Cloud Engineer

About the position

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day. Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us! Come join an exciting team within Global Information Security (GIS). Cyber Security Technology (CST) is a globally distributed team responsible for cyber security innovation and architecture, engineering, solutions and capabilities development, cyber resiliency, access management engineering, data strategy, deployment maintenance, technical project management and information technology security control support. Teammates in this role deliver moderately complex tools and systems that mitigate the risk of malicious cyber-attacks. Individuals in this role contribute to the protection of system boundaries, keeping computer systems and network devices hardened against attacks and secure sensitive data. It is important that those in this role actively create and nurture partnerships with peer teams and identify opportunities for cross-team collaboration. Individuals in this role operate within a structured environment with some oversight but are eager to take initiative and tackle complex problems within one or more security engineering domains. This role may mentor one or more junior team members. They typically have 3-5 years of experience in information security technology.

Responsibilities

• Identify, define and document and implement security system requirements for AWS and other cloud service providers. Focus will be on preventative, detective and auto-remediating controls.
• Develop and execute test plans and produce quantitative results.
• Leverage broad knowledge of information security technologies, techniques and processes and prepare to grow that knowledge within one or more security engineering domains.
• Drive complex technical information security projects to ensure on-time delivery.
• Identify and raise risks or potential vulnerabilities at all stages of the security-engineering process.
• Think outside the box to develop multiple solutions to complex problems.
• Work closely with a diverse set of stakeholders with varying priorities to debate and negotiate paths forward.
• Contribute to existing test suites (integration, regression, and performance), analyze test reports, identify any test issues/errors, and triage the underlying cause.
• Document and communicate required information for deployment, maintenance, support, and business functionality.
• Identify gaps in information security standards adherence and work with appropriate partners to develop plans to close gaps.

Requirements

• 4+ years of professional experience as a Cloud Security Engineer
• Broad knowledge of information cloud security technologies, techniques and processes and excitement to grow that knowledge within one or more security-engineering domains.
• Experience with AWS OPA, SCP, SecurityHub, Config, EventBridge and/or SSM
• Experience with policy as code, CSPM, cloud/SaaS security management.
• Experience at a financial institution is a plus.
• Ability to communicate (verbal and written) across all levels of the organization, from technical experts to senior executives. Comfortable working with distributed team members using video conferencing, instant messaging, telephone calls, etc.
• Strong attention to detail, confident enough to raise questions and identify issues.
• Enjoys trouble shooting and puzzle solving.