Cloud Security Engineer u2013 Azure Vulnerability & ...

Cloud Security Engineer u2013 Azure Vulnerability & Misconfiguration Management Chicago, Illinois;Charlotte, North Carolina; Denver, Colorado; Jacksonville, Florida; Addison, Texas To proceed with your application, you must be at least 18 years of age. Acknowledge Refer a friend To proceed with your application, you must be at least 18 years of age. Acknowledge ( Job Description: At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day. Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammatesu2019 physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve. Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us We are seeking a skilled and motivated Cloud Security Engineer to join our cybersecurity team. This role focuses on proactively identifying, analyzing, and mitigating vulnerabilities and misconfigurations across cloud-native environments (IaaS, PaaS, SaaS). The ideal candidate will have a deep knowledge of cloud security principles, hands-on experience with vulnerability assessment tools, and the ability to drive remediation through collaboration with engineering, operations, and governance teams. Role requires 3 years of experience. Job Responsibilities: u2022 Identify vulnerabilities and misconfigurations across the Azure platform, resources, and workloads. u2022 Maintain cloud security posture management (CSPM) and vulnerability management tools such as Defender, Wiz, Qualys, CrowdStrike. u2022 Develop automated detection and monitoring for insecure configurations, excessive permissions, and non-compliant deployments. u2022 Partner with engineering, DevOps, and application teams to provide remediation guidance and drive secure by design solutions. u2022 Triage and report vulnerabilities with risk ratings to ensure timely remediation. u2022 Research and stay ahead of emerging cloud threats, vulnerabilities, and industry best practices. u2022 Contribute to cloud security standards, baselines, and playbooks to improve enterprise-wide security posture. u2022 Support governance, risk, and compliance requirements by ensuring alignments with regulatory and internal policy standards. u2022 Drive Cloud Security solutions in alignment with the Banku2019s cloud strategy and in accordance with security best practices. u2022 Develops strong partnerships by demonstrating operational expertise as a subject matter expert. Required Qualifications u2022 Experience with Microsoft Azure native services, tools, and architecture. u2022 Understanding of cloud security principles and practice u2022 Working knowledge of cloud threat landscape u2022 Technical experience in infrastructure and/or security functions u2022 Understanding of DevSecOps and CI/CD pipeline integration through security engineering lifecycles. u2022 Understanding of Threat modeling and frameworks u2022 Understanding of vulnerability management and scanning tools u2022 Experience in project management u2022 Well-developed analytic, qualitative, and quantitative reasoning skills with a demonstrated creative problem-solving ability. u2022 Ability to work independently with little oversight on complex initiatives. u2022 Extremely motivated, hungry to learn u2022 Ability to communicate complex concepts to all levels of understanding and technical ability. Desired Qualifications u2022 CISSP/CCSP/CISM u2022 Cloud specific Security certifications such as SANS/GIAC u2022 Vendor specific and relevant certifications u2013 AZ-500, SC-200, AZ-204, CKA, CKS, RHCE, etc u2022 Bachelors degree in a technical field Shift: 1st shift (United States of America) Hours Per Week: 40 Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates. To view the

Created: 2025-10-04