girl looking into her desktop
Back to search results

Cloud Security Engineer - Cyber Security Operations

Denver, Colorado;

Job Description:

Are you passionate about working with the best information security team in the world? Bank of America is hiring top talent to join our team.

The Cyber Security Operations (CSO) function within Global Information Security is responsible for all aspects of threat intelligence and monitoring, application and network security, and insider threat. In addition, the CSO team drives out the enterprise-wide cyber exercise program.

Bank of America is looking for a Cloud Security Engineer to join our Global Information Security (GIS) team. The Cyber Security Defense team in GIS is a true global operations shop with leading edge tools, processes, and people. Bank of America Global Information Security encourages career mobility and this role will provide the opportunity to be part of a team where development and advancement is actively supported.

The ideal candidate must have deep knowledge of security controls, features, and operations for top Cloud providers with the focus on Microsoft Azure and Amazon Web Services as well as deep knowledge of bank security standards and baselines/procedures.  Candidate should have relevant experience to be able to design, build, and operate security controls across multiple cloud providers. The candidate should be intellectually curious about technology and have a strong desire to find and mitigate risks.

This role will partner with GIS leaders to assist with defining the strategy and roadmaps for technology products, service standards, and governance routines that impact the global Corporation. You will be partnering with leadership across the Bank to design controls, governance routines, and service alternatives that improve the firm’s defenses.  You will work collaboratively with multiple major technology teams within Global Technology that research, engineer, test, implement, communicate, monitor, and maintain solutions supporting the Bank’s information security policies and/or procedures. You will utilize your in-depth knowledge and business requirements to design and engineer secure solutions to meet partner teams’ needs

DESIRED SKILLS AND EXPERIENCE:

  • Five (5) or more years relevant Cyber Security experience.
  •  Deep experience in building, configuring, operating and/or securing cloud infrastructure and applications in Azure or AWS, either with native cloud service provider capabilities or 3rd party vendor tools.
  • Experience with Microsoft Defender for Cloud, AWS Cloud Security Hub, or Google Cloud Security
  • Understanding of configuration management, orchestration, and automation tools, such as Terraform, Ansible, Puppet, Chef, SaltStack, or Packer.
  • Deep understanding of Cyber Security control environments and their relationship to zero-trust networks.
  • Experience designing and implementing complex technical solutions.
  •  Deep understanding of networking principles and concepts
  • Experience reviewing applications, infrastructure, and architectural designs to identify threats and vulnerabilities.
  • Understanding of threat frameworks, such as ATT&CK.
  • Understanding of Risk Management principles.
  • Ability to independently assess risks and identify vulnerabilities in infrastructure with an eagerness to suggest new processes, policies, and overall improvements to internal security controls.
  • Deep understanding of Cyber Security Operations
  • A broad knowledge of information security principles and security capabilities
  • Experience in evaluating, recommending, and implementing new and emerging security products and technologies as well as have the important skill to articulate technical limitations and requirements to business and technology partners.
  • Some experience with large on-prem or hybrid-cloud environments deployments.
  • Familiarity with common Information Security and data protection frameworks and standards (i.e. CIS, NIST, MITRE, ITIL, HIPAA, GDPR, PCI DSSS, ISO 270001).
  • Highly organized and motivated self-starter who can deliver results with minimal direction
  • Ability to craft a clear, coherent approach to guide effective program setup, execution, and control Self-motivated individual with the ability to leverage technical skills and correlate data to streamline analysis quickly and effectively.
  • Ability to navigate and collaborate effectively within a geographically complex and dispersed global corporation.
  • Excellent verbal and written communication skills with ability to distill key data points and effectively present information.

PREFERRABLE CERTIFICATIONS

  • CISSP / CISM / Security +
  • Network +
  • Any Cloud-related certification

Job Band:

H5

Shift: 

1st shift (United States of America)

Hours Per Week:

40

Weekly Schedule:

Referral Bonus Amount:

0

Job Description:

Are you passionate about working with the best information security team in the world? Bank of America is hiring top talent to join our team.

