Data In Motion – Internet (DIM-I) Analyst

can build a successful career with opportunities to learn, grow, and make an impact. Join us!

Job Description:

Bank of America's Global Information Security (GIS) team is seeking a DLP Internet Analyst with a specialization in Data in Motion to support our enterprise-wide insider threat and data protection initiatives. This role is focused on analyzing and triaging internet-based data loss events and enforcing corporate policies that protect customer and employee data, intellectual property, and regulated information. The candidate should possess a high degree of intellectual curiosity and have a strong desire to find and mitigate risks. Candidate will gain experience of operating in a technically complex, fast changing and dynamic environment.

Bank of America GIS encourages career mobility, and this role provides the opportunity to be part of a team where development and advancement is actively supported.

**Role will require covering one out of four weekends to conduct high risk monitoring and supporting 24x7 Follow the Sun activities.

***Candidate must be willing to enroll in Associate Investment Monitoring due to the nature of the role and access.

Key Responsibilities

• Monitor and triage Data in Motion DLP alerts related to internet traffic, including: web uploads (HTTP/S), cloud storage (e.g., M365, AWS & Azure), external file transfers and email with internet-based destinations.

• Analyze behaviors and patterns to distinguish between legitimate business use and policy violations.

• Investigate alerts using multiple internal tools, (e.g., Symantec, Microsoft Purview, Proofpoint), SIEM (e.g., Splunk), proxy logs, and case management platforms.

• Identify process improvement opportunities and possible optimization/automation solutions.

• Document findings, impact, and resolution steps in alignment with Bank of America's incident management and reporting protocols.

• Understand and support trend analyses and metrics on DLP events to support risk reduction and operational transparency.

• Identify and escalate potential policy gaps and enhancements that adapt to changing risk postures

• Awareness of Audit and assessments related to data protection controls.

• Participate in continuous improvement initiatives related to automation, detection logic tuning, and operational playbooks.

Required Qualifications

• 1-3 years of experience in information security or cyber operations, preferably in a large, regulated enterprise.

• Understanding of industry leading Data Loss Prevention technologies.

• Understanding of web and email protocols (e.g., HTTP/S, SMTP), cloud storage systems, and data exfiltration techniques.

• Broad knowledge of information security technologies, techniques, and processes.

• Experience identifying threats, vulnerabilities, and exploitations

• Demonstrates a problem-solving mindset with intellectual curiosity, critical thinking and proactive solutions

• Ability to interpret large volumes of data and identify suspicious behaviors or policy violations.

• Strong communication skills and ability to collaborate across technical and business teams.

Desired Qualifications

• Experience detecting Insider Threats and placing controls within an organization to protect against these threats

• Certifications such as Security+, GIAC GCIH, GCED, CISSP, or equivalent.

• Basic understanding of networking systems, security vulnerabilities, exploits and attacks.

• Familiarity with data classification frameworks and sensitivity labeling (e.g., Titus).

• Good understanding of how SMTP, TCP/IP, HTTP networks function.

• Desired Symantec/Proof Point, Splunk experience.

• Desired experience using McAfee DLP tools.

Skills:

• Cyber Security

• Data Privacy and Protection

• Problem Solving

• Process Management

• Threat Analysis

• Business Acumen

• Data and Trend Analysis

• Interpret Relevant Laws, Rules, and Regulations

• Risk Analytics

• Stakeholder Management

• Access and Identity Management

• Data Governance

• Encryption

• Information Systems Management

• Technology System Assessment

Shift:
1st shift (United States of America)

Hours Per Week:
40

Learn more about this role