Network Security Engineer - Threat Engineer

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.

One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.

Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.

Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!

Job Description:
This job is responsible for tool and service designs within a technical domain that enable business strategies in accordance with architectural governance, standards and policies. Key responsibilities include creating infrastructure tools and their integration as a service, facilitating deployment of technical solutions by developing templates, playbooks and automation used during implementation. Job expectations include looking for opportunities to improve efficiency when implementing and maintaining tools/services and embracing a culture of innovation and continuous improvement.

Responsibilities:

• Provides subject matter expertise and consulting services on a range of technologies and assists Technical Analysts and Infrastructure Engineers to ensure that technology solutions comply with enterprise system design and engineering standards
• Assists with translating business requirements into technical definitions, reference models, blueprints, and playbooks for deployment in compliance with architecture standards and policies
• Assists in the evaluation of reference models, blueprints and playbooks to ensure they are fit for purpose
• Develops software solutions to address manual and repeatable work or inefficient processes
• Conducts on-site evaluations of third-party products being considered for firm adoption
• Promotes an inclusive and healthy working environment and helps to resolve organizational impediments/blockers
• Contributes to the creation/selection of functional and non-functional product evaluation requirements within and across domains

The Security Transition and Integration Team is seeking a Threat Engineer to support Cybersecurity Release & Deployment (new deployments of Security Systems in support of high-profile projects) and Lifecycle Management Refresh initiatives (Upgrading Hardware and Software to mitigate End-of-Life equipment or Non-Permitted Technologies).

Position Summary

The Threat Engineer candidate will support all technical and strategic initiatives. Responsibilities will be to ensure technical planning and logistics occur to achieve targeted schedules and annual commitment to refresh and build requirements are met, while incurring zero impact to the network. 

The Individual must possess the ability to analyze and understand a variety of existing and evolving business requirements, interface with technology engagement teams and provide best in class Threat solutions that align to meet business and technology requirements.

Candidate will be a strong engineering minded individual with polished collaboration, written, and oral communication skills. Must have a proven track record interacting with various levels of management, clients, and technical team members in delivering technical Threat and Cybersecurity solutions.

This highly dynamic position will require the ability to manage multiple technical project engagements requiring the candidate to be a team player who can also work independently to manage multiple deadlines, priorities and a diverse set of applications and requirements. 

Additional responsibilities include, but are not limited to:

• Adheres to work effort and project close-out practices such as database updates, asset tracking, inventory systems, records retention, and the related systems, tools, and process updates.
• Works with Design Engineering in a “knowledge sharing" capacity in support of adoption of the new technology, systems or process changes. 
• Identify opportunities to improve service delivery and objectively measure the effects of these efforts over time.

Required Qualifications:

• 5+ years of security experience with Threat solutions.
• In depth engineering experience in Threat solutions, including the design, low level engineering, and delivery of new hardware systems for client applications.
• Strong experience with Proxies (ex. SkyHigh or Broadcom).
• Experience building/operating/deploying various Threat platforms including SkyHigh Secure Web Gateway, Broadcom BlueCoat, F5 SSLO, Trellix FireEye.
• Strong attention to detail and ability to follow an existing refined process, while also seeking continual improvements. Assess and advise of solutions to improve processes.
• Strong analytical, problem solving, and organizational skills required.
• Proven ability to effectively collaborate with others, make decisions to initiate action, and adapt to change.
• Ability to work nights and weekends as required to support change activities

Desired Qualifications:

• B.S. degree in Business Management, Computer Science, or equivalent preferred
• Knowledge of DMZ Networking and Cisco Routing/Switching is a plus.
• Security and networking professional certifications highly preferred; ISC2 (CISSP), Cisco (CCNP)
• Bank experience highly recommended.
• Programming skills a plus: sh, Perl, Python, Golang, C, C++.
• Administrator level ability with UNIX (Linux or another variant) is highly desirable.

Skills:

• Analytical Thinking
• Application Development
• Automation
• Production Support
• Risk Management
• Adaptability
• Business Acumen
• DevOps Practices
• Solution Delivery Process
• Solution Design

Shift:

Hours Per Week: