Solution Engineer Lead jobs at Bank Of America in United States, Chicago

Job Description:

Job Description:

Key Responsibilities:

• Develop and maintain security detection use cases across DLP channels (e.g., endpoint, cloud, network).
• Drive tuning and refinement of detection logic to improve fidelity and reduce false positives.
• Leverage knowledge of proxy architectures and internet connectivity patterns to optimize detection logic, ensure visibility and address evasion techniques.
• Partner with control owners (e.g., DLP, Email, Endpoint) to ensure detection alignment with business risk and policy coverage.
• Design and document automation playbooks to support consistent detection response workflows, ensuring they can be operationalized by the appropriate teams.
• Consult with policy and control owners on new projects and proposed changes to ensure detection coverage remains effective and aligned to data protection requirements.
• Review proposed control changes and new technology integrations to validate they meet detection and monitoring requirements.
• Map detection logic to threat models, including MITRE ATT&CK, and continuously evaluate coverage gaps.
• Collaborate with Response Managers, Threat Intelligence, and Engineering to validate and optimize alerting logic.
• Translate validated adversary behaviors from hunt exercises, threat intelligence, and incident trends into refined detection use cases and tuning strategies.
• Perform targeted detection-focused hunts within DLP channels to validate coverage and identify gaps.
• Review detection health and signal integrity, and lead quality assurance of rule performance.
• Create and maintain runbooks and detection documentation to support SOC operations and audit requirements.
• Provide technical oversight and mentorship to analysts and detection stakeholders across regions.
• Collaborate with audit and risk teams to demonstrate detection control effectiveness and alignment to regulatory expectations.

Core Competencies:

• Strong analytical skills with the ability to identify detection gaps and operational inefficiencies.
• Excellent communication and documentation skills; able to translate technical content for various audiences.
• Proactive, collaborative, and capable of working across global teams.
• Adept at managing competing priorities and leading through influence.

Required Qualifications

• 7+ years of experience in cybersecurity roles with a focus on detection, security operations, or threat response.
• Deep knowledge of SIEM platforms, EDR, DLP, UEBA, and cloud telemetry (e.g., Splunk, CrowdStrike, Symantec, Microsoft Purview, Sentinel, Wiz).
• Experience collaborating with threat hunting or conducting targeted hunts to identify detection gaps and inform use case development
• Familiarity with structured detection logic (EDM, Regex, YARA, Sigma) and signal tuning principles.
• Strong understanding of MITRE ATT&CK and threat-informed defense frameworks.
• Experience in regulated industries (e.g., financial services) preferred.

Skills:

• Cyber Security
• Data Privacy and Protection
• Problem Solving
• Process Management
• Threat Analysis
• Business Acumen
• Data and Trend Analysis
• Interpret Relevant Laws, Rules, and Regulations
• Risk Analytics
• Stakeholder Management
• Access and Identity Management
• Data Governance
• Encryption
• Information Systems Management
• Technology System Assessment

Job Description:

Job Description:

The Information Security Transformation Lead willdrivethe design, integration, and execution of enterprise-wide transformation initiatives to strengthen data protection and data security capabilities within the Data Loss Prevention (DLP) organization. The role spans all DLP channels — endpoint, network, cloud, email, internet, and data at rest — ensuring the program evolves to meet advanced threats, regulatory requirements, and strategic business needs.

This highly technical position demands deep expertise in information security architecture, engineering, and threat detection with a proven track record in implementing modern, scalable, and secure data protection capabilities. The Transformation Lead serves as the strategic and technical lead for DLP transformation, ensuring the DLP organization delivers best-in-class data protection capabilities across all channels.

Key Responsibilities

• Own the DLP transformation roadmap for data protection and data security across all channels, aligning with enterprise information security architecture and DLP strategy.
• Conduct deep technical assessments of DLP and adjacent security capabilities, identifying architecture, tooling, and process gaps.
• Partner with control owners to develop functional and non-functional requirements for new capabilities, ensuring alignment to threat models and compliance requirements.
• Architect and guide the delivery of integrated data protection solutions, incorporating DLP tooling, encryption, cloud-native controls, and internet security capabilities.
• Develop and maintain threat models for data exfiltration and insider threat scenarios, mapping to frameworks such as MITRE ATT&CK.
• Oversee technical design for secure internet traffic inspection, advanced policy enforcement, and automation for faster detection and response.
• Ensure all transformation efforts meet regulatory, audit, and security policy standards (e.g., NIST 800-53, FFIEC, GDPR, CCPA).
• Act as a trusted advisor to GIS, CTO, and enterprise stakeholders on advanced data protection strategies and engineering practices.
• Provide clear executive-level reporting on transformation progress, security posture improvements, and program maturity.

Required Qualifications

• Minimum of 7 years of information security expertise in architecture, engineering, and operations, with focus areas in:
  • DLP across endpoint, network, email, cloud, and data at rest
  • Internet protocols, proxy and gateway security, firewall policy design
  • Cloud security architectures and SaaS data protection
  • Encryption, key management, and secure data handling
• Proven experience integrating data protection solutions with SIEM, SOAR, CASB, EDR/XDR, IAM, and secure web gateways.
• Strong capability in threat modeling and translating results into security architecture changes.
• Understanding of regulatory and industry standards for high-risk data in financial services and other regulated environments.
• Ability to lead technical design reviews and challenge architectural decisions to ensure security-by-design.
• Exceptional relationship management and influence skills across complex, global organizations.

Desired Qualifications

• Security certifications such as CISSP, CCSP, CISM, or GIAC.
• Automation and scripting skills (Python, PowerShell, etc.).
• Experience in AI-assisted anomaly detection for data security.
• Background in financial services or similarly regulated industries.

Skills:

• Cyber Security
• Data Privacy and Protection
• Problem Solving
• Process Management
• Threat Analysis
• Access and Identity Management
• Business Acumen
• Interpret Relevant Laws, Rules, and Regulations
• Risk Analytics
• Stakeholder Management
• Data Governance
• Data and Trend Analysis
• Incident Management
• Information Systems Management
• Technology System Assessment

This job is responsible for defining and leading the engineering approach across end-to-end technology stacks. Key responsibilities include leading teams to deliver design solutions, engaging in development environments to identify and improve performance/capacity issues, and ensuring system design solutions comply with enterprise standards. Job expectations include demonstrating technical expertise within domains, decomposing objectives into work units, advancing efficient solution delivery practices, and promoting exceptional design, engineering and organizational practices.

Service Design & Deliveryengineer oversees delivery of collaboration and productivity solutions at the bank, for example M365 product suite, voice, and video solutions.) The role requires technical knowledge and process expertise to examine what’s needed to introduce or the bank’s collaboration and productivity service. The goal is ensuring programs and/or projects are delivered end-to-end (design, build, operate) with high quality, focus on user experience, proper processes, and required security and compliance controls based on collaboration with bank’s teams.

Responsibilities:

• Ensures that execution aligns with product strategy by working with product management, product owners, and other stakeholders, contributing to the technology strategy for their technical domain
• Mentors and guides Solution Engineer resources and more junior engineers on performance evaluation and validation methods and tools ensuring system design technology solutions comply with enterprise system design and engineering standards
• Participates in solution-driven discussions, such as various Communities of Practice (COPs), contributes to the design of large or highly complex architectural designs, and finds creative solutions through their knowledge of the domain and operational constraints
• Collaborates with Development and Infrastructure teams to understand technical solutions and provide the performance capabilities required in the application across the technology stacks provided by peer Engineering Leads
• Manage overall program execution and program health inclusive of tasks, risks, dependencies, and impediments.
• Accountable for end-to-end plan ensuring delivery by expected date.
• Collaborate with cross-functional teams to identify and prioritize dependent tasks, track open deliverables to closure.
• Engage and support bank and vendor teams to define critical tasks and inter-dependencies needed to deliver.
• Track watch items, issues, and risks with corresponding mitigation plans for disposition before implementation.
• Track user experience testing and document results, if required.
• Manage user migration, communication, and training for programs as required.
• Drive development of service management measures and KPIs as required.
• As needed, document improvement plans over the course of delivery.
• Prepare briefing notes, reports, program updates, and action plans for Senior Management

Required Qualifications:

• Demonstrated experience delivering M365 or Regulated Messaging Services preferred, or equivalent technical projects.
• Ability to work well with other bank team members to deliver on their tasks.
• Strong communication (written and spoken skills).
• Expert organizational skills and analytical skills.
• Effective attention to detail and ability to determine course of action as required.
• Ability to learn bank’s system and tollgates needed to perform role; knowledge of Jira preferred.
• Interact effectively with teams, internal customers, and leadership as needed.
• Handle multiple projects simultaneously.
• Proficiency in Microsoft Office Suite and advanced proficiency with Microsoft Visio
• 7-10 years’ experience working on technology initiatives.
• Bachelor’s degree preferred.

