Vice President, Vulnerability Scanning Specialist, Global Information Security

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.

One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.

Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.

Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!

Job Description:
The Vulnerability Scanning Specialist will be a primary Subject Matter Expert in performing Vulnerability Scanning & driving remediation for Middleware and Database instances. The Specialist’s purview will span across the Americas, EMEA and the Asia Pacific regions and will be responsible for daily execution of scan scheduling, maintenance and validation of Database and Middleware instances. The specialist will work closely with Technology owners to ensure proper scanner authentication to servers, databases, and middleware instances. The role requires cross-organization partnerships to solve key issues impactful to the enterprise.

Responsibilities:

• Responsible for database and middleware vulnerability scanning effectiveness, coverage validation and reporting.
• Responsible for ensuring proper authentication to middleware and database instances for full saturation of existing vulnerabilities.
• Key contributor to strategic tool deployment initiatives. 
• Responsible for timely Issue/impact escalation and continuous update to Senior Executive Leadership.

Skills:

Required

• Comfortable working in a fast-paced environment
• Minimum 7 years of experience in information Security
• Advanced knowledge of Database engineering and maintenance
• Advanced knowledge of Middleware engineering and maintenance
• Windows & UNIX platform Administration
• Hands-on experience managing an Industry Leading Vulnerability Identification Scanning Solution (Qualys, Tenable etc.)
• Experience with deploying and managing Cloud-based Vulnerability scanning solutions.
• Ability to operate independently.

Desired

• BS or MS in Information technology/security or related areas of study
• Familiarity with compliance regulations, frameworks, and certifications (e.g., NIST, FFIEC.)
• Experience with Vulnerability ratings methodologies