Senior Cloud Identity Security Engineer
Addison
Bank of America
What would you like the power to do? For you and your family, your business and your community. At Bank of America, our purpose is to help make financial lives better through the power of every connection.Job Description:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.
One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.
Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.
Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!
Job Description:
Come join an exciting team within Global Information Security (GIS). Cyber Security Technology (CST) is a globally distributed team responsible for cyber security innovation and architecture, engineering, solutions and capabilities development, cyber resiliency, access management engineering, data strategy, deployment maintenance, technical project management and information technology security control support.
The Senior Cloud Security Engineer is a key individual contributor on the Identity & Authentication Services Team. We’re looking for an enthusiastic, inspired, creative thinker who can develop innovative strategic security solutions to complex business problems. In this role you will engage and partner with leaders across the bank leveraging your extensive hands-on background in (managing / delivering / implementing / architecting) cloud security technology combined with expertise in organizational and cross-functional communication to develop cloud security strategy, influence roadmaps, solution adoption, champion strategic opportunities / execution plans with the aim to improve security capabilities, reduce risk and position platform security enhancements.
Primary Level of Engagement: Is the day to day engineering lead for one or more initiatives, defines outcomes and the technical tasks required to complete the work.
Primary Interactions:
- Direct Manager
- Project Manager
- Junior Engineers
- GIS Peers
- IT Stakeholders
- Internal GIS Customers
- Line of Business Customers
Key Responsibilities:
- Serve as the in-depth subject matter expert for Identity and Authentication with a concentration on Cloud based engineering initiatives.
- Lead the delivery of the major engineering milestones.
- Serve as the point of contact for application teams working to integrate with SaaS products and Cloud base deployments.
- Conduct research, proofs of concept and other exploration activities such as evaluating new toolsets.
- Constantly looking for better ways of solving technical problems and designing the solution without being afraid of challenging the status quo.
- Identify and raise risks or potential vulnerabilities at all stages of the security engineering process.
- Think outside the box to develop multiple solutions to complex problems.
- Navigate and work effectively across a complex, geographically dispersed organization.
- Work closely with a diverse set of stakeholders with varying priorities to debate and negotiate paths forward.
- Identify gaps in information security standards adherence and work with appropriate partners to develop plans to close gaps.
- Mentor more junior security engineers and coach team members in the delivery and release.
Required skills:
- 8-10 years of experience in large scale cloud security technology platform engineering, design, architecture, or strategy (experience in developing security strategy highly desired / preferred)
- Minimum 5+ years of security technology experience
- Extensive knowledge of cloud security (across a variety of commercial platforms)
- Experience with virtualization, containerization, SaaS platform security
- Strong working knowledge of cloud management platforms
- Experience in building, configuring, operating and/or securing cloud infrastructure and applications in Azure or AWS, either with native cloud service provider capabilities or tools such as Terraform, Ansible, CloudFormation, Azure Resource Manager, Google Cloud Deployment Manager, or CloudBridge
- Experience building enterprise security strategy for cloud adoption or driving the program's evolution to meet new requirements
- Hands-on technical expertise in Security Architecture, automation, integration, and deployment (DevOps)
- Knowledge and understanding of key differences between most popular cloud provider solutions and cloud orchestration tools (e.g. Azure, AWS, GCP, Pivotal Cloud Foundry, BOSH, Kubernetes, Docker, etc.)
- Experience architecting solutions within AWS, Azure and GCP
- Strong domain expertise of cloud infrastructure compute, network and storage as well as the cloud control plane
- BS in computer science, networking, information systems, computer engineering, or 4+ years’ equivalent experience in information systems or software engineering
- Minimum of two years’ experience in network, system, or software architecture; design, implementation, support, and evaluation of security-focused tools and services
- A broad knowledge of information security principles (e.g. access control) and security capabilities
- Experience with large on-prem or hybrid-cloud environments deployments.