Skills:

• Analytical Thinking
• Collaboration
• Innovative Thinking
• Solution Delivery Process
• Solution Design
• Architecture
• Automation
• Influence
• Risk Management
• Technical Strategy Development
• Adaptability
• Application Development
• Business Acumen
• DevOps Practices
• Production Support

Job Description:

Job Description:
This job is responsible for developing and delivering complex requirements to accomplish business goals. Key responsibilities of the job include ensuring that software is developed to meet functional, non-functional and compliance requirements, coding solutions, unit testing, and ensuring the solution can be integrated successfully into the overall application/system with clear, robust, and well-tested interfaces. Job expectations include an awareness of development and testing practices in the industry.

Software Engineer to work on maintaining and enhancing Python based FX execution app suite and develop, test and deliver complex software requirements to accomplish business goals.

Responsibilities:

• Codes solutions and unit test to deliver a requirement/story per the defined acceptance criteria and compliance requirements

• Utilizes multiple architectural components (across data, application, business) in design and development of client requirements

• Performs Continuous Integration and Continuous Development (CI-CD) activities

• Contributes to story refinement and definition of requirements

• Participates in estimating work necessary to realize a story/requirement through the delivery lifecycle

• Contributes to existing test suites (integration, regression, performance), analyze test reports, identify any test issues/errors, and triage the underlying cause

• Performs spike/proof of concept as necessary to mitigate risk or implement new ideas

Required Qualifications

• Exceptional development skills in Core Python on Linux/UNIX

• Knowledge or experience of agile development (e.g., XP, SCRUM, Kanban) and continues integration.

• Experience with Python performance tuning

• Solid OO design skills with an emphasis on distributed low latency, high availability systems

• Excellent problem solving and analytical skills in a high-pressure environment.

• Strong understanding of algorithms and data structures

• Strong understanding of design patterns including why and where a pattern should be used.

• Strong understanding of Messaging Middleware concepts, usage, and application

• Develop code solutions and unit tests, ensuring integration with the overall system through clear, robust, and well-tested interfaces.

• Participate in team estimation of work required for story delivery.

• Python development skills

• KDB/Q development skills

Desired Qualifications

• Experience with Quartz bank systems

• Experience with Python data analysis packages

• Contribute to story refinement and requirements definition.

• Experience working with global development teams.

• Experience working in a front office e-trading platform development team.

• Experience with Python quantitative packages

• Participate in delivery and release events, including CI/CD activities such as branching, pull requests, issue triage, conflict resolution, and release notes.

• Adhere to team processes and cadence for code deployment and release.

Skills:

• Application Development

• Automation

• Collaboration

• DevOps Practices

• Solution Design

• Agile Practices

• Architecture

• Result Orientation

• Solution Delivery Process

• User Experience Design

• Analytical Thinking

• Data Management

• Risk Management

• Technical Strategy Development

• Test Engineering

Job Description:

Role requires 3 years of experience.

Job Responsibilities:
• Identify vulnerabilities and misconfigurations across the Azure platform, resources, and workloads.
• Maintain cloud security posture management (CSPM) and vulnerability management tools such as Defender, Wiz, Qualys, CrowdStrike.
• Develop automated detection and monitoring for insecure configurations, excessive permissions, and non-compliant deployments.
• Partner with engineering, DevOps, and application teams to provide remediation guidance and drive secure by design solutions.
• Triage and report vulnerabilities with risk ratings to ensure timely remediation.
• Research and stay ahead of emerging cloud threats, vulnerabilities, and industry best practices.
• Contribute to cloud security standards, baselines, and playbooks to improve enterprise-wide security posture.
• Support governance, risk, and compliance requirements by ensuring alignments with regulatory and internal policy standards.
• Drive Cloud Security solutions in alignment with the Bank’s cloud strategy and in accordance with security best practices.
• Develops strong partnerships by demonstrating operational expertise as a subject matter expert.

Required Qualifications
• Experience with Microsoft Azure native services, tools, and architecture.
• Understanding of cloud security principles and practice
• Working knowledge of cloud threat landscape
• Technical experience in infrastructure and/or security functions
• Understanding of DevSecOps and CI/CD pipeline integration through security engineering lifecycles.
• Understanding of Threat modeling and frameworks
• Understanding of vulnerability management and scanning tools
• Experience in project management
• Well-developed analytic, qualitative, and quantitative reasoning skills with a demonstrated creative problem-solving ability.
• Ability to work independently with little oversight on complex initiatives.
• Extremely motivated, hungry to learn
• Ability to communicate complex concepts to all levels of understanding and technical ability.

