{"schemaVersion":"jobsearcher.job.v1","id":"2df1886e79e8f0f7372dd96a","url":"https://jobsearcher.com/jobs/2df1886e79e8f0f7372dd96a","canonicalUrl":"https://jobsearcher.com/jobs/2df1886e79e8f0f7372dd96a","title":"Evaluation Analyst","description":"Job Overview\nThe Global Information Security organization (GIS) at Bank of America protects bank information systems, confidential and proprietary data, and customer information. The Cyber Threat Evaluation and Prevention Team (CTEP) assesses threats and emerging risks, evaluates cyber security controls, and defines observations to remediate risks.\n\nThe Role\nEvaluation Analyst plays an essential role in the Cyber Threat Defense Framework. The CTEP Evaluation Analyst conducts evaluations of threats and incidents, identifies opportunities for process and control enhancements, and supports decision-making to improve the bank’s defense posture. The analyst engages with subject‑matter experts and control owners, performs independent research using various applications and tools, documents details on the threats and the bank’s defensive posture, and completes a Quality Assurance (QA) review to ensure all threats are comprehensive, complete, and accurate.\n\nResponsibilities\n\nAnalyze threats and incidents sourced from GIS partner teams to identify and triage process and control weaknesses in the context of emerging risks.\n\nDocument defensive posture, process and control weaknesses, and overall risk for each threat.\n\nReview threats and incidents holistically to identify broad themes and strategic issues, enabling GIS to protect against cyber threats effectively and proactively.\n\nPerform QA reviews, ensuring all threat analyses are comprehensive, complete, and accurate.\n\nReview threats identified from internal and external intelligence sources, cyber incidents and events managed at the Bank (e.g., third‑party incidents), and threat‑based assessments conducted by GIS teams (e.g., Red Team).\n\nRequired Qualifications\n\nStrong technical writing capabilities; writing technical content in a broadly consumable format.\n\nFunctional knowledge of information security, IT infrastructure, and risk management.\n\nAbility to prioritize and manage time effectively and work independently with minimal direction.\n\nKnowledge of Cyber Industry Frameworks such as MITRE/NIST.\n\nStrategic thinking and attention to detail – ability to think \"like a threat actor.\"\n\nProficient computer/analytics skills – esp. Jira, Excel, Word, Power Point, Alteryx, etc.\n\nGeneral understanding of bank policies – data and privacy, third parties, incident management, vulnerability management, etc.\n\nDesired Qualifications\n\nExperience with cyber threat intelligence collection, analysis, and reporting.\n\nExperience responding to and managing security incidents and events.\n\nExperience creating, executing, and documenting assessments and exercises in JIRA.\n\nSkills\n\nCritical Thinking\n\nCustomer and Client Focus\n\nInformation Systems Management\n\nProblem Solving\n\nThreat Analysis\n\nCyber Security\n\nPolicies, Procedures, and Guidelines Management\n\nQuality Assurance\n\nRisk Analytics\n\nTechnology System Assessment\n\nBusiness Acumen\n\nBusiness Intelligence\n\nData Privacy and Protection\n\nData and Trend Analysis\n\nStakeholder Management\n\nShift\n1st shift (United States of America)\n\nHours Per Week\n40\n\nPay Range\n$100,000.00 - $141,300.00 annualized salary, offers to be determined based on experience, education and skill set.\n\nBenefits\nThis role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.\n\nThis role is currently benefits eligible. We provide industry‑leading benefits, access to paid time off, resources and support so employees can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.\n\n#J-18808-Ljbffr","company":"Koitecc Solutions","rawCompany":"koitecc solutions","city":"Washington","state":"DC","isRemote":false,"isActive":false,"createdAt":"2026-07-04T03:46:45.955Z","occupations":[{"code":"15-1212.00","title":"Information Security Analysts","slug":"information-security-analysts"},{"code":"33-3021.06","title":"Intelligence Analysts","slug":"intelligence-analysts"},{"code":"15-1211.00","title":"Computer Systems Analysts","slug":"computer-systems-analysts"}],"industries":[{"code":"541512","title":"Computer Systems Design Services","slug":"computer-systems-design-services"},{"code":"541690","title":"Other Scientific and Technical Consulting Services","slug":"other-scientific-and-technical-consulting-services"},{"code":"522110","title":"Commercial Banking","slug":"commercial-banking"}],"jobPosting":{"@context":"https://schema.org","@type":"JobPosting","title":"Evaluation Analyst","description":"Job Overview\nThe Global Information Security organization (GIS) at Bank of America protects bank information systems, confidential and proprietary data, and customer information. The Cyber Threat Evaluation and Prevention Team (CTEP) assesses threats and emerging risks, evaluates cyber security controls, and defines observations to remediate risks.\n\nThe Role\nEvaluation Analyst plays an essential role in the Cyber Threat Defense Framework. The CTEP Evaluation Analyst conducts evaluations of threats and incidents, identifies opportunities for process and control enhancements, and supports decision-making to improve the bank’s defense posture. The analyst engages with subject‑matter experts and control owners, performs independent research using various applications and tools, documents details on the threats and the bank’s defensive posture, and completes a Quality Assurance (QA) review to ensure all threats are comprehensive, complete, and accurate.\n\nResponsibilities\n\nAnalyze threats and incidents sourced from GIS partner teams to identify and triage process and control weaknesses in the context of emerging risks.\n\nDocument defensive posture, process and control weaknesses, and overall risk for each threat.\n\nReview threats and incidents holistically to identify broad themes and strategic issues, enabling GIS to protect against cyber threats effectively and proactively.\n\nPerform QA reviews, ensuring all threat analyses are comprehensive, complete, and accurate.\n\nReview threats identified from internal and external intelligence sources, cyber incidents and events managed at the Bank (e.g., third‑party incidents), and threat‑based assessments conducted by GIS teams (e.g., Red Team).\n\nRequired Qualifications\n\nStrong technical writing capabilities; writing technical content in a broadly consumable format.\n\nFunctional knowledge of information security, IT infrastructure, and risk management.\n\nAbility to prioritize and manage time effectively and work independently with minimal direction.\n\nKnowledge of Cyber Industry Frameworks such as MITRE/NIST.\n\nStrategic thinking and attention to detail – ability to think \"like a threat actor.\"\n\nProficient computer/analytics skills – esp. Jira, Excel, Word, Power Point, Alteryx, etc.\n\nGeneral understanding of bank policies – data and privacy, third parties, incident management, vulnerability management, etc.\n\nDesired Qualifications\n\nExperience with cyber threat intelligence collection, analysis, and reporting.\n\nExperience responding to and managing security incidents and events.\n\nExperience creating, executing, and documenting assessments and exercises in JIRA.\n\nSkills\n\nCritical Thinking\n\nCustomer and Client Focus\n\nInformation Systems Management\n\nProblem Solving\n\nThreat Analysis\n\nCyber Security\n\nPolicies, Procedures, and Guidelines Management\n\nQuality Assurance\n\nRisk Analytics\n\nTechnology System Assessment\n\nBusiness Acumen\n\nBusiness Intelligence\n\nData Privacy and Protection\n\nData and Trend Analysis\n\nStakeholder Management\n\nShift\n1st shift (United States of America)\n\nHours Per Week\n40\n\nPay Range\n$100,000.00 - $141,300.00 annualized salary, offers to be determined based on experience, education and skill set.\n\nBenefits\nThis role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.\n\nThis role is currently benefits eligible. We provide industry‑leading benefits, access to paid time off, resources and support so employees can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.\n\n#J-18808-Ljbffr","datePosted":"2026-07-04T03:46:45.955Z","dateModified":"2026-07-04T03:46:45.955Z","hiringOrganization":{"@type":"Organization","name":"Koitecc Solutions","sameAs":"https://jobsearcher.com"},"jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Washington","addressRegion":"DC","addressCountry":"US"}},"identifier":{"@type":"PropertyValue","name":"JobSearcher","value":"2df1886e79e8f0f7372dd96a"},"url":"https://jobsearcher.com/jobs/2df1886e79e8f0f7372dd96a"}}