Cyber Security Network Engineer

at Bank of America
Location Richardson, TX
Date Posted November 18, 2021
Category Default
Job Type Full-time

Description

Job Description:

The Cyber Security Network Engineer will support multiple functions within the Perimeter Security and Threat Prevention technical domains, including L3 operations support, engineering for complex changes and implementations, solutions integration, high-risk change reviews, and service validation and testing. In addition, this role will oversee compliance functions including the firewall and proxy rule review and remediation program, entitlements re-attestation and configuration management to ensure adherence to engineering and information security baselines.

Key Responsibilities

  • Supports the delivery of network cyber security solutions and services within the Threat Prevention and Perimeter Security domains which include web proxy, firewall, IDS/IPS, malware and content inspection technologies.
  • Provides level 3 technical support and participate in a weekly on-call rotation with the rest of the team.
  • Collaborates with architecture, release/deployment, and operations teams through the lifecycle of the Bank’s cyber security solutions including the design, implementation, testing, tools integration and transition to operations teams for on-going support.
  • Supports sustained engineering’s core functions and services including technical consulting, work order engineering, change reviews and level 3 incident support.
  • Designs implementation plans and work instructions for downstream deployment teams following best practices, engineering standards and security principles.
  • Leads the resolution of complex problems applying methodical processes that require in-depth analysis and evaluation of various factors and criteria.
  • Leads strategic projects and initiatives providing technical direction and expertise and owning various deliverables throughout the project lifecycle.
  • Supports compliance functions including firewall/proxy rule review and entitlements, configuration management, internal and external audits in partnership with Information Security and Architecture teams to ensure successful outcomes.
  • Reviews capacity and performance metrics to ensure adequate health and performance of network solutions.

Required Skills:

  • At a minimum 7-10 years of experience in network security or cyber security engineering or equivalent technical experience
  • Strong subject matter expertise in at least one of the following technologies (in order of desirability):
    • McAfee Web Gateway proxies
    • Bluecoat web proxies (aka Broadcom)
    • F5 SSLO
    • Fortinet, Checkpoint and/or Juniper firewalls
    • FireEye (NX/VX/CM)
    • Radware Alteon
    • McAfee DLP
    • VMWare NSX Devender (formerly Lastline)
  • Must have extensive knowledge on fundamental networking concepts and protocols including TCP/IP, HTTP/HTTPS, SSL, DNS, DHCP, basic routing/switching, load balancing (LTM/GTM), SOCKS, 802.1X, AD, authentication protocols such as LDAP, NTLM or Kerberos, etc.
  • Understanding of cryptography concepts, SSL certificates, SSL decryption/inspection, HSM/HSMaaS.
  • Proven hands-on troubleshooting skills, network-based forensics, and proficient with TCP/IP packet analysis. Experience with root cause analysis, risk mitigation, security assessments, analysis of security threats.
  • Experience with network management and monitoring tools including but not limited to Splunk, HP NNMi, OBM, SevOne, HPNA, Netscout, Sitescope or similar tools.

Desired Skills:

  • B.S. in Computer Science, Information Technology, Systems Engineering or equivalent degree is preferred.
  • Technical leadership, management, project management or release management experience
  • Experience in automation and scripting is a big plus (Perl, Python, Java, etc.)
  • Professional level certifications in networking or network security technologies is a plus (i.e. CCIE, CCNP, Security+, CCSP, CISSP, or similar)
  • ITIL certification or background on Service Management Concepts (Request, Change, Incident, Problem)

Core Technology Infrastructure Organization:

  • Is committed to building a workplace where every employee is welcomed and given the support and resources to perform their jobs successfully.
  • Wants to be a great place for people to work and strive to create an environment where all employees have the opportunity to achieve their goals.
  • Believes diversity makes us stronger so we can reflect, connect and meet the diverse needs of our clients and employees around the world.
  • Provides continuous training and development opportunities to help employees achieve their career goals, whatever their background or experience.
  • Is committed to advancing our tools, technology, and ways of working to better serve our clients and their evolving business needs.
  • Believes in responsible growth and is dedicated to supporting our communities by connecting them to the lending, investing and giving they need to remain vibrant and vital.

LOB Job Profile:

Leads and/or participates in the design, development, and implementation of complex system engineering activities involving cross-functional technical support, systems programming and data center capabilities. Responsible for components of highly complex engineering and/or analytical tasks and activities. Establishes input/output processes and working parameters for hardware/software compatibility, coordination of subsystems design, and integration of total system. Viewed as a technology subject matter expert; able to provide and communicate complex technology solutions across differing audiences including technical, managerial, business executives, and/or vendors. Will have responsibility for multiple, complex projects; will direct activities of teams related to special initiatives or operations and may have direct reports. Leads the resolution process for complex problems where analysis of situations or data requires an in-depth evaluation of various factors. Exercises judgment within broadly defined practices and policies in selecting methods, techniques, and evaluation criterion for obtaining results. Information Technology degree and/or technology certifications preferred or substantial equivalent experience. Typically 7-10 years of IT experience.

