- Lead the identification, definition and documentation of system security requirements.
- Drive the development and execution of test plans and produce quantitative results.
- Leverage broad knowledge of information security technologies, techniques and processes and prepare to grow that knowledge within one or more security-engineering domains.
- Drive complex technical information security projects to ensure on-time delivery.
- Identify and raise risks or potential vulnerabilities at all stages of the security engineering process.
- Assist team with resolving technical complexities involved in achieving requirements.
- Think outside the box to develop and implement multiple solutions to complex problems.
- Contribute to existing test suites (integration, regression, and performance), analyze test reports, identify any test issues/errors, and triage the underlying cause.
- Document and communicate required information for deployment, maintenance, support, and business functionality.
- Identify gaps in information security standards adherence and work with appropriate partners to develop plans to close gaps.
- Mentor more junior security engineers and coach team members in the delivery and release. Required Skills:
- 5+ years of experience with scripting languages (e.g. Powershell, Python, Perl, JavaScript)
- Problem solving and abstract reasoning abilities
- Experience with containerized platforms (Kubernetes, Openshift)
- Self-driven, collaborative, and able to work with minimal oversight
- Ability to deliver messages across a wide spectrum of individuals having varying degrees of technical understanding
- Experience supporting vendor developed applications
- Experience with cloud PKI technologiesDesired:
- Leadership and interpersonal skills/qualities that enable you to work with peers and various levels of management
- Understanding of information security compliance and risk management.
- Experience working with an Agile delivery team
- Experience in project management and portfolio management
- Change management experience
- Understanding of production system management
- Experience with managing risk, security, and other compliance deliverables
- Experience with assisting with audit exams and risk assessments for the applications.
- Ability interface with production support for release activities and change deliverables
- Experience work closely with vendors for vendor applications to ensure their applications meet bank requirements.
- Interface with technology infrastructure teams for infrastructure requirements like requests for additional storage
- Experience as a full stack .NET developer (C#)
- Advanced knowledge of SQL and relational database concepts in MS SQL ServerEnterprise Role Overview: This job is responsible for supporting multiple security engineering efforts to deliver enterprise security capabilities. Key responsibilities include serving as a subject matter expert of security technology, overseeing major engineering milestones including the design, development, and implementation of systems, and reporting on key metrics. Job expectations include executing on engineering initiatives, partnering with cross-functional teams, solving complex issues within one or more security domains, and mentoring team members. Shift:1st shift (United States of America)Hours Per Week: 40
Venafi Engineer - Addison, United States - Bank of America
Description
Job Description:
Come join an exciting team within Global Information Security (GIS). Cyber Security Technology (CST) is a globally distributed team responsible for cyber security innovation and architecture, engineering, solutions and capabilities development, cyber resiliency, access management engineering, data strategy, deployment maintenance, technical project management and information technology security control support.
These team members research, design, engineer, implement and support software and hardware information security systems. They utilize in-depth technical knowledge and business requirements to design and implement secure solutions that protect the bank s assets while meeting client needs. In addition, they are responsible for major engineering milestones including requirements curation, test plan development and execution, implementation planning and the development execution and of capability runbooks. They exercise judgment within broadly defined practices and policies to select techniques and evaluation criteria to obtain results and may assign work to others and resolve problems. They typically have 5 7 years of information security technology experience.
Primary Level of Engagement:
Works as a senior contributing member of one or multiple initiative(s), under supervision of engineering lead(s).
Primary Interactions:
Direct Manager
Project Manager
Engineering Leads
GIS Peers
IT Stakeholders
Internal GIS Customers
Key Responsibilities: