Feb 11, 2019

Senior Cloud Security Engineer – Azure Specialization

  • Bank Of America
  • Chicago, IL, USA
Full-Time Engineering

Job Description

Job Description:

The Bank of America Global Information Security - Cyber Security Defense team is a true global operations shop with leading edge tools, processes, and people. The candidate must have deep knowledge of security controls, features and operations for top Cloud providers with the main focus on Microsoft Azure and have relevant experience to be able to build operational information protection control environment in an Azure Cloud environment . The candidate should be intellectually curious about technology and have a strong desire to find and mitigate risks. Bank of America Global Information Security encourages career mobility and this role will provide the opportunity to be part of a team where development and advancement is actively supported.

  • Deep experience in building, configuring, operating and/or securing cloud infrastructure and applications in Azure, either with cloud service provider native capabilities or 3rd party tools.
Minimum of two years' experience in network, system, or software architecture;
design, implementation, support, and evaluation of security-focused tools and services
  • Minimum of two years' experience in identifying security issues and risks, and developing mitigation plans
  • Minimum 3 years' experience with three or more of the following areas: cryptography, web and network protocols, data structures and algorithms, software development, threat modelling, pen tests, or vulnerability assessments
  • Experience reviewing applications, infrastructure, and architectural designs to identify threats and vulnerabilities.
  • A broad knowledge of information security principles (e.g. access control) and security capabilities.
  • Experience in evaluating, recommending, and implementing new and emerging security products and technologies as well as have the important skill to articulate technical limitations and requirements to business and technology partners
  • Experience with large enterprise environments
  • Self-motivated individual with ability to leverage technical skills and correlate data to streamline analysis quickly and effectively
  • Ability to navigate and collaborate effectively within a geographically complex and dispersed global corporation


  • Bachelor's or Master's degree in Computer Science, Networking, Information Systems, Computer Engineering, Systems Engineering or 10+ years' equivalent experience
  • Experience with endpoint, network, and email technology and data loss protection strategies
  • Experience with Azure Security Center
  • Security related certifications
  • Capacity to work hands-on with a range of technology
  • Ability to assess risk, identify vulnerabilities and an eagerness to suggest new processes, policies and overall improvements to current internal security controls
  • Strong analytical and creative problem solving skills
  • Familiarity with Information Security frameworks and standards (i.e. CIS, NIST, MITRE, ITIL)
  • Minimum of one year scripting or programming experience in Python, Javascript, Go, or any modern language of choice.
  • Exposure to auditing tools, intrusion detection/protection devices, security benchmarks, and Incident Response Handling.
  • Experience with configuration management, orchestration and automation tools, such as Terraform, Ansible, Puppet, Chef, Salt.



Security Clearance

NO Security Clearance

Job Tracking URL


Apply Now