At Shire, we are proud and grateful to employ military veterans and thank them for their contributions to our company and our country. See where your military experience can play a role at Shire by using our military skills translator job search tool below:
Assistant Vice President/ Vice President, APAC Firewall / Proxy DMZ Security Engineering, Core Technology Infrastructure
Singapore, Singapore
Job Description:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.
One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.
Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.
Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!
Core Technology Infrastructure:
Believes diversity makes us stronger so we can reflect, connect and meet the diverse needs of our clients and employees around the world.
Is committed to building a workplace where every employee is welcomed and given the support and resources to perform their jobs successfully.
Wants to be a great place for people to work and strives to create an environment where all employees have the opportunity to achieve their goals.
Provides continuous training and development opportunities to help employees achieve their career goals, whatever their background or experience.
Is committed to advancing our tools, technology, and ways of working to better serve our clients and their evolving business needs.
Believes in responsible growth and is dedicated to supporting our communities by connecting them to the lending, investing and giving them what they need to remain vibrant and vital.
Job Description:
Coming from a technical background, you have a strong understanding of DMZ related technologies such as Firewalls , IDS/IPS, Load Balancers , Proxies ,how they are designed, deployed, and supported.
As a External Networks Architecture Engineer, your will be responsible for designing, implementing and managing operation escalation of our DMZ related devices
You will ensure maintain in operational condition in alignment with our global standards.
Ability to work varied hours to successfully interact and communicate on a global level.
Responsibilities:
Accountable for end-to-end engineering and deployment of APAC region DMZ services
Collaborate with various stakeholders: project Managers, application owners, product managers, global engineering domain leads and operations teams from service design through operations transition.
Participate in hands-on implementation, configuration of devices and engineering new services into production.
Ensure security controls are implemented and operating effectively as part of solutions delivery.
Create designs based on industry best practices, engineering standards and security principles.
Understanding the design/purpose of each application or infrastructure project, defining resource requirements to efficiently collaborate across other technology technical teams to deliver high visibility projects.
Ensuring documentation is updated to reflect new additions to or modifications in the environment and handed into Operations successfully.
Identifying and managing the mitigation of risks within the environment.
Liaise with Information Security partners to enforce compliance with standards.
Support activities related to Audit, Compliance Reviews & Regulatory Exams.
Review of all capacity metrics to ensure availability of all services.
Perform regular patching / OS upgrade / Hardware refresh to remediate vulnerabilities.
Facilitate meetings among all stakeholders/ vendors regularly and produce status update reports periodically.
Required Skills:
Minimum 5+ years of hands-on experience with large scale, complex network/DMZ environments preferably in the banking and finance industry.
Analytical and technical skills with proven experience in network DMZ security technologies especially Firewall, IDS/IPS,.
Knowledge of Web Content Filtering , IPAM & Load Balancer technologies
5+ years or more experience with deep understanding in Firewall technologies – Fortinet, CheckPoint, vendor platform & IDS/IPS technologies.
networking troubleshooting and knowledge of web connectivity and protocols (PAC files, TCP/IP, HTTP, HTTPS, SSL, FTP, Socks, etc.).
Networking troubleshooting skills and request triaging including taking and analyzing traffic packet captures, policy research, traffic logs and system log reviews
knowledge of networking communication principles, network standards, and network security practices.
Experience in creating Application and network diagrams including all pertinent flows and decisions.
Familiar with product deployments within a global banking environment.
Understanding in Automation (Python, Ansible etc).
Knowledge of regulatory risk management in Technology and Information Security domains preferred.
ITIL processes knowledge: Change Management, Incident Management, Request Management, and Problem Management. ITIL certification preferred.
At least one professional level certification in Network Security Mcafee , CheckPoint/Fortinet, Trendmicro IPS/IDS , Load Balancing , CCNA , etc] is desirable.
Educated to degree level in IT/Engineering field.
Strong discipline regarding enforcement of access and change management ITIL best practices and principles.
Understanding of Network Automation tools and processes
Self-starter/self-directed, organized and detail oriented.
Strong technical acumen and analytical skills
Good verbal and written communication skills
Experience aligning actions to business impact and service restoration.
Ability to operate with colleagues across different time zones with a flexible approach to working hours (ability to work varied hours) to successfully interact and communicate on a global level.
Desired Skills:
5+ years experience in Networking-related disciplines within a design, implementation, or operations role
5+ years of deep technical experience working on DMZ environments
Knowledge of LB/Firewall/IPS/Threat Prevention
Attention to detail, confident enough to raise questions and escalate when necessary.
Understanding of the principles of network routing/switching
Basic knowledge Unix/Linux and Windows environments
Experience with automation tools such as Python, PowerShell, Ansible, API calls (to ticketing systems and network devices), and frontend web development.
Experience of working within Financial Services (Insurance, Banking, Investment banking)
Experience deploying large-scale, global projects and programs.
Familiarity with IT security and risk management practices.
Excellent organizational skills, able to manage multiple work streams simultaneously and respond to rapidly changing demands.
Understanding of financial services regulatory and legal environment
Ability to articulate technical and business issues and solutions effectively to business or technical staff across organizational layers.
Preferred Certifications:
Cisco CCNA
Firewall certification - Checkpoint CISA/CISSP or Fortinet ( FCS/FCA/FCP )
Any othe Fortinet/LB/Proxy certification will be a plus.
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity and affirmative action, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
To view the "Know your Rights" poster, CLICK HERE (https://u.go/0As7EN) .
View the LA County Fair Chance Ordinance (https://dcba.lacounty.gov/wp-content/uploads/2024/08/FCOE-Official-Notice-Eng-Final-8.30.2024.pdf) .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy (“Policy”) establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
To view Bank of America’s Drug-free Workplace and Alcohol Policy, CLICK HERE .
This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.