Job Overview
At Bank of America, we are committed to delivering secure, reliable, and innovative cloud solutions to our clients.
We are seeking an experienced Cloud Security Lead DevOps Engineer to support our mission of providing cutting-edge cloud infrastructure and applications.
The successful candidate will be responsible for the operations, development, deployment, and architecture of our cloud infrastructure.
Key Responsibilities:
* Collaborate with developers to build world-class infrastructure that meets customer security and uptime requirements.
* Act as a key contributor to the development of our developer and CI/CD processes to improve developer agility and code quality.
* Approve release for CI/CD DevSecOps (implementation engineering).
* Manage CI/CD and pipeline for incident response.
* Lead CSO incident response, drive recovery activities, and support post-incident processes.
* Manage mission-critical cloud-based production systems; proactively take action if/when systems are down or there are interruptions in service; root cause and implement corrective actions to build long-term customer loyalty.
* Develop and improve processes and procedures for the CSO team.
* Ensure compliance to Service Level Agreements (SLA), process adherence.
* Create compliance reports, support the audit process, measure CSO performance metrics.
* Help identify emerging technologies & security practices that can enhance our offering to our customers.
* Be passionate about security, automation, quality, and reliability.
* Report on security operations to business leaders.
Required Skills and Qualifications:
* Knowledge of AWS and its associated technologies, both from Security and Cloud Ops perspective (Guard Duty, Control Tower, etc.).
* Knowledge of Terraform.
* Experience taking vulnerabilities generated from 3rd Party scanning, do analysis, determine remediation, and implement remediation on lower environments. Validate fix, follow process to get that on to Production.
* Experience with Incident Management and crisis management.
* Maintain smooth operation of multi-user computer systems, including coordination with network, software, and system engineers, PC desktop technicians, project managers, end users, and customer and IT management.
* Recommend and implement system enhancements that will improve the performance and reliability of the system including installing, upgrading/patching, monitoring, problem resolution, and configuration management.
* Experience with Azure Security Center, Google Cloud Security.
* Understanding of networking systems, security vulnerabilities, exploits, and attack techniques.
* Basic understanding of threat frameworks, such as ATT&CK.
* Understanding of Risk Management principles.
* Experience in building, configuring, operating, and/or securing cloud infrastructure and applications in a CSP utilizing either native capabilities or 3rd party vendor tools.
* Ability to independently assess risks and identify vulnerabilities in infrastructure with an eagerness to suggest new processes, policies, and overall improvements to internal security controls.
* Ensure new releases of products are compatible, aligned to CSO strategy, and properly onboarded to operations practices.
* Develop and document technical processes and procedures as needed. Provide technical assistance and support for incoming queries and issues related to computer systems, software, and hardware.
* Minimum 3+ years in Cloud Technologies preferably AWS.
* Minimum 3+ years of experience with deployment orchestration systems such as Kubernetes, ECS, and Elastic Beanstalk.
* Minimum 2+ years of experience working with CI/CD tools such as CircleCI or Jenkins.
* Minimum 2+ years of experience with Docker and Docker-Compose.
* Minimum 4+ years with configuration management and automation tools (e.g., Puppet, Ansible, Chef, CloudFormation, SaltStack, Terraform).
* Strong Linux system administration experience.
* Strong programming experience in at least one language (python, node, java, go, c/c++, ruby).
* Experience with logging and monitoring tools such as ELK, DataDog or NewRelic, LogEntries, SumoLogic, etc.
* Able to participate in 24/7 incident response escalation.
* Strong written and verbal communication skills.
Why Join Our Team?
At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact.