girl looking into her desktop
Back to search results

Assistant Vice President / Vice President, Network Security Assurance & Threat Detection SME, Cyber Security Assurance, Global Information Security

Singapore, , Singapore

Job Description:

Your background

Required Skills:

  • 7 to 10 years of experience in Network / Firewall Engineering
  • Advanced knowledge and ability in Splunk Search App Query development, Dashboard creation and Alert generation
  • Experience in Network (Router & Switch) Engineering
  • Working knowledge of Enterprise-grade Firewall Architecture and Engineering best practices

Desired Skills:

  • UNIX Management (i.e. Red Hat, CentOS) Experience (a strong plus)
  • Skybox Management & Compliance Check creation and maintenance (a strong plus)
  • Experience developing Regular Expressions
  • Network Web and App Proxy (i.e. BlueCoat, Palo Alto) Management experience
  • Conceptual understanding of the MITRE ATT&CK Framework
  • Solid programming/debugging skills with proficiency in one or more of the following: Java, JavaScript, HTML, XML, PHP, ASP.NET, AJAX, JSON
  • Strong scripting skills (e.g. Python, Perl, Shell script, JavaScript)
  • Knowledge of a Structured Query Language

Competencies:

  • Ability and willingness to respond to off-hour engagements
  • Exemplary communication (written & verbal) skills to interact with Senior Leaders and non-technical stakeholders
  • Ability to perceive configuration flaws from a threat actor’s point of view
  • Ability to work both independently, and as part of a team, in a very large scale, on an enterprise setting
  • Intellectually curious
  • Ability to learn and apply critical thinking to a variety of situations

Qualifications:

  • BS/MS in Computer Science (or 7 to 10 years relevant work experience)
  • The Following Network Security Qualifications are preferable and a Plus:
    • Cisco Network Certifications (CCNA R&S, CCNA Security, CCNP)
    • CheckPoint Certfications (CCSA, CCSE)
    • Fortinet Certifications (NSE)
    • Offensive Security Certifications (OSCP, OSCE, OSWE)
    • SANS GIAC Certifications (GPEN, GWAPT)
    • Certified Ethical Hacker (CEH)

What you can expect

The Cyber Security Assurance (CSA) Organization is responsible for providing an uncompromised technology and application environment for employees, customers, clients, and shareholders through continuous and comprehensive cyber security testing. CSA consists of multiple broader teams which focus on various technologies, platforms, and stakeholders.

As a Network Security Assurance and Threat Detection SME, you will join a dynamic team of experienced security professionals whom build and manage controls for automated engineering assessments as well as dynamic traffic anomaly detection.

The right candidate will be knowledgeable with network based controls’ (e.g. firewalls, routers) architecture and engineering as well as have working knowledge of vulnerabilities and threat-actor’s tactics, techniques and procedures. The right candidate will be able to effectively communicate to senior leaders and non-technical stakeholders.

What you will do

  • Build traffic-based controls via the Splunk Search App
  • Build and maintain Engineering Compliance checks with the Skybox Security Suite
  • Review and decision (Approve/Deny) Firewall/Router engineering requests
  • Review of engineering implementations for Golden Configuration drift and/or Information Security Policy violations
  • Respond to and Investigate Security events and incidents via Network Security / Management tools and other Systems of Record
  • Respond to and Investigate automated Alerts and drive towards issue closure
  • Partner with DevSecOps team to automate manual processes and strive towards Continuous Improvement

About Bank of America

Our purpose as a firm is to make financial lives better, through the power of every connection. Across the world, we partner with leading corporate and institutional investors through our offices in more than 35 countries. In the U.S. alone, we serve almost all of the Fortune 500 companies and approximately 67 million consumer and small-business clients. We provide a full suite of financial products and services, from banking and investments to asset and risk management. We cover a broad range of asset classes, making us a global leader in corporate and investment banking, sales and trading.

Connecting Asia Pacific to the world

Our Asia Pacific team is spread across 19 cities in 12 markets. We are focused on connecting Asia to the world and the world to Asia, using our global expertise to ensure success is shared between us, our clients and our communities. Our regional footprint covers 12 currencies, more than a dozen languages and five time zones, placing us firmly among the region’s leading financial services companies.

