Sr. Network Security Engineer (Cloud exp required)

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.

Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.

Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.

At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!

Position Summary

We are seeking a skilled and motivated Network Security Engineer to join our GIS Core Engineering team. The Network Security Engineer is a key individual contributor that has accountability for researching, designing, engineering, implementing, and supporting network security solutions. You will utilize in-depth technical knowledge and business requirements to help design and implement a secure solution to meet customer / client needs while protecting the Bank's assets. Develops and implements security standards, procedures, and guidelines for multiple platforms and diverse environment. Exercises judgment within broadly defined practices and policies in selecting methods, techniques, and evaluation criterion for obtaining results.

It is imperative that you have a solid knowledge of network security domains such as DDoS, Segmentation, Network Access, Web Content Inspection, Perimeter Defense, and Network monitoring. You will regularly collaborate with experts both in country and in other regions, so excellent communication skills are very important. If you are seeking a demanding role within Global Information Security (GIS) and have the required skills, this will be a great opportunity for you. Typically, applicants should have 5 to 7 years of cybersecurity or engineering experience.

Key Responsibilities:

• Serves as a subject matter expert for one or more engineering initiatives and is the point of contact for clients
• Contributes to defining and ensuring security requirements are met based on BofA standards and Policies.
• Incorporates basic architecture components including threat-models, diagrams, and technological requirements for in solution development.
• Understands and utilizes basic network, virtualization, and datacenter technologies for deployment strategies.
• Leads the delivery of the major engineering milestones and acts as the critical decision maker with regards to technical design and implementation
• Documents and communicates required information for deployment, maintenance, support, and business functionality.
• Adheres to team delivery/release process and cadence pertaining to solution deployment and release.
• Identifies and raises risks or potential vulnerabilities at all stages of the security-engineering process
• Works closely with a diverse set of stakeholders with varying priorities to debate and negotiate paths forward
• Navigates and works effectively across a complex, geographically dispersed organization

Required Qualifications:

• Strong fundamental understanding of information security principles, risks, and controls and of cyber security operations functions.

• Knowledge of how Web Based internet facing applications are deployed and set up and experience architecting complex enterprise cybersecurity solutions for data in transit across web, email and b2b environments. Including technology that provides proxy control, malware inspection, SSL termination, and Data Loss Prevention (DLP).

• Understanding of how Content Delivery Networks (CDNs) work, how they are designed to provide application services, and how they are used to mitigate network security threats.

• Detailed knowledge of Network Security solutions such as DDOS mitigations techniques, WAF, etc.

• Knowledge Solid experience with designing, evaluating, and deploying network security solutions for outbound, inbound, and lateral network traffic. Experience engineering web content inspection solutions using tools such as Skyhigh Web gateway, Trellix (Fireeye), and F5 LTM/APM/SSLO.

• Experience deploying proxies in the cloud (AWS) and experience with SASE platforms

• Experience coordinating delivery of project/changes milestones, ensures projects stay on target, escalating and identifying roadblocks.

• Ability to quickly diagnose the problem areas and come up with solutions and/or workarounds

• Ability to translate business needs into requirements and experience understand analyzing the technical feasibility and design against the requirements.

Effective communication skills and must be comfortable in delivering messages across a wide spectrum of individuals having varying degrees of technical understanding.

• Ability to work independently on various initiatives with little oversight.

• Strong analytical skills/problem solving/conceptual thinking.

• Motivated and willing to learn.

Desired Qualifications

• Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience).

• Experience deploying security solutions in virtual environments such as VMWare, AWS, Azure

• Experience integrating network security solutions with IAAS, PAAS and SAAS components such as Zscaler, O365, etc.

• Experience deploying security solutions in email environments.

• Experience with Data Governance, Model Risk Management and Application Management.

• Ability to work with Technical and Non-Technical business owners.

• Experience in large enterprise environments.

• Assist with internal efficiencies projects and development.

• Familiarity with industry standard endpoint tools.

• Relevant certifications: CCNA, CCNP, CISSP, or CEH.

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

Shift:
1st shift (United States of America)

Hours Per Week:
40

Pay Transparency details

US - CO - Denver - 1144 15th St - Denver Gis (CO9926), US - DC - Washington - 1800 K St NW - 1800 K Street NW (DC1842), US - IL - Chicago - 540 W Madison St - Bank Of America Plaza (IL4540), US - MA - Boston - 100 Federal St - 100 Federal St Lp (MA5100)

Pay and benefits information

Pay range

$150,000.00 - $190,700.00 annualized salary, offers to be determined based on experience, education and skill set.

Discretionary incentive eligible

This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.

Benefits

This role is currently benefits eligible. We provide industry-leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.

Client-provided location(s): Boston, MA, Washington, DC, Denver, CO, Chicago, IL

Job ID: Merrill-JR-25046506

Employment Type: FULL_TIME

Posted: 2025-11-25T18:54:37