Vacancy expired!
About Us:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day. One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We're devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being. Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization. Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us! The Network Services organization is seeking a talented Perimeter Security and Threat Prevention engineer to join the Cyber Security Sustained Engineering team. This role will support the Rule Review and Remediation program to ensure Firewall and Proxy rules and policies are in compliance with network security standards and design principles to mitigate information security risk and protect the firm. Position Summary The Perimeter Security engineer will provide subject matter expertise to support the review and remediation of firewall and web proxy policies, rules, and configurations to ensure compliance with network and information security baselines and standards. The Individual must possess the ability to analyze and understand a variety of existing and evolving business requirements, interface with technology engagement teams and provide best in class Firewall/IDS/Proxy solutions that align to meet business and technology requirements. Must be a strong engineering minded individual with polished collaboration, written, and communication skills and a proven track record interacting with various levels of management and technical team members in delivering Cybersecurity services.Key Responsibilities:Primary responsibilities include managing the rule review and remediation process to analyze and identify non-compliant firewall and proxy rules and policies within the Bank's global perimeter and threat prevention infrastructure. This role will work with different application owners and LOBs (lines of business) to remediate rules and ensure adequate entitlements exist for compliance with information security standards and design principles. Will be responsible to review complex firewall, IDS and proxy rules, policies and configuration and collaborate with multiple teams including Global Information Security, Perimeter Architecture and Engineering security, operations and change implementation to identify solutions to non-compliant rules and policies. Will be required to track compliance status, report weekly and monthly metrics and interface with audit and risk teams in support of the program. Required Skills- At least 5+ years of experience directly managing or supporting networking or network security or cybersecurity solutions including Firewalls, Intrusion Detection/Prevention Systems, Web Content filtering or Web proxies.
- Experience with managing rules, policies and configurations on Firewalls including Fortinet, Checkpoint or Juniper models and on Proxies including McAfee WebGateway or Bluecoat/Symantec proxy models.
- Experience with firewall policy management and reporting solutions including FortiManager, FortiAnalyzer, Check Point Provider, Firemon, Splunk/SIEM, or similar tools.
- Good understanding of networking and network security protocols including TCP/IP, UDP, HTTP, HTTPS, SSH, FTP, Socks, PAC files, DNS, NTP, ANYCAST services, and others.
- Proven experience managing and researching complex firewall and/or proxy policies and rules, including access lists, NATs, object groups, policy layers, authentication.
- Experience searching and reporting within Splunk or similar SIEM solution.
- Use of firewall rule management tools including Firemon or Skybox.
- Strong analytical, troubleshooting, and problem-solving skills and ability to collaborate with other technical areas to define complex configuration designs.
- Excellent customer facing communication skills for customer support and knowledge of ITIL best practices.
- Must be able to communicate at different organizational levels including senior management, lines of business and application teams to drive remediation of non-compliant policies
- B.S. degree in Computer Science, Engineering, Business, or equivalent preferred with at least 5+ years of professional experience.
- Ability to manage and manipulate large data sets, databases, and reports with high attention to details and data accuracy.
- Experience with automation and scripting skills on Python or similar is a plus.
- Advanced experience with Excel workbooks and Sharepoint is highly desired.
- Knowledge of network connectivity, web connectivity and proxying technologies, WCCP, explicit or transparent proxy, reverse proxy, are a plus.
- Knowledge of authentication protocols such as LDAP, IWA, IWA-direct, SSO, Active Directory.
- Experience with ITIL processes such as change management, request management and incident management.
- At least one professional level certification in Web Content filtering technologies, Network Security or Networks such as CCNA Security, CCNP, BCCPA, BCCPP, CISSP, CCSP, CEH, is desirable.
Vacancy expired!