דרושים Cloud Siem Engineer ב-Bank Of America ב-United States, Denver

This job is responsible for supporting multiple security engineering efforts to deliver enterprise security capabilities. Key responsibilities include serving as a subject matter expert of security technology, overseeing major engineering milestones including the design, development, and implementation of systems, and reporting on key metrics. Job expectations include executing on engineering initiatives, partnering with cross-functional teams, solving complex issues within one or more security domains, and mentoring team members. Experience with host-based security is highly desired.

Responsibilities:

• Serves as a subject matter expert for one or more security engineering initiatives.
• Understands key business drivers for security engineering in regard to host-based security and proposes system designs, proposes implementation.
• Serves as a knowledge base on host-based vulnerabilities root cause, exploitation techniques and potential mitigation mechanism.
• Serves as a subject matter expert with network traffic analysis (layer 7, Layer 3, Layer 4), attack patterns.
• Possesses understanding of Machine Learning Algorithms.
• Possesses understanding of certificate management, widely used encryption algorithms, digital signatures.
• Possesses understanding of data lake tools, common API protocols.
• Drives complex technical information security projects to ensure on-time delivery and identifies and raises risks and potential vulnerabilities at all stages of the security engineering process.
• Leverages broad knowledge of information security technologies, techniques, and processes and prepares to grow knowledge within one or more security-engineering domains.
• Leads the identification, definition, and documentation of system security requirements.
• Leads work efforts with a diverse set of stakeholders with varying priorities to debate and negotiate paths forward.
• Drives the development and execution of test plans to produce quantitative results and thinks outside the box to develop and implement multiple solutions to complex problems.

Required Qualifications:

• 10+ years of Information Security experience in multiple domains.
• 5+ years of experience configuring endpoint security programs, preference for at least 3 years of experience in CrowdStrike Falcon or similar, i.e.: SentinelOne, MS Defender, Trellix or Symantec Endpoint solutions
• Proven track record of deploying, configuring, and tuning enterprise EDRs
• Experience writing and updating queries using CrowdStrike Query Language, Splunk Query Language or similar
• This is an engineering role that requires designing, configuring and maintaining endpoint tools in production.
• This role also requires solid understanding of networking (Firewall, DNS, Proxy, Log Analysis etc.)

Skills:

• Influence
• Result Orientation
• Solution Design
• Stakeholder Management
• Technical Strategy Development
• Access and Identity Management
• Critical Thinking
• Cyber Security
• Information Systems Management
• Risk Management
• Collaboration
• DevOps Practices
• Financial Management
• Solution Delivery Process
• Test Engineering

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

Job Description:

Job Description:

Our Security Operations and Threat Response team within Bank of America’s Cyber Security Technology function works to continuously strengthen the bank’s cyber security posture through partnership and delivery of technology to support our content detection and threat hunt teams. This team works with partners in Cyber Security Operations to deliver robust technology solutions and support for detection engineering environments and content scenarios.

Required Qualifications:

• Minimum of 6+ years of experience in a technical role in the areas of Security Operations, Incident Response, Content Development or Equivalent Experience in a large Enterprise Splunk Environment performing triage and administrative duties.
• Direct experience performing content detection engineering and threat hunting in an active corporate environment.
• Significant experience working with Splunk Procedure Language to create and tune detections.
• Experience mapping data fields to a common data model such as CEF, OCSF.
• Direct experience working with very large datasets and log analysis tools including but not limited to: Splunk, Python, Pandas, SQL, Hadoop, Hue
• Ability to see the larger picture when dealing with competing requirements and needs from across the organization in order to build consensus and drive results.
• Ability to navigate and work effectively across a complex, geographically dispersed organization.
• Experience with enterprise scale EDR, SIEM, and SOAR tools.
• Experience in requirements gathering around the Splunk tool, documenting requirements, requirement analysis, product testing, etc.
• Splunk Infrastructure Management Experience/Knowledge
• Collaborate with teams to Monitor and optimize the performance of the Splunk environment, to ensure efficient data processing and search capabilities on our search heads.
• Ability to troubleshoot, triage and resolve issues related to Splunk Infrastructure, ensuring high availability and reliability.
• Experience in Splunk enterprise and Splunk Cloud

Data Ingestion and Parsing:

• Design and implement data ingestion strategies for various log sources into Splunk.
• Develop and maintain parsing configurations to normalize and enrich incoming data for effective analysis.
• Collaborate with application owners and IT teams to onboard new data sources into Splunk.
• Search and Reporting:
• Create and optimize search queries and reports to extract valuable insights from the indexed data.
• Customize and implement Splunk dashboards for different stakeholders to visualize key performance indicators and security metrics.

Security and Compliance:

• Implement security best practices within Splunk to safeguard sensitive data.
• Collaborate with the security team to configure and monitor alerts for suspicious activities or security incidents.
• Ensure compliance with industry regulations and internal policies related to log management and data retention.
• Automation and Scripting:
• Develop automation scripts using SPL (Search Processing Language) and other scripting languages to streamline administrative tasks.
• Continuously seek opportunities to improve efficiency through automation in Splunk processes.

Documentation and Training:

• Maintain thorough documentation of Splunk configurations, processes, and troubleshooting procedures.
• Provide training and support to other IT team members on Splunk best practices and usage.
• Experience consuming, analyzing, and reporting Cyber Threat Intelligence for actionable takeaways
• Demonstrated ability to self-direct, with minimal supervision to achieve assigned goals.

Desired Qualifications:

• Experience with offensive security tools and integration of SIEM, SOAR, CSPM and other technical integrations within large enterprise networks.
• Knowledge of basic Data Science concepts and processes.
• Experience performing security analysis and threat hunting in Cloud environments such as Azure, M365, AWS
• Experience Maintaining KV Stores.
• Experience Performing Regular Updates/Upgrades on Splunk Apps and Add-ons. As well as the Splunk environment as a whole.

Skills:

• Influence
• Result Orientation
• Solution Design
• Stakeholder Management
• Technical Strategy Development
• Access and Identity Management
• Critical Thinking
• Cyber Security
• Information Systems Management
• Risk Management
• Collaboration
• DevOps Practices
• Financial Management
• Solution Delivery Process
• Test Engineering

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

Job Description:

Job Description:

This job is responsible for supporting multiple security engineering efforts to deliver enterprise security capabilities. Key responsibilities include serving as a subject matter expert of security technology, overseeing major engineering milestones including the design, development, and implementation of systems, and reporting on key metrics. Job expectations include executing on engineering initiatives, partnering with cross-functional teams, solving complex issues within one or more security domains, and mentoring team members. Experience with host-based security is highly desired.

Responsibilities:

• Serves as a subject matter expert for one or more security engineering initiatives.
• Understands key business drivers for security engineering in regard to host-based security and proposes system designs, proposes implementation.
• Serves as a knowledge base on host-based vulnerabilities root cause, exploitation techniques and potential mitigation mechanism.
• Serves as a subject matter expert with network traffic analysis (layer 7, Layer 3, Layer 4), attack patterns.
• Possesses understanding of Machine Learning Algorithms.
• Possesses understanding of certificate management, widely used encryption algorithms, digital signatures.
• Possesses understanding of data lake tools, common API protocols.
• Drives complex technical information security projects to ensure on-time delivery and identifies and raises risks and potential vulnerabilities at all stages of the security engineering process.
• Leverages broad knowledge of information security technologies, techniques, and processes and prepares to grow knowledge within one or more security-engineering domains.
• Leads the identification, definition, and documentation of system security requirements.
• Leads work efforts with a diverse set of stakeholders with varying priorities to debate and negotiate paths forward.
• Drives the development and execution of test plans to produce quantitative results and thinks outside the box to develop and implement multiple solutions to complex problems.

Qualifications:

• 10+ years of Information Security experience in multiple domains.
• Hands on experience with host-based protection, detection tools.
• Hands on experience with Cloud and Mobile Security.
• Hands on experience with automation.
• Hands on experience with query languages.
• This is an engineering role that requires designing, configuring and maintaining endpoint tools in production.
• This role also requires solid understanding of networking (Firewall, DNS, Proxy, Log Analysis etc.)

Skills:

• Influence
• Result Orientation
• Solution Design
• Stakeholder Management
• Technical Strategy Development
• Access and Identity Management
• Critical Thinking
• Cyber Security
• Information Systems Management
• Risk Management
• Collaboration
• DevOps Practices
• Financial Management
• Solution Delivery Process
• Test Engineering

Job Description:

Job Description:

The Release Train Engineer is responsible for optimizing the flow of epics, features, and the value delivered by a smaller Agile Release Train, such as a Solution Train.

Key responsibilities include:

• Coordinating and facilitating the Solution Train ceremonies, managing dependencies, providing visibility into the health of epic and feature delivery and the overall program increment
• Promoting agile principles and mindsets through coaching
• Job expectations include ensuring impediments to epic and feature delivery are resolved quickly to avoid disruptions
• Organization of work objectives, coordinating delivery, facilitating sync points across teams, providing end-to-end visibility into the health of the deliverables, and managing program risk

• Guides and coaches leaders, teams, and Scrum Masters in the Agile Release Train on Agile practices and develops their understanding of Agile principles
• Executes program increment session for release train and facilitates Agile release train ceremonies
• Provides status updates regarding Agile Release Train plans, delivery, timelines, and impediments to stakeholders and leadership while communicating within the Agile Release Train to support delivery against program commitments
• Manages risk including dependency management, impediment removal, and compliance with Enterprise Change Management and other policy requirements
• Measures Agile Release Train delivery, maturity, and performance and reviews the metrics with the Agile Release Train to identify improvement opportunities
• Collaborates with the product management team and ensures the program has a healthy product and program backlog
• Defines norms and agreements for the Agile Release Train and enforces the agreements
• Facilitates communication and collaboration across organizations to support the deliverable completion and timeline

Required Qualifications:

• 5+ years of experience in Technology change management, following the BofA Enterprise Change Policy
• 5+ years of experience with Enterprise Change Management tools such as JIRA, and ITSM Remedy (e.g., Release Manager, Change Management, Incident Management) application tools
• 5+ years of experience working on a Technology team supporting application or infrastructure components in various roles such as Technology Project Manager (TPM) or as a Test lead, or Release change lead

Desired Qualifications:

• Technology Project Management skills with emphasis on the understanding of the BofA Change Lifecycle
• Strong organizational skills
• Strong verbal and written skills; able to lead conference calls with confidence
• Able to drive the successful closure of issues that impact their space or change event
• Independent worker, self-motivated
• Able to work closely with onshore U.S. and global partners, with emphasis on building strong relationships and exchanging information

Skills:

• Critical Thinking
• Data Privacy and Protection
• Information Systems Management
• Problem Solving
• Technology System Assessment

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

Job Description:

Job Description:
This job is responsible for developing and delivering complex requirements to accomplish business goals. Key responsibilities of the job include ensuring that software is developed to meet functional, non-functional and compliance requirements, coding solutions, unit testing, and ensuring the solution can be integrated successfully into the overall application/system with clear, robust, and well-tested interfaces. Job expectations include an awareness of development and testing practices in the industry.

This role is responsible for developing and delivering complex requirements to accomplish business goals. Key responsibilities of the role include ensuring that software is developed to meet functional, non-functional, and compliance requirements. This role ensures solutions are well designed with maintainability/ease of integration and testing built-in from the outset. These individuals possess strong proficiency in development and testing practices common to the industry, and have extensive experience of using design and architectural patterns.

Primary Level of Engagement:

Primary Interactions:

Product Owner

Scrum Master

Feature Lead

Key Responsibilities:

• Front-end React developer for the Cyber Health Monitoring application for the Global Information Security organization, building and maintaining user interfaces for the application based on customer & stakeholder requirements.
• Contribute to story refinement/defining requirements.
• Participate and guide team in estimating work necessary to realize a story/requirement through the delivery lifecycle.
• Perform spike/proof of concept as necessary to mitigate risk or implement new ideas.
• Code solutions and unit test to deliver a requirement/story per the defined acceptance criteria and compliance requirements.
• Utilize multiple architectural components (across data, application, business) in design and development of client requirements.
• Assist team with resolving technical complexities involved in realizing story work.
• Design/develop/modify architecture components, application interfaces, and solution enablers while ensuring principal architecture integrity is maintained. - Design/develop/maintain automated test suites (integration, regression, performance).
• Set up and develop a continuous integration/continuous delivery pipeline.
• Automate manual release activities.
• Mentor other Software Engineers and coach team on CI-CD practices and automating tool stack.

Qualifications:

• 5+ years of extensive experience with JavaScript, React, REST/AJAX/Fetch, HTML5/CSS3, and Git.
• Strong knowledge of JavaScript ES6+ (modern JavaScript /ECMAScript 2015+) specific language features is required.
• Strong knowledge of React (version 16+), functional components, JSX, React hooks, state management and context API are required.
• Expresses a deep interest and understanding of user interface design and optimizing user experience.
• Strong understanding of visual design systems and information hierarchy.
• Ability to communicate ideas through wireframes and translate them into code, while following visual design patterns and improvising solutions.
• Ability to triage problems, prioritize accordingly, and resolve.
• Ability to work independently with minimal interactions.
• Desire to mentor and onboard junior members of the team.
• Experience working in an Agile environment (Scrum, Kanban) Experience with node, npm, create-react-app and other similar build tools.
• Clear and concise communication skills.
• Team player who is willing to problem solve with others.
• Self-motivated to deliver high quality products.
• Expresses a deep curiosity and desire to continuously learn and master new technologies.
• Knowledge of CI/CD practices including Linting and Testing.
• Knowledge of unit and E2E testing.

Skills:

• Application Development
• Automation
• Collaboration
• DevOps Practices
• Solution Design
• Agile Practices
• Architecture
• Result Orientation
• Solution Delivery Process
• User Experience Design
• Analytical Thinking
• Data Management
• Risk Management
• Technical Strategy Development
• Test Engineering

Job Description:

Job Description:

Primary Level of Engagement:

• Works as a senior contributing member of an initiative, under supervision of an engineering lead.

Primary Interactions:

• Direct Manager
• Engineering Lead
• Project Manager
• GIS Peers
• IT Stakeholders
• Internal GIS Customers

Key Responsibilities:

• Identify, define and document and implement security system requirements for AWS and other cloud serviceproviders. Focuswill be on preventative, detective and auto-remediating controls.
• Develop and execute test plans and produce quantitative results.
• Leverage broad knowledge of information security technologies, techniques and processes and prepare to grow that knowledge within one or more security engineering domains.
• Drive complex technical information security projects to ensure on-time delivery.
• Identify and raise risks or potential vulnerabilities at all stages of the security- engineering process.
• Think outside the box to develop multiple solutions to complex problems.
• Work closely with a diverse set of stakeholders with varying priorities to debate and negotiate paths forward.
• Contribute to existing test suites (integration, regression, and performance), analyze test reports, identify any test issues/errors, and triage the underlying cause.
• Document and communicate required information for deployment, maintenance, support, and business functionality.
• Identify gaps in information security standards adherence and work with appropriate partners to develop plans to close gaps.

Required Skills:

• Must have 4+ years of professional experience as a Cloud Security Engineer
• Broad knowledge of information cloud security technologies, techniques and processes and excitement to grow that knowledge within one or more security-engineering domains.
• Experience with AWS OPA, SCP, SecurityHub, Config, EventBridge and/or SSM
• Experience with policy as code, CSPM, cloud/SaaS security management.
• Experience at a financial institution is a plus.
• Ability to communicate (verbal and written) across all levels of the organization, from technical experts to seniorexecutives. Comfortableworking with distributed team members using video conferencing, instant messaging, telephone calls, etc.
• Strong attention to detail, confident enough to raise questions and identify issues.
• Enjoys trouble shooting and puzzle solving.

Skills:

• Influence
• Result Orientation
• Solution Design
• Stakeholder Management
• Technical Strategy Development

This job will be open and accepting applications for a minimum of seven days from the date it was posted.