Bank Of America Vulnerability Scanning Specialist - Middleware & Database 

United States, Illinois, Chicago 

105083464

Job Description:

The Vulnerability Scanning Specialist will be a primary Subject Matter Expert in performing Vulnerability Scanning & driving remediation for Middleware and Database instances. The Specialist’s purview will span across the Americas, EMEA and the Asia Pacific regions and will be responsible for daily execution of scan scheduling, maintenance and validation of Database and Middleware instances. The specialist will work closely with Technology owners to ensure effective scanner authentication to servers, databases, and middleware instances.

The role requires cross-organization partnerships to solve key issues impactful to the enterprise. Key Responsibilities span across the following:
• Responsible for database and middleware vulnerability scanning effectiveness, coverage validation and reporting.
• Responsible for ensuring proper authentication to middleware and database instances for full saturation of existing vulnerabilities.
• Key contributor to strategic tool deployment initiatives.
• Responsible for timely Issue/impact escalation and continuous update to Senior Executive Leadership

Required Skills:

• Advanced knowledge of Database (e.g. SQL) engineering and maintenance
• Advanced knowledge of Middleware (IBM Websphere, Oracle Weblogic) engineering and maintenance
• Comfortable working in a fast-paced environment
• Minimum 7 years of experience in information Security
• Advanced knowledge of Database engineering and maintenance
• Advanced knowledge of Middleware engineering and maintenance
• Windows & UNIX platform Administration
• Hands-on experience managing an Industry Leading Vulnerability Identification Scanning Solution (Qualys, Tenable etc.)
• Experience with deploying and managing Cloud-based Vulnerability scanning solutions.
• Ability to operate independently.

Desired Skills
• BS or MS in Information technology/security or related areas of study
• Familiarity with compliance regulations, frameworks, and certifications (e.g., NIST, FFIEC.)
• Experience with Vulnerability ratings methodologies

1st shift (United States of America)