Vulnerability Remediation Specialist

Job Description:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.
One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We're devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.
Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.
Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!
Job Description:
If you are passionate about security and possess the skills and experience to make a difference, we encourage you to join us in our mission to safeguard our organization's assets and protect against evolving cybersecurity threats. We are seeking a highly skilled and motivated Vulnerability Remediation Senior Specialist to join our dynamic team within Global Information Security's (GIS) Cyber Security Technology team. As the Vulnerability Remediation Specialist, you will support the prioritization and mitigation of security vulnerabilities within our organization's applications, systems, and infrastructure. You will work closely with cross-functional teams to ensure timely remediation of vulnerabilities and enhance our overall security posture.
Key Responsibilities:

• Collaborate with security analysts and engineers to gain a consolidated view of vulnerabilities and thematic issues across various systems and applications and paths to remediation.
• Serve as point of contact for coordinating remediation activities across the Cyber Security Technology team and partnering organizations.
• Communicate effectively with stakeholders to ensure awareness of vulnerabilities and alignment on remediation strategies, as well as timely escalations to senior management.
• Work with Cyber Security Technology and Infrastructure teams to develop comprehensive remediation plans that outline the steps, timelines, and responsibilities for addressing identified vulnerabilities to ensure patches, configuration changes, or other mitigating controls are implemented in a timely manner.
• Monitor progress of remediation efforts and provide regular updates to stakeholders on status of vulnerabilities and remediation activities.
• Continuously improve this function by staying abreast of security threats, vulnerabilities, and best practices in vulnerability management. Proactively identify opportunities to enhance existing processes, tools and workflows to improve the efficiency and effectiveness of vulnerability remediation efforts.

Required Skills:
What:

• 3+ years of experience in one or a combination of risk management, vulnerability management, security assessments, infrastructure, program/project management
• Understanding of common security vulnerabilities, attack vectors and mitigation techniques.
• Familiarity with vulnerability scanning tools.
• Strong analytical and problem-solving skills with the ability to prioritize and manage multiple tasks in a fast-paced environment

How:

• Planful: Thoughtfully setting, proactively managing, and predictably achieving commitments through strategy, process, communication, and delivery.
• Ownership: Acceptance of full responsibility for delivery outcome - "buck stops here" mentality. And collaboratively addressing problems as they arise.
• Connected: Clear orientation and understanding of where you, your team, your work/priorities join with others in a common goal.
• Consistency: Drive toward and adoption of logical, efficient, and sustainable processes and tools to achieve predictable results.
• Accuracy: Achieving business value (as agreed with key stakeholders and control partners) within defined tolerance across measurable parameters (scope, schedule, cost).

Enterprise Overview:
This job is responsible for assessing the bank's technologies, applications, and overall security controls to identify potential risks and vulnerabilities that may impact Bank of America's information security. Key responsibilities include developing a better understanding of Bank of America's Global Information Security policy and relevant cyber security threats to complete security assessments. Job expectations include developing technical subject matter expertise to support partners, and adapting testing methods to emerging cyber security regulations and evolving threats.
Shift:
1st shift (United States of America)
Hours Per Week:
40