Sr. Cyber Security Technology (CST) Operations End of ...

Sr. Cyber Security Technology (CST) Operations End of Life (EOL) Management Denver, Colorado;Washington, District of Columbia; Chicago, Illinois To proceed with your application, you must be at least 18 years of age. Acknowledge Refer a friend To proceed with your application, you must be at least 18 years of age. Acknowledge ( Job Description: At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day. Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammatesu2019 physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve. Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us Bank of America is seeking a highly motivated and experienced senior Risk Lead to join our CST Operations team, with a dedicated focus on identifying, managing, and remediating End of Life (EOL) technologies across development and production environments. This role is critical to reducing operational and security risk across our technology estate. You will partner closely with engineering teams, application owners, and governance groups to proactively uncover EOL items, coordinate remediation pathways, and drive sustainable lifecycle management practices. The ideal candidate brings strong infrastructure expertise, a risk focused mindset, and the ability to operate independently in a complex enterprise environment. Key Responsibilities u2022 Lead identification, assessment, and tracking of EOL/EoS (End of Life / End of Support) operating systems, middleware, databases, and software components across CST supported environments. u2022 Partner with application and engineering teams to develop remediation plans, migration strategies, and risk reduction roadmaps. u2022 Perform deep dive analysis of affected systems to determine business impact, technical dependencies, and remediation feasibility. u2022 Support infrastructure planning and environment design to minimize future EOL exposure. u2022 Conduct research and implement engineering solutions to replace, upgrade, or mitigate EOL technologies. u2022 Collect technical information to evaluate existing or proposed systems and recommend lifecycle aligned alternatives. u2022 Troubleshoot complex issues related to infrastructure, system performance, and integration points during remediation activities. u2022 Apply strong knowledge of network, platform, and security fundamentals to ensure compliant end state solutions. u2022 Work within an Agile operational model to deliver engineering and risk remediation tasks efficiently. u2022 Manage multiple concurrent remediation initiatives with attention to detail and accurate risk reporting. Required Qualifications: u2022 5u20137+ years of experience supporting infrastructure in a large enterprise environment. u2022 Strong background in handling Linux/Windows Systems, including troubleshooting and root cause analysis. u2022 Demonstrated experience working with production engineering/operations teams. u2022 Ability to identify and analyze EOL components across Linux, middleware, databases, and commercial/custom applications. u2022 Familiarity with MS SQL and Oracle, including ability to run basic queries. u2022 Strong understanding of Change and Incident Management processes. u2022 Experience working within Agile teams and development support environments. u2022 Proven ability to manage multiple competing projects and drive them to closure. u2022 Highly detail oriented with strong analytical and documentation skills. u2022 Ability to work independently and quickly learn new technologies. u2022 Experience using monitoring tools to diagnose system behavior. u2022 Excellent written and verbal communication skills with a strong collaboration mindset. u2022 Strong written & verbal skills combined with a passion for collaboration and teamwork. Desired Qualifications: u2022 Experience with container platforms such as OpenShift or Docker. u2022 Understanding of Windows Server and IIS based web applications. u2022 Scripting and automation skills (Python, PowerShell, Perl, VBScript) within a DevOps environment. u2022 Experience with server and application patching processes. u2022 Understanding of networking protocols (HTTP, HTTPS, TCP, SMTP, SNMP, DNS). u2022 Hands on experience with CI/CD and collaboration tools such as Jenkins, Ansible, Git, Subversion, JIRA, Confluence. u2022 Familiarity with encryption technologies (HSM, OpenSSL). u2022 Worked with teams handling highly available applications u2022 Experience with centralized logging platforms such as Splunk. u2022 Strong working knowledge of Continuous Monitoring and Vulnerability Management practices. u2022 Experience developing or reviewing Enhanced Remediation Programs (ERPs) to support Exception Management processes. u2022 Proven ability to assess, document, and validate risk compensating and mitigating controls in alignment with the GT Risk Framework. u2022 Demonstrated experience partnering with vendors to drive timely remediation of identified vulnerabilities. u2022 Experience collaborating with application managers to ensure vulnerabilities are remediated within established SLAs (e.g., P2: 60 days, P3: 100 days). u2022 Provide escalation support to accountable teams, ensuring high risk vulnerabilities are prioritized and remediated within published SLAs. u2022 Working knowledge of GIS Dashboard early warning reports and the ability to interpret and act on key insights. u2022 Familiarity with Key Risk Review (KRR) routines, with the ability to drive continuous improvement and maintain green metrics. Skills: + Customer and Client Focus + Interpret Relevant Laws, Rules, and Regulations + Policies, Procedures, and Guidelines + Problem Solving + Quality Assurance + Business Process Analysis + Data Privacy and Protection + Innovative Thinking + Risk Analytics + Stakeholder Management + Business Acumen + Business Continuity Management + Data Governance + External Resource Management + Information Systems Management Shift: 1st shift (United States of America) Hours Per Week: 40 Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates. View your

Created: 2026-02-02