• Find preferred job with Jobstinger
  • ID
    #43992294
  • Job type
    Permanent
  • Salary
    TBD
  • Source
    Bank Of America
  • Date
    2022-07-09
  • Deadline
    2022-09-07

Vacancy expired!

Job Description:

Are you passionate about working with the best information security team in the world? Bank of America is hiring top talent to join our team.

The Cyber Security Defense (CSD) function within Global Information Security is responsible for all aspects of threat intelligence and monitoring, application and network security, and insider threat. In addition, the CSD team drives out the enterprise-wide cyber exercise program.

Bank of America is looking for a Senior Cloud Security Engineer to join our Global Information Security (GIS) team. The ideal candidate must have deep knowledge of Data Loss Prevention (DLP) techniques, security controls, features, and operations for top Cloud providers with the focus on Microsoft Azure and Amazon Web Services. Candidate should have relevant experience to be able to design, build, and operate DLP related controls across multiple cloud providers. The candidate should be intellectually curious about technology and have a strong desire to find and mitigate risks.

This role will partner with GIS senior leaders to assist with defining the strategy and roadmaps for technology products, service standards, and governance routines that impact the global Corporation. You will be partnering with leadership across the Bank to design controls, governance routines, and service alternatives that improve the firm's defenses.

You may direct multiple major technology teams within Global Technology that research, engineer, test, implement, communicate, monitor, and maintain solutions supporting the Bank's information security policies and/or procedures. You will utilize your in-depth knowledge and business requirements to design and engineer secure solutions to meet partner teams' needs, or to address critical audit findings while protecting the Bank's data assets.

DESIRED SKILLS AND EXPERIENCE:
  • Five (5) or more years relevant Cyber Security experience
  • Bachelor's or Master's Degree in Computer Science, Information Systems, Cyber Security, or related
  • Industry knowledge of leading DLP and CASB solutions
  • Deep understanding of data classification principles
  • Understanding of cross-border data movement principles and concepts.
  • Understanding of threat modeling
  • Background in network traffic analysis to detect abnormal traffic patterns
  • Experience designing and implementing complex technical solutions
  • Deep understanding of networking principles and concepts
  • Experience reviewing applications, infrastructure, and architectural designs to identify threats and vulnerabilities
  • Ability to review DLP rules / processes and make recommendations for enhancements
  • Experience with Microsoft Defender for Cloud, AWS Cloud Security Hub, or Google Cloud Security
  • Deep understanding of Cyber Security control environments and their relationship to zero-trust networks
  • Understanding of threat frameworks, such as ATT&CK
  • Understanding of Risk Management principles
  • Deep experience in building, configuring, operating and/or securing cloud infrastructure and applications in Azure or AWS, either with native cloud service provider capabilities or 3rd party vendor tools
  • Ability to independently assess risks and identify vulnerabilities in infrastructure with an eagerness to suggest new processes, policies, and overall improvements to internal security controls
  • Deep understanding of Cyber Security Operations
  • Experience working with incident response teams, vulnerability managers, threat intelligence researchers, Red/Purple teams, and/or HUNT researchers
  • A broad knowledge of information security principles and security capabilities
  • Experience in evaluating, recommending, and implementing new and emerging security products and technologies as well as have the important skill to articulate technical limitations and requirements to business and technology partners
  • Some experience with large on-prem or hybrid-cloud environments deployments
  • Understanding of configuration management, orchestration, and automation tools, such as Terraform, Ansible, Puppet, Chef, SaltStack, or Packer
  • Familiarity with common Information Security and data protection frameworks and standards (i.e. CIS, NIST, MITRE, ITIL, HIPAA, GDPR, PCI DSSS, ISO 270001)
  • Highly organized and motivated self-starter who can deliver results with minimal direction
  • Ability to craft a clear, coherent approach to guide effective program setup, execution, and control Self-motivated individual with the ability to leverage technical skills and correlate data to streamline analysis quickly and effectively
  • Ability to navigate and collaborate effectively within a geographically complex and dispersed global corporation
  • Excellent verbal and written communication skills with ability to distill key data points and effectively present information

PREFERRABLE CERTIFICATIONS
  • CISSP / CISM / Security +
  • Network +
  • Any Cloud-related certification

Shift:1st shift (United States of America)

Hours Per Week:40

Learn more about this role

Vacancy expired!

Report job

Related Jobs

Jobstinger