at Bank of America in Chicago, Illinois, United States
Job Description
Senior Identity Security Engineer – Cloud
Addison, Texas;Chicago, Illinois
Job Description:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.
One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.
Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.
Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!
Job Description:
Come join an exciting team within Global Information Security (GIS). Cyber Security Technology (CST) is a globally distributed team responsible for cyber security innovation and architecture, engineering, solutions and capabilities development, cyber resiliency, access management engineering, data strategy, deployment maintenance, technical project management and information technology security control support.
The Senior Identity Security Engineer – Cloud is a key individual contributor on the Identity & Authentication Services Team. We’re looking for an enthusiastic, inspired, creative thinker who can develop innovative strategic security solutions to complex business problems. In this role you will engage and partner with leaders across the bank leveraging your extensive hands-on background in (managing / delivering / implementing / architecting) cloud security technology combined with expertise in organizational and cross-functional communication to develop cloud security strategy, influence roadmaps, solution adoption, champion strategic opportunities / execution plans with the aim to improve security capabilities, reduce risk and position platform security enhancements.
Primary Level of Engagement: Is the day to day engineering lead for one or more initiatives, defines outcomes and the technical tasks required to complete the work.
Primary Interactions:
+ Direct Manager
+ Project Manager
+ Junior Engineers
+ GIS Peers
+ IT Stakeholders
+ Internal GIS Customers
+ Line of Business Customers
Key Responsibilities:
+ Serve as the in-depth subject matter expert for Identity and Authentication with a concentration on Cloud based engineering initiatives.
+ Lead the delivery of the major engineering milestones.
+ Serve as the point of contact for application teams working to integrate with SaaS products and Cloud base deployments.
+ Conduct research, proofs of concept and other exploration activities such as evaluating new toolsets.
+ Constantly looking for better ways of solving technical problems and designing the solution without being afraid of challenging the status quo.
+ Identify and raise risks or potential vulnerabilities at all stages of the security engineering process.
+ Think outside the box to develop multiple solutions to complex problems.
+ Navigate and work effectively across a complex, geographically dispersed organization.
+ Work closely with a diverse set of stakeholders with varying priorities to debate and negotiate paths forward.
+ Identify gaps in information security standards adherence and work with appropriate partners to develop plans to close gaps.
+ Mentor more junior security engineers and coach team members in the delivery and release.
Required skills:
+ 8+ years of experience in large scale security technology platform engineering, design, architecture, or strategy (experience in developing security strategy highly desired / preferred)
+ Extensive knowledge of cloud security (across a variety of commercial platforms)
+ Specific experience with Cloud Authentication service design and implementation
+ Experience with virtualization, containerization, SaaS platform security
+ Prior experience designing, engineering and implementing new Cloud authentication, encryption, key management, access management initiatives
+ Experience Cloud security policy / configuration management
Desired skills:
+ Experience with Identity Providers (Ping, Okta), Secrets Vaults (Hashi, CyberArch), Identity Threat Detection and Response (Crowdstrike, SIlverfort, Etc.)
+ Experience with distributed identity solution, identity proofing
+ Experience with Active Directory and Azure EntraID and AWS Identity Manager
+ Familiarity with common Information Security and data protection frameworks and standards (i.e. CIS, NIST, MITRE, ITIL, HIPAA, GDPR, PCI DSSS, ISO 270001)
+ Experience in building, configuring, operating and/or securing cloud infrastructure and applications in Azure or AWS, either with native cloud service provider capabilities or tools such as Terraform, Ansible, CloudFormation, Azure Resource Manager, Google Cloud Deployment Manager, or CloudBridge
+ Knowledge and understanding of key differences between most popular cloud provider solutions and cloud orchestration tools (e.g. Azure, AWS, GCP, Pivotal Cloud Foundry, BOSH, Kubernetes, Docker, etc.)
+ Minimum of two years scripting or programming experience in Python, Java, or any modern programming language.
+ Thorough understanding of network firewalls, proxy, DMZ architecture, remote access technologies
+ Experience building enterprise security strategy for cloud adoption or driving the program’s evolution to meet new requirements
Shift:
1st shift (United States of America)
Hours Per Week:
40
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity and affirmative action, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
To view the “EEO is the Law” poster, CLICK HERE (https://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf) .
To view the “EEO is the Law” Supplement, CLICK HERE (https://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP\EEO\Supplement\Final\JRF\QA\508c.pdf) .
View the LA County Fair Chance Ordinance .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy (“Policy”) establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
To view Bank of America’s Drug-free Workplace and Alcohol Policy, CLICK HERE .
This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank o
To view full details and how to apply, please login or create a Job Seeker account