Cybersecurity Engineer

26 Mar 2024

Vacancy expired!

About Us:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.

One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We're devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.

Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.

Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!

This position will be responsible for the technical implementation of architectural and engineering designs within a technical domain that enable business strategies in accordance with architectural governance, standards and policies. Primary contributor to deploying net-new products, capacity expansion and maintaining lifecycle management of hardware and software products. Facilitates deployment of technical solution by planning, peer reviewing, developing templates, playbooks and automation to be used during implementation. Consistently looks for opportunities to improve the reliability and efficiency when implementing and maintaining infrastructure. This engineer embraces the culture that drives innovation and continuous improvement.

The Cybersecurity Engineer provides implementation support for all technical and strategic initiatives by the Perimeter and Threat Team. This position requires the oversight of multiple technical project engagements with diverse applications and requirements. Responsibilities include technical planning and logistics to prepare work efforts and the implementation of changes to achieve targeted schedules while incurring zero impact to the network.

The Cybersecurity Engineer follows a variety of existing and evolving business requirements to analyze work efforts, prepare and peer to understand the implementation plan, and to execute the work in a good way to deliver on need and mitigate risks. The Engineer will interface with a variety of technology engagement teams and provide best in class Perimeter and Threat solutions that align to meet business and technology requirements.

Key Responsibilities:
  • Provide best in class Firewall, IDS/IPS, and Threat solutions to meet business requirements and customer needs.
  • Review technical requests to vet the proposed solution, ensure steps are included to make the change, which delivers the intended outcome with zero impact to the production network.
  • Review detailed implementation plans for all designs, pre and post validation procedures, UAT acceptance criteria, and back-out plans. Understand how designs based on standards and predefined runbooks become implemented.
  • Operate quality assurance functions prior to each implementation to meet engineering standards and mitigate risks. Proactively raise questions and/or concerns to the Design Engineering team to address them prior to change implementation.
  • Build and Operate various Firewall platforms (Fortinet, Checkpoint, TippingPoint IDS/IPS), and Threat platforms (McAfee/Trellix, FireEye, F5 SSLO and Alteon), and respective management systems.
  • Adhere to work effort and project close-out practices such as database updates, asset tracking, inventory systems, records retention, and the related systems, tools, and process updates.
  • Oversee variety of existing processes and evolving business requirements to produce successful outcomes.
  • Work with Perimeter Security Architecture and Engineering in a 'knowledge sharing' capacity in support of adoption of the new technology, systems, or process changes. Identify improvement opportunities for service delivery and objectively measure the effects of these efforts over time.
  • Provide technical expertise for vendors including Fortinet, Check Point, Tipping Point, Trellix, FireEye, F5 SSLO, Alteon equipment and respective management systems.
  • Interface and collaborate with peer technology engagement teams, various levels of management, and clients to deliver technical Perimeter and Threat solutions.

Required Skills:
  • 7+ years of experience with building and operating various Cybersecurity solutions, including:
    • Perimeter - Fortinet, CheckPoint and their respective management systems.
    • Intrusion Detection/Prevention (IDS/IPS) - TippingPoint and Fortinet
    • Proxies - Trellix and BlueCoat
    • Threat - FireEye, Alteon and F5 Secure Socket Layer Orchestrator (SSLO)
  • Ability to work nights and weekends as required to support implementation activities.
  • Strong attention to detail and ability to follow an existing process, while also seeking continual improvements.
  • Excellent time management, problem solving, and organizational skills.
  • Proven ability to effectively collaborate with others, make decisions to initiate action, and adapt to change.
  • Proactive engagement to assess readiness and ensure zero impact from changes.
  • Strong analytical skills with ability to troubleshoot on technical triage calls.
  • Engineering experience in Perimeter & Threat solutions, including the design, low level engineering, and delivery of new capacity for client needs across the enterprise DMZ.
  • Development and maintenance of High-Level and Low-Level Design diagrams/documentation.
  • DMZ Network infrastructure knowledge including topology, security policies, firewalls and the L2/L3 switch and router infrastructure is required.
  • Functional understanding of diverse networked applications requiring perimeter management solutions, including HTTP, HTTPS, SSH, FTP, DNS, NTP, ANYCAST services, and others.
  • Strong knowledge of network routing & switching (i.e. routing protocols, multicast, and LAN protocols)

Desired Skills:
  • Experience working in an Agile environment.
  • Programming and scripting skills including: Perl, Python, Ansible, Golang, and PowerShell
  • Automation Skills including: Expect, Rancid, and REST/SOAP.
  • Financial services experience (Insurance, Banking, Investment Banking).
  • Has participated in design and/or implementation of major IT projects.
  • Understanding of the Bank's Network Infrastructure and associated Risk Management practices are highly recommended to be successful.
  • Administrator level ability with UNIX (Linux or another variant).

Shift:1st shift (United States of America)

Hours Per Week:40

Learn more about this role

  • ID: #49554794
  • State: Texas Plano 75023 Plano USA
  • City: Plano
  • Salary: Depends on Experience
  • Job type: Permanent
  • Showed: 2023-03-26
  • Deadline: 2023-05-24
  • Category: Et cetera