Vice President, Cloud Security Lead DevOps Engineer

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.

Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.

At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!

Bank of America is currently seeking an experienced Cloud Security Lead DevOps Engineer to support our mission of providing secure, reliable, and innovative cloud solutions to our clients.

The Cloud Security Lead works to deliver high-quality cloud solutions and helps drive a strong DevSecOps culture. As part of the Cloud Operations team, you will be responsible for the operations, development, deployment, and architecture of our cloud infrastructure.

Ensure that the CSO's operational processes, from incident response to threat intelligence, are optimized for cloud environments and adhere to the strategic direction, with a focus on leveraging cloud-native security capabilities.

You will be expected to share the escalation of on-call investigations and provide leadership for incident response. Working closely with our development teams you will be a champion of DevSecOps best practices including CI/CD, Infrastructure as code, containerization, microservice architecture, automated testing, and security.

Primary Responsibilities

• Collaborate with Developers to build a world-class infrastructure that can meet our customer’s security and uptime requirements
• Act as a key contributor to the development of our developer and CI/CD processes to improve our developer agility and code quality
• Approve release for CI/CD DevSecOps (implementation engineering)
• Manage CI/CD and pipeline for incident response
• Lead CSO incident response, drive recovery actives and support post incident processes
• Manage mission-critical cloud-based production systems; proactively take action if/when systems are down or there are interruptions in service; root cause and implement corrective actions to build long-term customer loyalty
• Develop and improve processes and procedures for the CSO team
• Ensure compliance to Service Level Agreements (SLA), process adherence
• Create compliance reports, support the audit process, measure CSO performance metrics
• Help to identify emerging technologies & security practices that can enhance our offering to our customers
• Be passionate about security, automation, quality, and reliability.
• Report on security operations to business leaders

Required Skills

• Knowledge of AWS and its associated technologies, both from Security and Cloud Ops perspective (Guard Duty, Control Tower, etc.)
• Knowledge of Terraform
• Experience taking vulnerabilities that are generated from 3rd Party scanning, do the analysis, determine remediation and implement remediation on lower environments. Validate fix, follow process to get that on to Production.
• Experience with Incident Management and crisis management
• Maintain smooth operation of multi-user computer systems, including coordination with network, software, and system engineers, PC desktop technicians, project managers, end users, and customer and IT management.
• Recommend and implement system enhancements that will improve the performance and reliability of the system including installing, upgrading/patching, monitoring, problem resolution, and configuration management.
• Experience with Azure Security Center, Google Cloud Security
• Understanding of networking systems, security vulnerabilities, exploits and attack, s
• Basic understanding of threat frameworks, such as ATT&CK.
• Understanding of Risk Management principles.
•  Experience in building, configuring, operating and/or securing cloud infrastructure and applications in a CSP utilizing either native capabilities or 3rd party vendor tools.
• Ability to independently assess risks and identify vulnerabilities in infrastructure with an eagerness to suggest new processes, policies, and overall improvements to internal security controls.
• Ensure new releases of products are compatible, aligned to CSO strategy and properly onboarded to operations practices.
• Develop and document technical processes and procedures as needed. Provide technical assistance and support for incoming queries and issues related to computer systems, software, and hardware.
• Minimum 3+ years in Cloud Technologies preferably AWS
• Minimum 3+ years of experience with deployment orchestration systems such as Kubernetes, ECS, and Elastic Beanstalk
• Minimum 2+ years of experience working with CI/CD tools such as CircleCI or Jenkins
• Minimum 2+ years of experience with Docker and Docker-Compose
• Minimum 4+ years with configuration management and automation tools (e.g., Puppet, Ansible, Chef, CloudFormation, SaltStack, Terraform)
• Strong Linux system administration experience
• Strong programming experience in at least one language (python, node, java, go, c/c++, ruby)
• Experience with logging and monitoring tools such as ELK, DataDog or NewRelic, LogEntries, SumoLogic, etc.
• Able to participate in 24/7 incident response escalation.
• Strong written and verbal communication skills