Job Band:

H5

Shift: 

1st shift (United States of America)

Hours Per Week:

40

Weekly Schedule:

Referral Bonus Amount:

0

-->

Job Description:

The Cyber Security Network Engineer will support multiple functions within the Perimeter Security and Threat Prevention technical domains, including L3 operations support, engineering for complex changes and implementations, solutions integration, high-risk change reviews, and service validation and testing. In addition, this role will oversee compliance functions including the firewall and proxy rule review and remediation program, entitlements re-attestation and configuration management to ensure adherence to engineering and information security baselines.

Key Responsibilities

  • Supports the delivery of network cyber security solutions and services within the Threat Prevention and Perimeter Security domains which include web proxy, firewall, IDS/IPS, malware and content inspection technologies.
  • Provides level 3 technical support and participate in a weekly on-call rotation with the rest of the team.
  • Collaborates with architecture, release/deployment, and operations teams through the lifecycle of the Bank’s cyber security solutions including the design, implementation, testing, tools integration and transition to operations teams for on-going support.
  • Supports sustained engineering’s core functions and services including technical consulting, work order engineering, change reviews and level 3 incident support.
  • Designs implementation plans and work instructions for downstream deployment teams following best practices, engineering standards and security principles.
  • Leads the resolution of complex problems applying methodical processes that require in-depth analysis and evaluation of various factors and criteria.
  • Leads strategic projects and initiatives providing technical direction and expertise and owning various deliverables throughout the project lifecycle.
  • Supports compliance functions including firewall/proxy rule review and entitlements, configuration management, internal and external audits in partnership with Information Security and Architecture teams to ensure successful outcomes.
  • Reviews capacity and performance metrics to ensure adequate health and performance of network solutions.

Required Skills:

  • At a minimum 7-10 years of experience in network security or cyber security engineering or equivalent technical experience
  • Strong subject matter expertise in at least one of the following technologies (in order of desirability):
    • McAfee Web Gateway proxies
    • Bluecoat web proxies (aka Broadcom)
    • F5 SSLO
    • Fortinet, Checkpoint and/or Juniper firewalls
    • FireEye (NX/VX/CM)
    • Radware Alteon
    • McAfee DLP
    • VMWare NSX Devender (formerly Lastline)
  • Must have extensive knowledge on fundamental networking concepts and protocols including TCP/IP, HTTP/HTTPS, SSL, DNS, DHCP, basic routing/switching, load balancing (LTM/GTM), SOCKS, 802.1X, AD, authentication protocols such as LDAP, NTLM or Kerberos, etc.
  • Understanding of cryptography concepts, SSL certificates, SSL decryption/inspection, HSM/HSMaaS.
  • Proven hands-on troubleshooting skills, network-based forensics, and proficient with TCP/IP packet analysis. Experience with root cause analysis, risk mitigation, security assessments, analysis of security threats.
  • Experience with network management and monitoring tools including but not limited to Splunk, HP NNMi, OBM, SevOne, HPNA, Netscout, Sitescope or similar tools.

Desired Skills:

  • B.S. in Computer Science, Information Technology, Systems Engineering or equivalent degree is preferred.
  • Technical leadership, management, project management or release management experience
  • Experience in automation and scripting is a big plus (Perl, Python, Java, etc.)
  • Professional level certifications in networking or network security technologies is a plus (i.e. CCIE, CCNP, Security+, CCSP, CISSP, or similar)
  • ITIL certification or background on Service Management Concepts (Request, Change, Incident, Problem)

Core Technology Infrastructure Organization:

  • Is committed to building a workplace where every employee is welcomed and given the support and resources to perform their jobs successfully.
  • Wants to be a great place for people to work and strive to create an environment where all employees have the opportunity to achieve their goals.
  • Believes diversity makes us stronger so we can reflect, connect and meet the diverse needs of our clients and employees around the world.
  • Provides continuous training and development opportunities to help employees achieve their career goals, whatever their background or experience.
  • Is committed to advancing our tools, technology, and ways of working to better serve our clients and their evolving business needs.
  • Believes in responsible growth and is dedicated to supporting our communities by connecting them to the lending, investing and giving they need to remain vibrant and vital.

LOB Job Profile:

Leads and/or participates in the design, development, and implementation of complex system engineering activities involving cross-functional technical support, systems programming and data center capabilities. Responsible for components of highly complex engineering and/or analytical tasks and activities. Establishes input/output processes and working parameters for hardware/software compatibility, coordination of subsystems design, and integration of total system. Viewed as a technology subject matter expert; able to provide and communicate complex technology solutions across differing audiences including technical, managerial, business executives, and/or vendors. Will have responsibility for multiple, complex projects; will direct activities of teams related to special initiatives or operations and may have direct reports. Leads the resolution process for complex problems where analysis of situations or data requires an in-depth evaluation of various factors. Exercises judgment within broadly defined practices and policies in selecting methods, techniques, and evaluation criterion for obtaining results. Information Technology degree and/or technology certifications preferred or substantial equivalent experience. Typically 7-10 years of IT experience.

