Post Incident Review Specialist

  • Competitive
  • Chester, England, United Kingdom Chester England GB
  • Permanent, Full time
  • Bank of America Merrill Lynch
  • 17 Jul 18 2018-07-17

Post Incident Review Specialist

Job Description:
Corporate Title: Up to Vice President
Location: Chester
Line of Business: Global Information Security

Do you want to work for an information security team internally that has a positive impact within a global bank? Do you want to have the opportunity to network with senior information security experts?

We are currently recruiting for Post Incident Review Specialist role in Chester where they have a proactive stance within the Bank in relation to Post Incident Review and Problem Management. You will work closely with the Incident Management teams as well as the Security Control Owners in order to perform root-cause-analysis and post incident review. The result of which will be a series of lessons learned as well as actions associated with these. These actions will then be tracked and reported over time along with trends on specific failure types.
This is an exciting team to be part of as you get the opportunity to see the full circle of the process from beginning to end. This means you get to see the impact of your work while talking to many people internally, both technical and non-technical.

What will your responsibilities include?

  • Provide advice to client management with regards to moderate to complex security issues
  • Assists in the review, development, testing and implementation of security plans, products and control techniques
  • Coordinate the reporting of data security incidents and provides technical support to the client and management and staff in risk assessments and implementation of appropriate data security procedures and products
  • Monitors existing and proposed security standard setting groups
  • Identifies and advances changes that will impact information security policy, standards and procedures
  • Executes security controls to prevent hackers from infiltrating company information or jeopardizing e-commerce programs
  • Researches attempted efforts to compromise security protocols.
  • Administers security policies to control access to systems and maintains the company firewall
  • Works on complex problems where analysis of situations or data requires an in-depth evaluation of various factors
  • Exercises judgment within broadly defined practices and policies in selecting methods, techniques, and evaluation criterion for obtaining results
  • Be able to handle multiple meaningful priorities in a fast-paced environment
  • Be to work effectively with technical and non-technical business owners
  • Ability to effectively communicate (verbal and written) with executives and partners in non-technical terms

What skills/competencies will you possess?

Essential skills:
  • Experience in incident response or security operations centre (SOC) experience in a high-demand environment
  • Demonstrable ability to communicate effectively with both technical staff (in technical language) and with business customers (non-technical language)
  • Fluent writing and interpersonal skills in English
  • To be an excellent communicator who can adapt to their audience
  • Ability to work in a good team-orientated environment with a sense of urgency and resilience
  • Demonstrated ability to appropriately utilize delegated authority to influence and direct in a matrix environment.
  • Ability to work in a good team-orientated environment with a sense of urgency and resilience
  • Supportive and can work well as part of a team, as well as independently
  • Analytical ability to identify underlying issues from numerous sources
  • Ability to report trends and patters in a manner consumable for executive team
  • Have a real passion for solving complex problems and motivating team members
  • Security+ certification or GSEC

Desirable Skills:
  • Experience and knowledge of working in the finance sector, linked to information security
  • CISSP and/or GIAC (GCIH, GCFE, GCFA, GCED, GCIA)
  • Network Security experience including PCAP analysis, FW, IDS/IPS
  • Vulnerability Management experience
  • Complex, large enterprise business environment experience a plus

About Bank of America Merrill Lynch

Bank of America is one of the world's leading financial institutions, serving individual consumers, small- and middle-market businesses, large corporations and governments with a full range of financial and risk management products and services. Bank of America Merrill Lynch is the marketing name for the global banking and markets businesses.

The company has had a presence in EMEA since 1922. With offices in 23 countries on three continents, it offers an integrated and comprehensive set of products and services across Global Corporate and Investment Banking, Global Markets and Consumer Card, serving the needs of individual, corporate, institutional and government clients, combining the best of local knowledge and global expertise. Developing solutions for social and environmental challenges is at the core of Bank of America Merrill Lynch's responsibility platform. In more than 90 countries around the world, we partner with employees, clients and stakeholders to help make financial lives better.

Apply

If you're interested in this opportunity please send your details to us by applying online.

Good conduct and sound judgment is crucial to our long term success. It's important that all employees in the organisation understand the expected standards of conduct and how we manage conduct risk. Individual accountability and an ownership mindset are the cornerstones of our Code of Conduct and are at the heart of managing risk well.

We are an equal opportunities employer, and ensure that no applicant is subject to less favourable treatment on the grounds of gender, gender identity, marital status, race, colour, nationality, ethnic or national origins, age, sexual orientation, socio-economic background, responsibilities for dependants, physical or mental disability. The Bank selects candidates for interview based on their skills, qualifications and experience.

As part of our standard hiring process to manage risk, please note background screening checks will be conducted on all hires before commencing employment.