Bank Of America Senior Cloud Security Engineer - AWS / RSEC 

United States, Colorado, Denver 

178513640

Qualifications:

• Eight (8) or more years relevant Cyber Security experience with at least five (5) years in Cloud SOC and/or Purple Team roles.
• Highly organized and motivated self-starter who can deliver results with minimal direction.
• Experience writing and tuning detections.
• Experience with SIEM tools.
• Experience designing and implementing technical solutions to enhance visibility, alerting capabilities, and reduce risk within AWS.
• Experience reviewing applications, infrastructure, and architectural designs to identify threats and vulnerabilities.
• Experience with a range of AWS native services and tools (i.e. Guard Duty, Security Hub)
• Understanding of threat frameworks, such as MITRE ATT&CK for Cloud and D3FEND.
• Understanding of Risk Management principles.
• Experience in building, configuring, operating and/or securing cloud infrastructure and applications in AWS with either native cloud service provider capabilities or 3rd party vendor tools.
• Ability to independently assess risks and identify vulnerabilities in infrastructure with an eagerness to suggest new processes, policies, and overall improvements to internal security controls.
• Experience partnering with incident response teams, threat intelligence researchers, Red/Purple teams, and/or HUNT researchers.
• Familiarity with common Information Security and data protection frameworks and standards (i.e. CIS, NIST, HIPAA, GDPR, PCI DSSS, ISO 270001).
• Ability to navigate and collaborate effectively within a geographically complex and dispersed global corporation.
• Excellent verbal and written communication skills with ability to distill key data points and effectively present information.

Desired

• Bachelor’s or Master’s Degree in Computer Science, Information Systems, Cyber Security, or related field.
• Preferable Certifications
• CCSP/CCSK
• CISSP/CISM/Security+

Enterprise Role Overview:

This job is responsible for leading multiple security engineering efforts that deliver enterprise security capabilities. Key responsibilities include serving as a subject matter expert of security technology and acting as the critical decision maker with regards to technical design and implementation for respective security initiatives. Job expectations include assigning tasks and providing direction to team members, owning tactical decisions, and fostering relationships with clients and stakeholders.

1st shift (United States of America)