Cyber Security Analyst (Unix/Linux Configuration Monitoring required)

Bank of America•Washington, DC

1d•Onsite

About The Position

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day. Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve. Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us! Seeking a Cybersecurity Analyst with strong Unix/Linux expertise to support configuration security monitoring across the enterprise environments. This role focuses on implementing configuration monitoring controls aligned with internal security standards, regulatory requirements, and industry best practices; operating scanning tools, analyzing results, and partnering with technical teams to ensure Unix/Linux products are securely configured, continuously monitored and is able to support timely remediation of security findings.

Requirements

3+ years experience with strong knowledge and conceptual understanding of Unix/Linux OS products, platforms, security architecture, hardening standards, and configuration requirements (e.g., RHEL, Ubuntu, Debian, AIX, Solaris, SUSE, CentOS, Oracle)
Experience with configuration management, scanning, and monitoring tools (e.g. Qualys, TrustGuardian, Tanium, Ansible, Tenable)
Ability to identify, assess, prioritize, mitigate and escalate risk.
Effective verbal/written communication to technical, non-technical and Senior-level audiences.
Critical and analytical skills, leveraging Microsoft suite and other tools.
Self-starter, with ability to adapt, and work under pressure and timelines.

Nice To Haves

Familiarity with regulatory and security frameworks (e.g., NIST, CIS, ISO).
Experience automating or streamlining security monitoring processes
Knowledge of SQL Queries, coding/scripting, Infrastructure, Systems and Application.

Responsibilities

Implement and maintain configuration monitoring controls for Unix/Linux systems using scanning tools.
Participate and provide input (as needed) to help define, implement, and maintain secure configuration baselines and control requirements.
Enable and optimize scanning, monitoring, and alerting capabilities for Unix/Linux configurations.
Analyze scan results, understand misconfigurations, and support remediation efforts.
Partner with Unix/Linux infrastructure, and engineering teams to embed security controls into build and operational processes (shift-left mindset).
Support risk assessments, audits, and regulatory inquiries related to Unix/Linux security posture.
Ensure assigned support tickets are dispositioned timely and effectively.