Job Description:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.
One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.
Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.
Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!
Role Description:
Enterprise Model Risk Management seeks a Senior Quantitative Finance Analyst specialized in Information Security (InfoSec) and Technology to conduct independent review and testing of complex models used to identify, monitor and mitigate cybersecurity risks including malware and other malicious/anomalous behaviors. The candidate should exhibit familiarity with endpoint detect and prevention (EDR), network security, identity and access management (IAM), OS events, vulnerability management and other cybersecurity domains. The candidate should have broad understanding of tools and models used to aid core technology, employee experience and data management. The candidate should be able to provide both thought leadership and hands-on expertise in methodology, techniques, and processes in applying statistical, artificial intelligence (AI) and machine learning (ML) models to manage the bank’s Information Security and Technology risk.
The position will be responsible for:
• Performing all model validation tasks including but not limited to independent model validation, annual model review, ongoing monitoring report review, required action item review, and peer review.
• Conducting governance activities such as model identification, model approval and breach remediation reviews to manage model risk.
• Providing hands-on leadership for projects pertaining to statistical modeling and AI/ML approaches; and providing methodological, analytical, and technical support to effectively challenge and influence the strategic direction and tactical approaches of these projects.
• Communicating and working directly with relevant modeling teams and their corresponding Front Line Units (Global Information Security / Technology); and if needed, communicating and interacting with the third line of defense (e.g., internal audit) as well as external regulators.
• Writing technical reports for distribution and presentation to model developers, senior management, audit, and banking regulators.
• Acts as a senior level resource or resident expert on analytic/quantitative modeling techniques used for managing Information Security risk and Technology risk.
Minimum Education Requirement: Master’s degree in related field or equivalent work experience
Required Qualifications & Skills:
• PhD or Masters in a quantitative field such as Computer Science, Engineering, Mathematics, Physics, or Statistics.
• Strong knowledge of Information Security best practices, principles, technologies, associated risks and attack vectors.
• Previous experience in Technology and Cyber Security across multiple incident or privacy disciplines.
• Professional Infrastructure domain experience within Risk, CTO, and/or Global Information Security.
• Strong knowledge of the NIST Cybersecurity Framework.
• Advanced understanding of security threats, vulnerabilities, exploits, attack vectors, malware, and digital forensics. Certificates in cybersecurity risk such as CISSP, Security+, CRISC, CISM will be a plus.
• Strong knowledge of tools and models used to aid core technology, employee experience and data management.
• Solid 3+ years of experience and knowledge with AI/ML and statistical modeling techniques, applying AI/ML techniques such as neural networks, random forest, GBM, SVM, Graphical models.
• Hands-on experience with deep learning architectures using open-source toolkits in Python, PySpark, PyTorch.
• Fluency with SQL on one or more relational databases such as Microsoft SQL Server, MySQL, Postgres or Oracle is a plus. Understanding of the Hadoop platform (e.g., MapReduce, Hive, Impala, Spark, Flume, Kafka) and related Big Data technologies will also be a plus.
• Excellent written and oral communication with stakeholders of varying analytic skills and knowledge levels.
• Critical thinking and ability to independently and proactively identify/suggest/resolve issues.
• Motivated to continuously research and share latest information security threats and trends to keep up with advancements.
Shift:
1st shift (United States of America)Hours Per Week:
40Pay Transparency details
US - NJ - Jersey City - 525 Washington Blvd (NJ2525)Pay and benefits informationPay range$125,000.00 - $210,000.00 annualized salary, offers to be determined based on experience, education and skill set.Discretionary incentive eligibleThis role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.BenefitsThis role is currently benefits eligible. We provide industry-leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.