Content Inspection Engineer

at Bank of America
Location Denver, CO
Date Posted October 2, 2021
Category Default
Job Type Full-time

Description

Job Description:

Come join an exciting team within Global Information Security (GIS). Cyber Security Technology (CST) is a globally distributed team responsible for cyber security innovation and architecture, engineering, solutions and capabilities development, cyber resiliency, access management engineering, data strategy, deployment maintenance, technical project management and information technology security control support.

Teammates in this role deliver moderately complex tools and systems that mitigate the risk of malicious cyber attacks. Individuals in this role contribute to the protection of system boundaries, keeping computer systems and network devices hardened against attacks and secure sensitive data. It is important that those in this role actively create and nurture partnerships with peer teams and identify opportunities for cross-team collaboration. Individuals in this role operate within a structured environment with some oversight but, in absence of clear direction, take initiative and tackle complex problems within one or more security engineering domains. This role may mentor one or more junior team members. They typically have 3–5 years of experience in information security technology.

Primary Level of Engagement:
Works as a senior contributing member of an imitative, under supervision of an engineering lead

Primary Interactions:
Direct Manager
Engineering Lead
Project Manager
GIS Peers
IT Stakeholders
Internal GIS Customers

Key Responsibilities:
-Identify, define and document system security requirements.
-Develop and execute test plans and produce quantitative results.
-Engineer, implement and monitor security measures for the protection of computer systems, networks and data.
-Leverage broad knowledge of information security technologies, techniques and processes and prepare to grow that knowledge within one or more security engineering domains. 
-Drive complex technical information security projects to ensure on-time delivery.
-Identify and raise risks or potential vulnerabilities at all stages of the security- engineering process.
-Think outside the box to develop multiple solutions to complex problems.
-Work closely with a diverse set of stakeholders with varying priorities to debate and negotiate paths forward.
-Contribute to existing test suites (integration, regression, and performance), analyze test reports, identify any test issues/errors, and triage the underlying cause.
-Document and communicate required information for deployment, maintenance, support, and business functionality.
-Identify gaps in information security standards adherence and work with appropriate partners to develop plans to close gaps. 

Required Skills:
-Experience configuring network devices to send log data to syslog servers (ECSL, Splunk) and SIEM, troubleshooting connectivity and transport issues, and analyzing log data.
-Experience coordinating delivery of project/changes milestones, ensures projects stay on target, escalating and identifying roadblocks.
-Experience engineering web content inspection solutions using tools such as  McAfee Web Gateways, Bluecoat ProxySG, Radware Alteon, F5 LTM/APM/SSLO, Fireeye, NSX Defender (Lastline), and Proofpoint.
-Strong analytical skills/problem solving/conceptual thinking.
-Effective communication skills
-Ability to quickly diagnose the problem areas and come up with solutions and/or workarounds
-Ability to translate business needs into requirements and experience understand analyzing the technical feasibility and design against the requirements.

Desired Skills:
-Experience deploying security solutions in email environments.
-Experience deploying security solutions in virtual environments such as VMWare, AWS, Azure
-Experience integrating network security solutions with IAAS, PAAS and SAAS components such as Zscaler, O365, etc
-Experience with Firewalls, IDS/IPS, WAF, and DDoS
-Experience with other third party network security controls such as Bluecoat, Fortigate, Checkpoint, Juniper, F5 ASM, Cisco, FireEye, F5, Radware, Zscaler, etc
-CCNA, CCNP, CISSP, or CEH

Job Band:

H6

Shift: 

1st shift (United States of America)

Hours Per Week:

40

Weekly Schedule:

Referral Bonus Amount:

0 -->

Job Description:

Come join an exciting team within Global Information Security (GIS). Cyber Security Technology (CST) is a globally distributed team responsible for cyber security innovation and architecture, engineering, solutions and capabilities development, cyber resiliency, access management engineering, data strategy, deployment maintenance, technical project management and information technology security control support.

Teammates in this role deliver moderately complex tools and systems that mitigate the risk of malicious cyber attacks. Individuals in this role contribute to the protection of system boundaries, keeping computer systems and network devices hardened against attacks and secure sensitive data. It is important that those in this role actively create and nurture partnerships with peer teams and identify opportunities for cross-team collaboration. Individuals in this role operate within a structured environment with some oversight but, in absence of clear direction, take initiative and tackle complex problems within one or more security engineering domains. This role may mentor one or more junior team members. They typically have 3–5 years of experience in information security technology.

Primary Level of Engagement:
Works as a senior contributing member of an imitative, under supervision of an engineering lead

Primary Interactions:
Direct Manager
Engineering Lead
Project Manager
GIS Peers
IT Stakeholders
Internal GIS Customers

Key Responsibilities:
-Identify, define and document system security requirements.
-Develop and execute test plans and produce quantitative results.
-Engineer, implement and monitor security measures for the protection of computer systems, networks and data.
-Leverage broad knowledge of information security technologies, techniques and processes and prepare to grow that knowledge within one or more security engineering domains. 
-Drive complex technical information security projects to ensure on-time delivery.
-Identify and raise risks or potential vulnerabilities at all stages of the security- engineering process.
-Think outside the box to develop multiple solutions to complex problems.
-Work closely with a diverse set of stakeholders with varying priorities to debate and negotiate paths forward.
-Contribute to existing test suites (integration, regression, and performance), analyze test reports, identify any test issues/errors, and triage the underlying cause.
-Document and communicate required information for deployment, maintenance, support, and business functionality.
-Identify gaps in information security standards adherence and work with appropriate partners to develop plans to close gaps. 

