Cyber Security Analyst (Database Configuration Monitoring)

Bank of America•Washington, DC

1d•Onsite

About The Position

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day. Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve. Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us! Role Description: An individual responsible for leading and maturing configuration monitoring processes for enterprise database platforms. This role ensures database products are securely configured, continuously monitored, and aligned with internal security standards, regulatory requirements, and industry best practices.

Requirements

5+ years knowledge of database security architecture, hardening standards, and configuration requirements.
Experience with configuration management, scanning, and monitoring tools (e.g. Qualys, TrustGuardian, Guardium, Tanium, Ansible)
Ability to identify, assess, prioritize, mitigate and escalate risk.
Effective verbal/written communication to technical, non-technical and Senior-level audiences.
Analytical skills, leveraging Microsoft suite and other tools.
Ability to adapt, and work under pressure and timelines.

Nice To Haves

Familiarity with regulatory and security frameworks (e.g., NIST, CIS, ISO).
Experience automating or streamlining security monitoring processes
Knowledge of SQL Queries, coding/scripting, Infrastructure, Systems and Applications.

Responsibilities

Lead configuration monitoring and compliance for database technologies (e.g., Oracle, SQL Server, MySQL, Sybase, MongoDB etc).
Participate and provide input (as needed) to help define, implement, and maintain secure configuration baselines and control requirements.
Enable and optimize scanning, monitoring, and alerting capabilities for database configurations.
Analyze scan results, understand misconfigurations, and support remediation efforts.
Partner with database, infrastructure, and engineering teams to embed security controls into build and operational processes (shift-left mindset).
Support risk assessments, audits, and regulatory inquiries related to database security posture.