Job Band:

H5

Shift: 

1st shift (United States of America)

Hours Per Week:

40

Weekly Schedule:

Referral Bonus Amount:

0

Job Description:
The Cyber Security Network Engineer will support multiple functions within the Perimeter Security and Threat Prevention technical domains, including L3 operations support, engineering for complex changes and implementations, solutions integration, high-risk change reviews, and service validation and testing. In addition, this role will oversee compliance functions including the firewall and proxy rule review and remediation program, entitlements re-attestation and configuration management to ensure adherence to engineering and information security baselines.

Key Responsibilities

  • Supports the delivery of network cyber security solutions and services within the Threat Prevention and Perimeter Security domains which include web proxy, firewall, IDS/IPS, malware and content inspection technologies.
  • Provides level 3 technical support and participate in a weekly on-call rotation with the rest of the team.
  • Collaborates with architecture, release/deployment, and operations teams through the lifecycle of the Bank’s cyber security solutions including the design, implementation, testing, tools integration and transition to operations teams for on-going support.
  • Supports sustained engineering’s core functions and services including technical consulting, work order engineering, change reviews and level 3 incident support.
  • Designs implementation plans and work instructions for downstream deployment teams following best practices, engineering standards and security principles.
  • Leads the resolution of complex problems applying methodical processes that require in-depth analysis and evaluation of various factors and criteria.
  • Leads strategic projects and initiatives providing technical direction and expertise and owning various deliverables throughout the project lifecycle.
  • Supports compliance functions including firewall/proxy rule review and entitlements, configuration management, internal and external audits in partnership with Information Security and Architecture teams to ensure successful outcomes.
  • Reviews capacity and performance metrics to ensure adequate health and performance of network solutions.

Required Skills:

  • At a minimum 7-10 years of experience in network security or cyber security engineering or equivalent technical experience
  • Strong subject matter expertise in at least one of the following technologies (in order of desirability):
    • McAfee Web Gateway proxies
    • Bluecoat web proxies (aka Broadcom)
    • F5 SSLO
    • Fortinet, Checkpoint and/or Juniper firewalls
    • FireEye (NX/VX/CM)
    • Radware Alteon
    • McAfee DLP
    • VMWare NSX Devender (formerly Lastline)
  • Must have extensive knowledge on fundamental networking concepts and protocols including TCP/IP, HTTP/HTTPS, SSL, DNS, DHCP, basic routing/switching, load balancing (LTM/GTM), SOCKS, 802.1X, AD, authentication protocols such as LDAP, NTLM or Kerberos, etc.
  • Understanding of cryptography concepts, SSL certificates, SSL decryption/inspection, HSM/HSMaaS.
  • Proven hands-on troubleshooting skills, network-based forensics, and proficient with TCP/IP packet analysis. Experience with root cause analysis, risk mitigation, security assessments, analysis of security threats.
  • Experience with network management and monitoring tools including but not limited to Splunk, HP NNMi, OBM, SevOne, HPNA, Netscout, Sitescope or similar tools.

Desired Skills:

  • B.S. in Computer Science, Information Technology, Systems Engineering or equivalent degree is preferred.
  • Technical leadership, management, project management or release management experience
  • Experience in automation and scripting is a big plus (Perl, Python, Java, etc.)
  • Professional level certifications in networking or network security technologies is a plus (i.e. CCIE, CCNP, Security+, CCSP, CISSP, or similar)
  • ITIL certification or background on Service Management Concepts (Request, Change, Incident, Problem)

Core Technology Infrastructure Organization:

  • Is committed to building a workplace where every employee is welcomed and given the support and resources to perform their jobs successfully.
  • Wants to be a great place for people to work and strive to create an environment where all employees have the opportunity to achieve their goals.
  • Believes diversity makes us stronger so we can reflect, connect and meet the diverse needs of our clients and employees around the world.
  • Provides continuous training and development opportunities to help employees achieve their career goals, whatever their background or experience.
  • Is committed to advancing our tools, technology, and ways of working to better serve our clients and their evolving business needs.
  • Believes in responsible growth and is dedicated to supporting our communities by connecting them to the lending, investing and giving they need to remain vibrant and vital.

LOB Job Profile:

Leads and/or participates in the design, development, and implementation of complex system engineering activities involving cross-functional technical support, systems programming and data center capabilities. Responsible for components of highly complex engineering and/or analytical tasks and activities. Establishes input/output processes and working parameters for hardware/software compatibility, coordination of subsystems design, and integration of total system. Viewed as a technology subject matter expert; able to provide and communicate complex technology solutions across differing audiences including technical, managerial, business executives, and/or vendors. Will have responsibility for multiple, complex projects; will direct activities of teams related to special initiatives or operations and may have direct reports. Leads the resolution process for complex problems where analysis of situations or data requires an in-depth evaluation of various factors. Exercises judgment within broadly defined practices and policies in selecting methods, techniques, and evaluation criterion for obtaining results. Information Technology degree and/or technology certifications preferred or substantial equivalent experience. Typically 7-10 years of IT experience.
Shift:

1st shift (United States of America)

Hours Per Week: 

40

Drop files here browse files ...