- Working knowledge of cloud computing technologies and workload transition challenges
Desired skills:
- Thorough understanding of network firewalls, proxy, DMZ architecture, remote access technologies
- Cloud authentication, encryption, key management, access management
- Cloud security policy / configuration management
- Cloud and/or security certifications related to Cloud Architecture, Data Engineering, DevOps Engineering, DevSecOps, and Machine Learning is advantageous.
- Some experience with cloud-based and on-prem data solutions (Apache Hadoop, Datastore, Firestore, Cloudera Data Platform, Big Query, Azure SQL, Cosmos DB, Red Shift, Apache Spark, ElastiCache, CloudSQL, Data Bricks, Snowflake, Apache Arrow, Apache Airflow, Flink).
- Familiarity with common Information Security and data protection frameworks and standards (i.e. CIS, NIST, MITRE, ITIL, HIPAA, GDPR, PCI DSSS, ISO 270001)
- Minimum of two years scripting or programming experience in Python, Java, or any modern programming language.
Enterprise Role Overview:
This job is responsible for leading multiple security engineering efforts that deliver enterprise security capabilities. Key responsibilities include serving as a subject matter expert of security technology and acting as the critical decision maker with regards to technical design and implementation for respective security initiatives. Job expectations include assigning tasks and providing direction to team members, owning tactical decisions, and fostering relationships with clients and stakeholders.
Shift:
1st shift (United States of America)Hours Per Week:
40* Salary range is an estimate based on our AI, ML, Data Science Salary Index 💰
Tags: Airflow Ansible Architecture Arrow AWS Azure BigQuery CloudFormation Computer Science Cosmos DB Databricks Data strategy DevOps Docker Engineering Flink GCP Google Cloud Hadoop ITIL Java Kubernetes Machine Learning Python Research Security Snowflake Spark SQL Terraform
Perks/benefits: Career development Team events
More jobs like this
Explore more AI, ML, Data Science career opportunities
Find even more open roles in Artificial Intelligence (AI), Machine Learning (ML), Natural Language Processing (NLP), Computer Vision (CV), Data Engineering, Data Analytics, Big Data, and Data Science in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Research Scientist jobs
- Open Data Science Manager jobs
- Open Junior Data Analyst jobs
- Open Business Data Analyst jobs
- Open Principal Data Scientist jobs
- Open BI Analyst jobs
- Open Data Scientist II jobs
- Open Sr Data Engineer jobs
- Open Business Intelligence Engineer jobs
- Open Data Science Intern jobs
- Open Sr. Data Scientist jobs
- Open Senior Business Intelligence Analyst jobs
- Open Lead Data Analyst jobs
- Open Azure Data Engineer jobs
- Open Software Engineer, Machine Learning jobs
- Open Junior Data Scientist jobs
- Open MLOps Engineer jobs
- Open Manager, Data Engineering jobs
- Open Marketing Data Analyst jobs
- Open Data Analytics Engineer jobs
- Open Data Engineer III jobs
- Open Junior Data Engineer jobs
- Open Data Engineering Manager jobs
- Open Product Data Analyst jobs
- Open Data Analyst II jobs
- Open Privacy-related jobs
- Open GCP-related jobs
- Open Tableau-related jobs
- Open Excel-related jobs
- Open ML models-related jobs
- Open Data pipelines-related jobs
- Open APIs-related jobs
- Open PhD-related jobs
- Open PyTorch-related jobs
- Open Finance-related jobs
- Open LLMs-related jobs
- Open Deep Learning-related jobs
- Open TensorFlow-related jobs
- Open Data visualization-related jobs
- Open Consulting-related jobs
- Open Business Intelligence-related jobs
- Open Generative AI-related jobs
- Open Data governance-related jobs
- Open NLP-related jobs
- Open CI/CD-related jobs
- Open DevOps-related jobs
- Open Kubernetes-related jobs
- Open Git-related jobs
- Open Docker-related jobs
- Open Hadoop-related jobs