Endpoint Security Engineer

CO Salary Range: USD 98,400.00 - 158,200.00 per year

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.

Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.

Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.

At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!

Job Description:
This job is responsible for supporting multiple security engineering efforts to deliver enterprise security capabilities. Key responsibilities include serving as a subject matter expert of security technology, overseeing major engineering milestones including the design, development, and implementation of systems, and reporting on key metrics. Job expectations include executing on engineering initiatives, partnering with cross-functional teams, solving complex issues within one or more security domains, and mentoring team members. Experience with host-based security is highly desired.

• Serves as a subject matter expert for one or more security engineering initiatives.
• Understands key business drivers for security engineering in regard to host-based security and proposes system designs, proposes implementation.
• Serves as a knowledge base on host-based vulnerabilities root cause, exploitation techniques and potential mitigation mechanism.
• Serves as a subject matter expert with network traffic analysis (layer 7, Layer 3, Layer 4), attack patterns.
• Possesses understanding of Machine Learning Algorithms.
• Possesses understanding of certificate management, widely used encryption algorithms, digital signatures.
• Possesses understanding of data lake tools, common API protocols.
• Drives complex technical information security projects to ensure on-time delivery and identifies and raises risks and potential vulnerabilities at all stages of the security engineering process.
• Leverages broad knowledge of information security technologies, techniques, and processes and prepares to grow knowledge within one or more security-engineering domains.
• Leads the identification, definition, and documentation of system security requirements.
• Leads work efforts with a diverse set of stakeholders with varying priorities to debate and negotiate paths forward.
• Drives the development and execution of test plans to produce quantitative results and thinks outside the box to develop and implement multiple solutions to complex problems.

• 10+ years of Information Security experience in multiple domains.
• 5+ years of experience configuring endpoint security programs, preference for at least 3 years of experience in CrowdStrike Falcon or similar, i.e.: SentinelOne, MS Defender, Trellix or Symantec Endpoint solutions
• Proven track record of deploying, configuring, and tuning enterprise EDRs
• Experience writing and updating queries using CrowdStrike Query Language, Splunk Query Language or similar
• This is an engineering role that requires designing, configuring and maintaining endpoint tools in production.
• This role also requires solid understanding of networking (Firewall, DNS, Proxy, Log Analysis etc.)

• Influence
• Result Orientation
• Solution Design
• Stakeholder Management
• Technical Strategy Development
• Access and Identity Management
• Critical Thinking
• Cyber Security
• Information Systems Management
• Risk Management
• Collaboration
• DevOps Practices
• Financial Management
• Solution Delivery Process
• Test Engineering