The Cyber Security Operations (CSO) function within Global Information Security is responsible for all aspects of threat intelligence and monitoring, application and network security, and insider threat. In addition, the CSO team drives out the enterprise-wide cyber exercise program.

Bank of America is looking for a Cloud Security Engineer to join our Global Information Security (GIS) team. The Cyber Security Defense team in GIS is a true global operations shop with leading edge tools, processes, and people. Bank of America Global Information Security encourages career mobility and this role will provide the opportunity to be part of a team where development and advancement is actively supported.

The ideal candidate must have deep knowledge of security controls, features, and operations for top Cloud providers with the focus on Microsoft Azure and Amazon Web Services as well as deep knowledge of bank security standards and baselines/procedures.  Candidate should have relevant experience to be able to design, build, and operate security controls across multiple cloud providers. The candidate should be intellectually curious about technology and have a strong desire to find and mitigate risks.

This role will partner with GIS leaders to assist with defining the strategy and roadmaps for technology products, service standards, and governance routines that impact the global Corporation. You will be partnering with leadership across the Bank to design controls, governance routines, and service alternatives that improve the firm’s defenses.  You will work collaboratively with multiple major technology teams within Global Technology that research, engineer, test, implement, communicate, monitor, and maintain solutions supporting the Bank’s information security policies and/or procedures. You will utilize your in-depth knowledge and business requirements to design and engineer secure solutions to meet partner teams’ needs

DESIRED SKILLS AND EXPERIENCE:

  • Five (5) or more years relevant Cyber Security experience.
  •  Deep experience in building, configuring, operating and/or securing cloud infrastructure and applications in Azure or AWS, either with native cloud service provider capabilities or 3rd party vendor tools.
  • Experience with Microsoft Defender for Cloud, AWS Cloud Security Hub, or Google Cloud Security
  • Understanding of configuration management, orchestration, and automation tools, such as Terraform, Ansible, Puppet, Chef, SaltStack, or Packer.
  • Deep understanding of Cyber Security control environments and their relationship to zero-trust networks.
  • Experience designing and implementing complex technical solutions.
  •  Deep understanding of networking principles and concepts
  • Experience reviewing applications, infrastructure, and architectural designs to identify threats and vulnerabilities.
  • Understanding of threat frameworks, such as ATT&CK.
  • Understanding of Risk Management principles.
  • Ability to independently assess risks and identify vulnerabilities in infrastructure with an eagerness to suggest new processes, policies, and overall improvements to internal security controls.
  • Deep understanding of Cyber Security Operations
  • A broad knowledge of information security principles and security capabilities
  • Experience in evaluating, recommending, and implementing new and emerging security products and technologies as well as have the important skill to articulate technical limitations and requirements to business and technology partners.
  • Some experience with large on-prem or hybrid-cloud environments deployments.
  • Familiarity with common Information Security and data protection frameworks and standards (i.e. CIS, NIST, MITRE, ITIL, HIPAA, GDPR, PCI DSSS, ISO 270001).
  • Highly organized and motivated self-starter who can deliver results with minimal direction
  • Ability to craft a clear, coherent approach to guide effective program setup, execution, and control Self-motivated individual with the ability to leverage technical skills and correlate data to streamline analysis quickly and effectively.
  • Ability to navigate and collaborate effectively within a geographically complex and dispersed global corporation.
  • Excellent verbal and written communication skills with ability to distill key data points and effectively present information.

PREFERRABLE CERTIFICATIONS

  • CISSP / CISM / Security +
  • Network +
  • Any Cloud-related certification

Shift:

1st shift (United States of America)

Hours Per Week: 

40

Learn more about this role

Full time

JR-22089703

Band: H5

Manages People: No

Travel: No

Manager:

Talent Acquisition Contact:

Adam Waller

Referral Bonus:

0

Colorado pay and benefits information

Colorado pay range:

$86,500 - $139,900 annualized salary, offers to be determined based on experience, education and skill set.

Discretionary incentive eligible

This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.

Benefits

This role is currently benefits eligible. We provide industry-leading benefits, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.