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.

At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!

Job Description:

Global Information Security (GIS) is responsible for protecting bank information systems, confidential and proprietary data, and customer information. GIS develops the bank’s Information Security strategy and policy, manages the Information Security program, identifies and addresses vulnerabilities and operates a global security operations center that monitors, detects, and responds to cybersecurity incidents

Role Description:

We are seeking a cybersecurity domain expert to lead as a Senior Technology Manager to design, develop, and deploy technology supporting Detection and Response activities for various Cyber Defense and Security Operations Teams. This role requires an innovative leader who can blend enterprise cybersecurity expertise with user to create seamless, scalable, and highly effective security operations platforms.

As the development lead, you will drive the strategic vision for a multi environment platform that integrates security tools, telemetry, automation, and analytics into a unified experience. You will collaborate closely with SOC analysts, threat hunters, incident responders, and security engineers to ensure that the interface meets operational needs while reducing friction and improving response times.

Skills

Deep expertise in cybersecurity operations, threat detection, and incident response workflows. Proven experience designing and deploying platforms that integrate SIEM, SOAR, TIP, EDR, and cloud-native telemetryStrong understanding of federated data access, log normalization, and real-time streaming (e.g., Cribl, Kafka)Familiarity with LLM orchestration frameworks (e.g., LangChain, LlamaIndex) and AI/ML-driven analyticsExperience with advanced SOAR Playbooks and/or AI Agents.Experience with data modeling, schema mapping, and field correlation across hybrid/multi-cloud environmentsStrong interpersonal and executive communication skills; ability to translate technical vision into business valueDemonstrated ability to lead cross-functional teams of engineers, data scientists, and security analystsExperience with agile development, DevSecOps, and secure software lifecycle practicesExperience developing technology for MDR, or other large scale cybersecurity platform software providers.

Roles & Responsibilities

Partner to lead the development of an AI-augmented threat hunting and security operations platform that unifies telemetry, automation, and analyticsArchitect and oversee the integration of federated data sources across cloud, on-prem, and legacy environmentsCollaborate with cybersecurity teams and engineering teams to define use cases for LLMs in threat detection, log correlation, and contextual enrichmentDrive the implementation of a modular, scalable platform that supports real-time streaming, historical search, and AI-assisted investigationChampion the use of structured data models and field taxonomies (e.g., OCSF, ECS) to enable semantic search and automationIntegrate LLMs to support use cases such as data cataloging, field mapping, log summarization, and hypothesis-driven huntingEstablish performance metrics and feedback loops to continuously improve platform usability, detection efficacy, and analyst productivityPartner with SOAR teams to develop agent-based playbooks for automated context gathering and responseEnsure platform security, compliance, and auditability across all integrated components

Required Qualifications:

10+ years of experience in cybersecurity engineering, threat detection, or security platform development7+ years of leadership experience managing cross-functional technical teamsStrong background in building or integrating security data platforms (e.g., Splunk, Elastic, Chronicle, Snowflake, Anvilogic)Experience with cloud-native security architectures (AWS, Azure, GCP) and hybrid infrastructureFamiliarity with LLMs, vector databases, and AI/ML pipelines for security use casesHands-on experience with log streaming, data normalization, and federated search technologies (e.g., Cribl, Trino, Anvilogic)Deep understanding of SOC workflows, threat hunting methodologies, and MITRE ATT&CK frameworkExperience with API-based integrations, open-source security tooling, and secure platform designSecure Coding experience.

Managerial Responsibilities:
This position may also have responsibilities for managing associates. At Bank of America, all managers at this level demonstrate the following responsibilities, in addition to those specific to the role, listed above.

Opportunity & Inclusion Champion: Models an inclusive environment for employees and clients, aligned to company Great Place to Work goals.Manager of Process & Data: Demonstrates deep process knowledge, operational excellence and innovation through a focus on simplicity, data based decision making and continuous improvement.Enterprise Advocate & Communicator: Communicates enterprise decisions, purpose, and results, and connects to team strategy, priorities and contributions.Risk Manager: Ensures proper risk discipline, controls and culture are in place to identify, escalate and debate issues.People Manager & Coach: Provides inspection, coaching and feedback to motivate, differentiate and improve performance.Financial Steward: Actively manages expenses and budgets in alignment with objectives, making sound financial decisions.Enterprise Talent Leader: Assesses talent and builds bench strength for roles across the organization.Driver of Business Outcomes: Delivers results by effectively prioritizing, inspecting and appropriately delegating team work.

Skills:

InfluenceRisk ManagementSolution DesignStakeholder ManagementTechnical Strategy DevelopmentAnalytical ThinkingApplication DevelopmentCollaborationResult OrientationSolution Delivery ProcessAgile PracticesArchitectureAutomationData ManagementDevOps Practices

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

Shift:

1st shift (United States of America)

Hours Per Week: 

40