Cloud DevSecOps Engineer - Cyber Security Defense



Denver, Colorado;Washington, District of Columbia; Charlotte, North Carolina; Chicago, Illinois



**Job Description:**



Are you passionate about working with the best information security team in the world? Bank of America is hiring top talent to join our team.



The Cyber Security Defense (CSD) function within Global Information Security is responsible for all aspects of threat intelligence and monitoring, application and network security, and insider threat. In addition, the CSD team drives out the enterprise-wide cyber exercise program.



We are looking for experienced Cloud DevSecOps Engineers to join our Global Information Security (GIS) Cloud Defense Group. This role will report to the Head of Cloud Defense CI/CD Security Engineering, and is critical to our Cloud Application Security strategy. This role will be responsible for working closely with DevOps Engineering to ensure that the Banks Cloud Application pipelines have the appropriate controls and supporting technologies. The Cloud DevSecOps Engineer will work together with our Enterprise Architecture, GIS Cloud Architecture, Cloud IAM and other groups to ensure that the solutions we deliver meet the needs of the business. **_Responsibilities for the role include:_**



+ Perform product design activities as required

+ Perform gap analysis of CI/CD pipeline security for applications being deployed to public Cloud

+ Develop and agree roadmaps for controls and supporting technologies

+ Ensure that code adheres to strict standards for accessibility, security and sustainability

+ Collaborate across a multi-functional organization to drive automated code scanning and security testing

+ Actively participate in requirements, architecture reviews, and design meetings



**Required skills:**



+ CI/CD pipeline construction and security

+ Some experience as a developer in e.g. Java, Python, Go

+ Some experience with Agile development practices and test-driven development

+ Deep understanding of application security and relevant controls

+ Deep understanding of Cloud Application deployment models and relevant controls

+ Experience with Container technologies ( Docker, Kubernetes, Openshift)

+ AWS, Azure, IBM Cloud and/or Google APIs experience

+ Experience using threat modelling methodologies and tools

+ Experience with configuration management and automation tools such as Ansible, Puppet, Terraform, CloudFormation, Salt



**Nice to have:**



+ Experience of Linux\UNIX system administration

+ Deep knowledge of web protocols, multiple operating systems, hypervisors and distributed systems architecture

+ Experience with GitHub, GitHub actions

+ Experience with microservices architectures

+ Experience with Policy as Code implementations as part of a CI/CD pipeline

+ Cloud provider certification (e.g. AWS Certified Developer, AWS Certified Architect)

+ Security-specific certifications (e.g. CEH)

+ Experience with architecting software solutions



Were looking for people who are passionate about cloud and application security technologies, and about using them to solve interesting business problems for our customers. If youre collaborative, technical, and enjoy working on big challenges, we think youll enjoy working with us.



**Job Band:**



H5



**Shift:**



1st shift (United States of America)



**Hours Per Week:**



40



**Weekly Schedule:**



**Referral Bonus Amount:**



0



**Job Description:**



Are you passionate about working with the best information security team in the world? Bank of America is hiring top talent to join our team.



The Cyber Security Defense (CSD) function within Global Information Security is responsible for all aspects of threat intelligence and monitoring, application and network security, and insider threat. In addition, the CSD team drives out the enterprise-wide cyber exercise program.



We are looking for experienced Cloud DevSecOps Engineers to join our Global Information Security (GIS) Cloud Defense Group. This role will report to the Head of Cloud Defense CI/CD Security Engineering, and is critical to our Cloud Application Security strategy. This role will be responsible for working closely with DevOps Engineering to ensure that the Banks Cloud Application pipelines have the appropriate controls and supporting technologies. The Cloud DevSecOps Engineer will work together with our Enterprise Architecture, GIS Cloud Architecture, Cloud IAM and other groups to ensure that the solutions we deliver meet the needs of the business. **_Responsibilities for the role include:_**



+ Perform product design activities as required

+ Perform gap analysis of CI/CD pipeline security for applications being deployed to public Cloud

+ Develop and agree roadmaps for controls and supporting technologies

+ Ensure that code adheres to strict standards for accessibility, security and sustainability

+ Collaborate across a multi-functional organization to drive automated code scanning and security testing

+ Actively participate in requirements, architecture reviews, and design meetings



**Required skills:**



+ CI/CD pipeline construction and security

+ Some experience as a developer in e.g. Java, Python, Go

+ Some experience with Agile development practices and test-driven development

+ Deep understanding of application security and relevant controls

+ Deep understanding of Cloud Application deployment models and relevant controls

+ Experience with Container technologies ( Docker, Kubernetes, Openshift)

+ AWS, Azure, IBM Cloud and/or Google APIs experience

+ Experience using threat modelling methodologies and tools

+ Experience with configuration management and automation tools such as Ansible, Puppet, Terraform, CloudFormation, Salt



**Nice to have:**



+ Experience of Linux\UNIX system administration

+ Deep knowledge of web protocols, multiple operating systems, hypervisors and distributed systems architecture

+ Experience with GitHub, GitHub actions

+ Experience with microservices architectures

+ Experience with Policy as Code implementations as part of a CI/CD pipeline

+ Cloud provider certification (e.g. AWS Certified Developer, AWS Certified Architect)

+ Security-specific certifications (e.g. CEH)

+ Experience with architecting software solutions



Were looking for people who are passionate about cloud and application security technologies, and about using them to solve interesting business problems for our customers. If youre collaborative, technical, and enjoy working on big challenges, we think youll enjoy working with us.



**Shift:**



1st shift (United States of America)



**Hours Per Week:**



40



Learn more about this role



Full time



JR-22052301



Band: H5



Manages People: No



Travel: No



Manager:



Talent Acquisition Contact:



Adam Waller



Referral Bonus:



0



Colorado pay and benefits information



**Colorado pay range:**



$86,500 - $135,000
annualized salary, offers to be determined based on experience, education and skill set.



**Discretionary incentive eligible**



This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.



**Benefits**



This role is currently benefits eligible . We provide industry-leading benefits, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.



Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity and affirmative action, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.




To view the "EEO is the Law" poster, CLICK HERE (https://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf) .


To view the "EEO is the Law" Supplement, CLICK HERE (https://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP\_EEO\_Supplement\_Final\_JRF\_QA\_508c.pdf) .



Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy (Policy) establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.




To view Bank of Americas Drug-free workplace and alcohol policy, CLICK HERE .