girl looking into her desktop
Back to search results

Sr Analyst - Apps Prog

Mumbai, , India;

Job Description:

Overview (Bank of America overview, BA Continuum India overview, Business Overview)

Bank of America is one of the world’s leading financial institutions, serving individual consumers, small and middle-market businesses and large corporations with a full range of banking, investing, asset management and other financial and risk management products and services. We are committed to attracting and retaining top talent across the globe to ensure our continued success. Along with taking care of our customers, we want to be the best place for people to work and aim at creating a work environment where all employees have the opportunity to achieve their goals.

We are a part of the Global Business Services which delivers technology and operations capabilities to Bank of America lines of business (LOB) and enterprise functions.

Our employees help our customers and clients at every stage of their financial lives, helping them connect to what matters most. This purpose defines and unites us. Every day, we are focused on delivering value, convenience, expertise and innovation for individuals, businesses and institutional investors we serve worldwide.

* BA Continuum is a nonbank subsidiary of Bank of America, part of Global Business Services in the bank.

Process Overview

The Global Information Security (GIS) is responsible for protecting Bank information systems, confidential and proprietary data, and customer information. The team develops the Bank’s Information Security strategy and policy, manages the Information Security program and identifies and addresses vulnerabilities, Develops, deploys and manages a risk-based controls portfolio, Manages and operates a global security operations center that monitors, detects and responds to cybersecurity incidents.

The Cyber Security Technology (CST) function within Global Information Security (GIS) is responsible for technology research and innovation, architecture, engineering, solutions development and deployment, maintenance and support of information technology security controls, along with strategic plan development across the GIS organization.  This role provides the candidate with an opportunity to apply their skills and experience to different initiatives that the application security team is involved in. These opportunities range from proof of concept development, security research and architectural review. The candidate should have excellent communication skills to socialize and collaborate with the internal partners.

Job Description

The successful applicant will be able to adapt their existing knowledge in development and apply application security principals to approach unfamiliar technologies and architectures and produce appropriate recommendations. This role will leverage your previous experience in development within a SDLC framework, performing critical analysis of unfamiliar technologies and applying information security principals to identify recommendations that meet our high standards of information security.

Responsibilities

  • Developing rapid proof of concepts that demonstrate technical solutions to address security-oriented business problems

  • Performing application security reviews with a focus on delivering repeatable and actionable guidance for other developers that will be stored as a reference architecture / design pattern

  • Supporting research into security threats and producing technical recommendations that can be consumed by both our developer community and security teams, through populating our security countermeasure library

  • Support container and web browser extension security scanning activities by partnering with application teams, conducting and (depending on skillset), interpreting / educating others on the meaning of these findings

Requirements

Education: B.E. / B. Tech/M.E. /M. Tech/B.Sc./M.Sc./BCA/MCA (prefer IT/CS specialization)

Certifications, If Any: CISSP Certification (Not mandatory)

Experience Range: 8 – 10 years

Foundational skills:

  • Proficient in either Java / .NET / Python with optional UI / design experience

  • Practical security experience in application security

  • Experience working with findings identified through security scanning tools

  • Knowledge of container and cloud technologies and an awareness of platform specific security considerations

  • Experience working in Agile SCRUM development process and good understanding of various phases of Secure Development Lifecycle

  • Communication skills

  • Attention to detail

Desired skills:

  • Experience in Application Security

  • Experience in Code Review

  • Experience with Security scanning tools

  • Understanding of financial services regulatory and legal environment

Work Timings: General Shift (11:30 a.m. to 08:30 p.m.)

Job Location: Chennai / GIFT City / Gurugram / Hyderabad / Mumbai

Job Band:

H6

Shift: 

Hours Per Week:

45

Weekly Schedule:

Referral Bonus Amount:

0

Job Description:

Overview (Bank of America overview, BA Continuum India overview, Business Overview)

Bank of America is one of the world’s leading financial institutions, serving individual consumers, small and middle-market businesses and large corporations with a full range of banking, investing, asset management and other financial and risk management products and services. We are committed to attracting and retaining top talent across the globe to ensure our continued success. Along with taking care of our customers, we want to be the best place for people to work and aim at creating a work environment where all employees have the opportunity to achieve their goals.

We are a part of the Global Business Services which delivers technology and operations capabilities to Bank of America lines of business (LOB) and enterprise functions.

Our employees help our customers and clients at every stage of their financial lives, helping them connect to what matters most. This purpose defines and unites us. Every day, we are focused on delivering value, convenience, expertise and innovation for individuals, businesses and institutional investors we serve worldwide.

* BA Continuum is a nonbank subsidiary of Bank of America, part of Global Business Services in the bank.

Process Overview

The Global Information Security (GIS) is responsible for protecting Bank information systems, confidential and proprietary data, and customer information. The team develops the Bank’s Information Security strategy and policy, manages the Information Security program and identifies and addresses vulnerabilities, Develops, deploys and manages a risk-based controls portfolio, Manages and operates a global security operations center that monitors, detects and responds to cybersecurity incidents.

The Cyber Security Technology (CST) function within Global Information Security (GIS) is responsible for technology research and innovation, architecture, engineering, solutions development and deployment, maintenance and support of information technology security controls, along with strategic plan development across the GIS organization.  This role provides the candidate with an opportunity to apply their skills and experience to different initiatives that the application security team is involved in. These opportunities range from proof of concept development, security research and architectural review. The candidate should have excellent communication skills to socialize and collaborate with the internal partners.

Job Description

The successful applicant will be able to adapt their existing knowledge in development and apply application security principals to approach unfamiliar technologies and architectures and produce appropriate recommendations. This role will leverage your previous experience in development within a SDLC framework, performing critical analysis of unfamiliar technologies and applying information security principals to identify recommendations that meet our high standards of information security.

Responsibilities

  • Developing rapid proof of concepts that demonstrate technical solutions to address security-oriented business problems

  • Performing application security reviews with a focus on delivering repeatable and actionable guidance for other developers that will be stored as a reference architecture / design pattern

  • Supporting research into security threats and producing technical recommendations that can be consumed by both our developer community and security teams, through populating our security countermeasure library

  • Support container and web browser extension security scanning activities by partnering with application teams, conducting and (depending on skillset), interpreting / educating others on the meaning of these findings

Requirements

Education: B.E. / B. Tech/M.E. /M. Tech/B.Sc./M.Sc./BCA/MCA (prefer IT/CS specialization)

Certifications, If Any: CISSP Certification (Not mandatory)

Experience Range: 8 – 10 years

Foundational skills:

  • Proficient in either Java / .NET / Python with optional UI / design experience

  • Practical security experience in application security

  • Experience working with findings identified through security scanning tools

  • Knowledge of container and cloud technologies and an awareness of platform specific security considerations

  • Experience working in Agile SCRUM development process and good understanding of various phases of Secure Development Lifecycle

  • Communication skills

  • Attention to detail

Desired skills:

  • Experience in Application Security

  • Experience in Code Review

  • Experience with Security scanning tools

  • Understanding of financial services regulatory and legal environment

Work Timings: General Shift (11:30 a.m. to 08:30 p.m.)

Job Location: Chennai / GIFT City / Gurugram / Hyderabad / Mumbai

Learn more about this role

Full time

JR-21013834

Band: H6

Manages People:

Manager:

Talent Acquisition Contact:

Leela Manoj Saidu

Referral Bonus:

0