Vice President, Senior Developer, Cloud Security, Global Information Security, Sydney, Australia Sydney, Australia To proceed with your application, you must be at least 18 years of age. Acknowledge (https://ghr.wd1.myworkdayjobs.com/lateral-apac/job/Sydney/Cloud-Security-Operations-Senior-AnalystGlobal-Information-Security\_26014759-1) Bank of America employees are required to meet all posting eligibility requirements prior to applying for any new position. Acknowledge (https://ghr.wd1.myworkdayjobs.com/lateral-apac/job/Sydney/Cloud-Security-Operations-Senior-AnalystGlobal-Information-Security\_26014759-1) Refer a friend To proceed with your application, you must be at least 18 years of age. Acknowledge (https://ghr.wd1.myworkdayjobs.com/lateral-apac/job/Sydney/Cloud-Security-Operations-Senior-AnalystGlobal-Information-Security\_26014759-1) Bank of America employees are required to meet all posting eligibility requirements prior to applying for any new position. Acknowledge (https://ghr.wd1.myworkdayjobs.com/lateral-apac/job/Sydney/Cloud-Security-Operations-Senior-AnalystGlobal-Information-Security\_26014759-1) Job Description: At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day. Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us! Job Description: Come join an exciting team within Global Information Security (GIS). Cyber Security Technology (CST) is a globally distributed team responsible for cyber security innovation, architecture, engineering, solutions and capabilities development, cyber resiliency, access management engineering, data strategy, deployment maintenance, technical project management and information technology security control support. We are seeking a highly skilled and experienced Application Developer to build software solutions that provide compliance evidencing and effectiveness measurements for cloud security controls. This role requires hands-on experience with AWS/Azure and modern SDLC practices. You will partner with cross-functional teams to design, implement, and maintain robust security solutions that protect cloud infrastructure from emerging threats while meeting functional, non-functional, and regulatory requirements. Key Responsibilities Design & Implementation: Design, develop, and integrate solutions to gather security control evidence across multiple cloud platforms (e.g., AWS or Azure) to ensure the security and compliance of cloud infrastructure and workloads. Controls Evidencing and Enforcement: Identify security controls applicable to CI/CD pipelines and runtime environments to prevent misconfigurations and enforce security best practices and standards. Software Engineering Delivery: Develop and deliver software solutions that meet functional, non-functional, and regulatory compliance requirements; write, test, debug, and maintain code primarily using Java and/or Python and related technologies. Vulnerability management : hands-on experience with SCA, SAST, DAST vulnerability identification and remediation. CI/CD & DevSecOps: Engage in continuous integration and deployment activities including automating build, test, and release pipelines; integrate security best practices into CI/CD processes and operational workflows. Quality & Reliability: Troubleshoot defects, perform root-cause analysis, ensure software quality through unit, integration, and regression testing; contribute to code reviews. Collaboration: Work closely with cross-functional teams to refine requirements and deliver secure, maintainable capabilities. Compliance & Governance: Demonstrate cloud environments comply with internal control requirements and regulatory obligations using robust reporting and dashboards. Experience & Qualifications Cloud: Hands-on experience with AWS or Azure and software development life cycles (SDLCs). Deep knowledge of cloud platforms (AWS, Azure) and experience building and operating cloud-native services and business critical workloads. Programming: Strong hands-on experience with Python, Java, or other object-oriented programming (OOP) languages; ability to write clean, testable, maintainable code. DevSecOps / CI/CD: Strong understanding of DevSecOps principles; hands-on experience with CI/CD pipelines and related tooling and automating build/test/release workflows. Infrastructure as Code (IaC): Hands-on experience with Terraform, or CloudFormation Containers: Experience with Docker and orchestration tools such as Kubernetes. Databases: Solid knowledge of relational databases (Oracle, MySQL, PostgreSQL) and NoSQL; ability to write complex SQL queries and perform thorough data validations. APIs & Systems Integration: Experience building and integrating with REST APIs and system interfaces, with emphasis on maintainability, availability, reliability, performance, and security. Preferred Technical Skills Cybersecurity: Significant experience in cybersecurity across multiple domains, with a strong focus on cloud security and integrating controls as code. Experienced in secure coding practices, authentication protocols, cryptography basics, identity and access management, and familiarity with security testing and vulnerability assessment. AI/ML: hands-on experience with agent-first development. Soft Skills Self-Starter: Takes initiative without needing constant direction; independently drives tasks and projects forward. Proactive: Anticipates challenges and opportunities, addresses issues before they escalate, and actively seeks improvements. Intellectual / Analytical: Demonstrates strong analytical and problem-solving abilities; quickly grasp of complex concepts and technologies. Deliver Fast: Focused on timely delivery while maintaining quality; able to work efficiently under deadlines. Eager to Learn: Continuously develops skills to stay current with emerging technologies and best practices. Sense of Urgency: Understands criticality of tasks and responds quickly and decisively in high-impact situations. Planful: Thoughtfully sets, proactively manages, and predictably achieves commitments through strategy, process, communication, and delivery. Ownership: Accepts full responsibility for delivery outcomes and collaborates to address problems as they arise. Connected: Maintains orientation to how priorities connect to broader objectives and partner teams. Consistency: Drives adoption of logical, efficient, and sustainable processes and tools to achieve predictable results. Accuracy: Achieves business value within defined tolerances across measurable parameters (scope, schedule, cost). Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates. View your "Know your Rights (https://www.eeoc.gov/sites/default/files/2023-06/22-088\_EEOC\_KnowYourRights6.12.pdf) " poster. View the LA County Fair Chance Ordinance (https://dcba.lacounty.gov/wp-content/uploads/2024/08/FCOE-Official-Notice-Eng-Final-8.30.2024.pdf). Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment. Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank's required accommodation request process before your first day of work. This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.