Job Band:

H5

Shift: 

Hours Per Week:

40

Weekly Schedule:

Referral Bonus Amount:

0

Job Description:

Your background

Required Skills:

  • 7 to 10 years of experience in Network / Firewall Engineering
  • Advanced knowledge and ability in Splunk Search App Query development, Dashboard creation and Alert generation
  • Experience in Network (Router & Switch) Engineering
  • Working knowledge of Enterprise-grade Firewall Architecture and Engineering best practices

Desired Skills:

  • UNIX Management (i.e. Red Hat, CentOS) Experience (a strong plus)
  • Skybox Management & Compliance Check creation and maintenance (a strong plus)
  • Experience developing Regular Expressions
  • Network Web and App Proxy (i.e. BlueCoat, Palo Alto) Management experience
  • Conceptual understanding of the MITRE ATT&CK Framework
  • Solid programming/debugging skills with proficiency in one or more of the following: Java, JavaScript, HTML, XML, PHP, ASP.NET, AJAX, JSON
  • Strong scripting skills (e.g. Python, Perl, Shell script, JavaScript)
  • Knowledge of a Structured Query Language

Competencies:

  • Ability and willingness to respond to off-hour engagements
  • Exemplary communication (written & verbal) skills to interact with Senior Leaders and non-technical stakeholders
  • Ability to perceive configuration flaws from a threat actor’s point of view
  • Ability to work both independently, and as part of a team, in a very large scale, on an enterprise setting
  • Intellectually curious
  • Ability to learn and apply critical thinking to a variety of situations

Qualifications:

  • BS/MS in Computer Science (or 7 to 10 years relevant work experience)
  • The Following Network Security Qualifications are preferable and a Plus:
    • Cisco Network Certifications (CCNA R&S, CCNA Security, CCNP)
    • CheckPoint Certfications (CCSA, CCSE)
    • Fortinet Certifications (NSE)
    • Offensive Security Certifications (OSCP, OSCE, OSWE)
    • SANS GIAC Certifications (GPEN, GWAPT)
    • Certified Ethical Hacker (CEH)

What you can expect

The Cyber Security Assurance (CSA) Organization is responsible for providing an uncompromised technology and application environment for employees, customers, clients, and shareholders through continuous and comprehensive cyber security testing. CSA consists of multiple broader teams which focus on various technologies, platforms, and stakeholders.

As a Network Security Assurance and Threat Detection SME, you will join a dynamic team of experienced security professionals whom build and manage controls for automated engineering assessments as well as dynamic traffic anomaly detection.

The right candidate will be knowledgeable with network based controls’ (e.g. firewalls, routers) architecture and engineering as well as have working knowledge of vulnerabilities and threat-actor’s tactics, techniques and procedures. The right candidate will be able to effectively communicate to senior leaders and non-technical stakeholders.

What you will do

  • Build traffic-based controls via the Splunk Search App
  • Build and maintain Engineering Compliance checks with the Skybox Security Suite
  • Review and decision (Approve/Deny) Firewall/Router engineering requests
  • Review of engineering implementations for Golden Configuration drift and/or Information Security Policy violations
  • Respond to and Investigate Security events and incidents via Network Security / Management tools and other Systems of Record
  • Respond to and Investigate automated Alerts and drive towards issue closure
  • Partner with DevSecOps team to automate manual processes and strive towards Continuous Improvement

About Bank of America

Our purpose as a firm is to make financial lives better, through the power of every connection. Across the world, we partner with leading corporate and institutional investors through our offices in more than 35 countries. In the U.S. alone, we serve almost all of the Fortune 500 companies and approximately 67 million consumer and small-business clients. We provide a full suite of financial products and services, from banking and investments to asset and risk management. We cover a broad range of asset classes, making us a global leader in corporate and investment banking, sales and trading.

Connecting Asia Pacific to the world

Our Asia Pacific team is spread across 19 cities in 12 markets. We are focused on connecting Asia to the world and the world to Asia, using our global expertise to ensure success is shared between us, our clients and our communities. Our regional footprint covers 12 currencies, more than a dozen languages and five time zones, placing us firmly among the region’s leading financial services companies.

Learn more about this role

Full time

JR-21033526

Band: H5

Manages People:

Manager:

Talent Acquisition Contact:

Wayne Tan

Referral Bonus:

0

Street Address

Primary Location:
2 HARBOURFRONT PLACE, #02-01, Singapore, 098499