Desired Qualifications
• CISSP/CCSP/CISM
• Cloud specific Security certifications such as SANS/GIAC
• Vendor specific and relevant certifications – AZ-500, SC-200, AZ-204, CKA, CKS, RHCE, etc
• Bachelors degree in a technical field

Job Description:

This role requires 3 years of experience.

Job Responsibilities:
• Identify vulnerabilities and misconfigurations across the AWS platform, resources, and workloads.
• Maintain cloud security posture management (CSPM) and vulnerability management tools such as Inspector, Wiz, Qualys, CrowdStrike.
• Develop automated detection and monitoring for insecure configurations, excessive permissions, and non-compliant deployments.
• Partner with engineering, DevOps, and application teams to provide remediation guidance and drive secure by design solutions.
• Triage and report vulnerabilities with risk ratings to ensure timely remediation.
• Research and stay ahead of emerging cloud threats, vulnerabilities, and industry best practices.
• Contribute to cloud security standards, baselines, and playbooks to improve enterprise-wide security posture.
• Support governance, risk, and compliance requirements by ensuring alignments with regulatory and internal policy standards.
• Drive Cloud Security solutions in alignment with the Bank’s cloud strategy and in accordance with security best practices.
• Develops strong partnerships by demonstrating operational expertise as a subject matter expert.

Required Qualifications:
• Experience with AWS native services, tools, and architecture.
• Understanding of cloud security principles and practice
• Working knowledge of cloud threat landscape
• Technical experience in infrastructure and/or security functions
• Understanding of DevSecOps and CI/CD pipeline integration through security engineering lifecycles.
• Understanding of Threat modeling and frameworks
• Understanding of vulnerability management and scanning tools
• Experience in project management
• Well-developed analytic, qualitative, and quantitative reasoning skills with a demonstrated creative problem-solving ability.
• Ability to work independently with little oversight on complex initiatives.
• Extremely motivated, hungry to learn
• Ability to communicate complex concepts to all levels of understanding and technical ability.

Desired Qualifications
• CISSP/CCSP/CISM
• Cloud specific Security certifications such as SANS/GIAC
• Vendor specific and relevant certifications – AZ-500, SC-200, AZ-204, CKA, CKS, RHCE, etc.
• Bachelors degree in a technical field

Job Description:

EET EEDS Senior Language Engineer will be responsible for building and maintaining machine learning models to identify end user intent for a multi-channel Virtual Assistant.

• Design & drive the intent architecture for all of Erica for Employees across 5 domains.
• Work within the framework of a vendor based Virtual Assistant (Amelia).
• Manage the ongoing model governance for E4E’s web and voice models per MRM guidelines.
• Primary contact for MRM team and Erica for Employees.
• Lead the Gen AI POC and accountable for getting production approval and use case in production Q4 2025.
• Lead a team of 7 contactors/FTEs.
• Test, validate, and determine if we replace Microsoft Azure’s ASR with Soundhound’s ASR.
• Understand the intent portfolio for NLU across domains (e.g., technology, human resources) and how it maps to conversation design for web, mobile, and voice channels.
• Identify and build appropriate datasets to train and test machine learning models for intent classification and speech recognition.
• Develop tools and telemetry that can measure/monitor accuracy and performance and update the models accordingly throughout development lifecycle.
• Develop disambiguating and error handling strategies as the virtual assistant scales.
• Monitor conversations in the application to identify underperforming content and develop solutions to improve the performance.
• Collaborate with data scientists, product owners, UX researchers, and engineers to build out the “brain” of the virtual assistant.
Required Qualifications:

• Experience with conversational interfaces and natural language processing.
• Experience training machine learning algorithms for data classification and/or speech recognition.
• Experience improving intent recognition of a data classification model.
• Experience with python.
• Unique skillset in computational linguistics and technical experience.
• Familiarity with LLMs.
• Familiarity with using version control technologies such as git, svn, or JIRA.
• Experience in DevOps and Agile methodology.
• Strong analytical and troubleshooting skills.

Skills:

• Automation
• Influence
• Result Orientation
• Stakeholder Management
• Technical Strategy Development
• Application Development
• Architecture
• Business Acumen
• Risk Management
• Solution Design
• Agile Practices
• Analytical Thinking
• Collaboration
• Data Management
• Solution Delivery Process