Required Skills:
-Experience configuring network devices to send log data to syslog servers (ECSL, Splunk) and SIEM, troubleshooting connectivity and transport issues, and analyzing log data.
-Experience coordinating delivery of project/changes milestones, ensures projects stay on target, escalating and identifying roadblocks.
-Experience engineering web content inspection solutions using tools such as  McAfee Web Gateways, Bluecoat ProxySG, Radware Alteon, F5 LTM/APM/SSLO, Fireeye, NSX Defender (Lastline), and Proofpoint.
-Strong analytical skills/problem solving/conceptual thinking.
-Effective communication skills
-Ability to quickly diagnose the problem areas and come up with solutions and/or workarounds
-Ability to translate business needs into requirements and experience understand analyzing the technical feasibility and design against the requirements.

Desired Skills:
-Experience deploying security solutions in email environments.
-Experience deploying security solutions in virtual environments such as VMWare, AWS, Azure
-Experience integrating network security solutions with IAAS, PAAS and SAAS components such as Zscaler, O365, etc
-Experience with Firewalls, IDS/IPS, WAF, and DDoS
-Experience with other third party network security controls such as Bluecoat, Fortigate, Checkpoint, Juniper, F5 ASM, Cisco, FireEye, F5, Radware, Zscaler, etc
-CCNA, CCNP, CISSP, or CEH

Job Band:

H6

Shift: 

1st shift (United States of America)

Hours Per Week:

40

Weekly Schedule:

Referral Bonus Amount:

0

Job Description:
Come join an exciting team within Global Information Security (GIS). Cyber Security Technology (CST) is a globally distributed team responsible for cyber security innovation and architecture, engineering, solutions and capabilities development, cyber resiliency, access management engineering, data strategy, deployment maintenance, technical project management and information technology security control support.

Teammates in this role deliver moderately complex tools and systems that mitigate the risk of malicious cyber attacks. Individuals in this role contribute to the protection of system boundaries, keeping computer systems and network devices hardened against attacks and secure sensitive data. It is important that those in this role actively create and nurture partnerships with peer teams and identify opportunities for cross-team collaboration. Individuals in this role operate within a structured environment with some oversight but, in absence of clear direction, take initiative and tackle complex problems within one or more security engineering domains. This role may mentor one or more junior team members. They typically have 3–5 years of experience in information security technology.

Primary Level of Engagement:
Works as a senior contributing member of an imitative, under supervision of an engineering lead

Primary Interactions:
Direct Manager
Engineering Lead
Project Manager
GIS Peers
IT Stakeholders
Internal GIS Customers

Key Responsibilities:
-Identify, define and document system security requirements.
-Develop and execute test plans and produce quantitative results.
-Engineer, implement and monitor security measures for the protection of computer systems, networks and data.
-Leverage broad knowledge of information security technologies, techniques and processes and prepare to grow that knowledge within one or more security engineering domains. 
-Drive complex technical information security projects to ensure on-time delivery.
-Identify and raise risks or potential vulnerabilities at all stages of the security- engineering process.
-Think outside the box to develop multiple solutions to complex problems.
-Work closely with a diverse set of stakeholders with varying priorities to debate and negotiate paths forward.
-Contribute to existing test suites (integration, regression, and performance), analyze test reports, identify any test issues/errors, and triage the underlying cause.
-Document and communicate required information for deployment, maintenance, support, and business functionality.
-Identify gaps in information security standards adherence and work with appropriate partners to develop plans to close gaps. 

Required Skills:
-Experience configuring network devices to send log data to syslog servers (ECSL, Splunk) and SIEM, troubleshooting connectivity and transport issues, and analyzing log data.
-Experience coordinating delivery of project/changes milestones, ensures projects stay on target, escalating and identifying roadblocks.
-Experience engineering web content inspection solutions using tools such as  McAfee Web Gateways, Bluecoat ProxySG, Radware Alteon, F5 LTM/APM/SSLO, Fireeye, NSX Defender (Lastline), and Proofpoint.
-Strong analytical skills/problem solving/conceptual thinking.
-Effective communication skills
-Ability to quickly diagnose the problem areas and come up with solutions and/or workarounds
-Ability to translate business needs into requirements and experience understand analyzing the technical feasibility and design against the requirements.

Desired Skills:
-Experience deploying security solutions in email environments.
-Experience deploying security solutions in virtual environments such as VMWare, AWS, Azure
-Experience integrating network security solutions with IAAS, PAAS and SAAS components such as Zscaler, O365, etc
-Experience with Firewalls, IDS/IPS, WAF, and DDoS
-Experience with other third party network security controls such as Bluecoat, Fortigate, Checkpoint, Juniper, F5 ASM, Cisco, FireEye, F5, Radware, Zscaler, etc
-CCNA, CCNP, CISSP, or CEH
Shift:

1st shift (United States of America)

Hours Per Week: 

40

Drop files here browse files ...