Build Your Career in Cybersecurity -
YOUR WAY

Summary Information about the Role

​

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.

​

One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.

​

Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.

​

Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!

​

Company Overview

​

NA

• Establish oversight of information security events and incidents and communicate analysis, containment and remediation efforts to all business partners.
• Incident response and recovery plans will be available to use and should be maintained by the team. Any issues that require management escalation will be expected to be completed in a timely manner including all appropriate information in relation to risk and action times.
• The Incident Manager will be expected to provide status updates and post-incident reports for executives and stakeholders in non-technical terms encompassing risk, impact, likelihood, containment and remediation activities and threat actors.
• Risk management including briefing and recommending actions to executive leadership within Global Information Security and other business partners on events and incidents

Required Qualifications:

• 3+ years of professional Information Security or Information Technology experience
• Proven experience handling Information Security related events and incidents
• Security+ or equivalent certification required within six months of employment
• Experience in an operations focused role with an emphasis on incident response
• Demonstrable experience in the coordination of containment activities related to cyber security incidents
• Familiarity with security vulnerabilities exploits and APT tools, techniques and procedures
• To be an excellent written and oral communicator who can adapt to their audience
• To be decisive and can make difficult decisions in what can be a high pressure environment
• Exercise independent judgment in methods, techniques and evaluation criteria for obtaining results
• Able to handle multiple competing priorities in a fast-paced environment and take action without causing an undue delay
• Supportive and can work well as part of a team as well as independently
• Can remain calm under pressure
• Ability to work in a strong team-orientated environment with a sense of urgency and resilience
• Must be able to think outside the box and develop solutions to accomplish seemingly impossible tasks while remaining risk and objective focused

​

Preferred Qualifications:

• Familiarity with network security vulnerabilities, exploits, malware and digital forensics desirable

*The incident manager will be part of a global 24/7 rotation and there is a requirement to work 8-10 weekends per year on an on-call basis as a primary contact. There will also be a requirement to cover the EMEA & APAC holidays.

​

Shift:

1st shift (United States of America)

​

Hours Per Week:

40

Role Summary

The Amazon Web Services team is looking for a passionate Senior Security Incident Response Engineer who can lead the response to security issues across the largest cloud provider in the world. You must thrive in dynamic/ambiguous situations, and think like both an attacker and defender, while working through the entire incident response lifecycle. You’ll be working in a global team environment where clear and accurate communication and collaboration on security issues is critical.

​

In this role you’ll be conducting security monitoring and response activities for the Amazon internal network. We value broad and deep technical knowledge, specifically in the fields of operating system security, network security, cryptography, software security, malware analysis, forensics, security operations, incident response, and emergent security intelligence. We don’t expect you to be an expert in all of the domains mentioned above, but we do expect you to be excited to learn about them!

​

You’ll apply your creative and critical problem solving skills to quickly design and build tooling that enables programmatic automation at a massive scale. You must have a passion for engineering solutions to complex security challenges, and recognize and fill gaps in capabilities. Above all, you should be passionate about information security, the threat landscape and security automation and tooling.

​

Company Overview

Amazon Security values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying.

​

At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon’s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.

​

In Amazon Security, it’s in our nature to learn and be curious. Ongoing DEI events and learning experiences inspire us to continue learning and to embrace our uniqueness. Addressing the toughest security challenges requires that we seek out and celebrate a diversity of ideas, perspectives, and voices.

​

We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.

​

We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve.

• Work across multiple security teams as a lead security engineer providing security and technical guidance.
• Influence your team’s and partners’ process, priorities, and choices by using data to improve security outcomes
• Provide technical and strategic guidance to senior leaders and stakeholders through effective oral and written communications
• Bar raise security issues and escalate appropriately
• Identify opportunities to prevent security issues at scale
• Mentor and develop teammates both technically and professionally

Required Qualifications

• BS degree in Computer Science, Computer Engineering, Electrical Engineering or equivalent related field.
• 7+ years of demonstrated experience with a focus in areas such as systems, network, and/or application security.
• 5+ years experience on a Security team, especially experience coordinating responses to security incidents.
• 1 year proficiency with one high-level programming or scripting language.
• Experience leading and coaching junior security engineers to improve their skills and effectiveness

​

Preferred Qualifications

• Excellent written and verbal communication skills with the ability to adapt messaging to executive, technical, and non-technical audiences.
• 7+ years experience working in security response, security automation tooling, or threat intelligence.
• Experience with malware analysis, forensics, SOAR, SIEM platforms, and a variety of Operating Systems (MS Windows, Linux, MacOS)
• Experience with Amazon Web Services.

Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.

​

Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner.

​

Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $143,300/year in our lowest geographic market up to $247,600/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit https://www.aboutamazon.com/workplace/employee-benefits. This position will remain posted until filled. Applicants should apply via our internal or external career site.

About BHI:

​

BHI is a pioneering healthcare analytics company at the forefront of AI innovation in healthcare. We are the analytics partner for Blue Cross Blue Shield plans nationwide, and our transformative solutions impact cost, quality, and outcomes from tens of millions of Americans. Our unparalleled data gives us the opportunity to drive insights into healthcare delivery.

​

Our team is comprised of passionate healthcare, analytics, and data engineering experts who have invested years solving the problem of turning healthcare data into insights that can drive value. We partner with BCBS Plans both nationally and locally to use these insights to drive solutions that create measurable value across the healthcare continuum. Working with these plans, we’re uniquely positioned to deploy AI solutions at a scale across the nation’s largest healthcare system. Join us as we help improve healthcare for all

​

Position Summary

​

The Chief Information Security Officer (CISO) is responsible for establishing and maintaining the enterprise vision, strategy, and program to ensure information assets and technologies are adequately protected. The CISO leads efforts to develop and enforce security policies, manage risk, ensure regulatory compliance, and implement best practices in cybersecurity across the organization. The CISO will also be responsible for providing strategic leadership for our on-premises, hybrid, and cloud-based infrastructure, ensuring alignment with industry best practices and regulatory requirements.

​

CISO will be directly reporting to the Chief Technology officer and works closely with the BHI’s executive leadership and CEO, as well as BCBSA and BHI’s customers, to ensure security and our infrastructure initiatives align with business objectives and regulatory requirements while proactively addressing emerging threats.

• Oversee our security engineering and compliance functions within our technology division
• Develop and implement cloud security strategies to ensure secure deployment, monitoring, and management of cloud-based infrastructure (AWS, Azure, GCP).
• Collaborate with IT infrastructure teams to ensure network security, endpoint security, and data protection controls are effectively implemented.
• Manage cloud identity and access management (IAM) policies, ensuring least privilege access principles are enforced.
• Implement, and manage an enterprise-wide information security strategy and roadmap aligned with business objectives.
• Provide leadership and direction to the cybersecurity team and collaborate with business units to embed security best practices across the organization.
• Lead the development and enforcement of policies, procedures, and standards to ensure compliance with regulatory requirements (e.g., HIPAA, HITRUST, ISO 27001, NIST, PCI-DSS, SOC 2).
• Conduct regular security risk assessments and oversee remediation efforts to address vulnerabilities and compliance gaps.
• Ensure responsible AI governance by implementing ethical guidelines and compliance measures for AI-driven security solutions.
• Manage security audits and assessments, ensuring proper governance models are in place to meet industry standards.
• Establish metrics and reporting frameworks to communicate risk posture and security performance to the board of directors and executive leadership.
• Establish a Security Operations Center (SOC) to monitor, detect, and respond to security threats in real-time.
• Lead the organization's incident response strategy, including investigation, containment, and recovery from security breaches.
• Collaborate with legal, HR, and other business units to support forensic investigations and legal proceedings related to security incidents.
• Oversee security evaluations of third-party vendors, partners, and service providers to ensure adherence to security policies and compliance requirements.
• Manage contracts and service-level agreements with Managed Security Service Providers (MSSPs) and other security vendors.
• Oversee out SRE, Infrastructure, Application Administration, and desktop/system support functions within our technology division
• Lead the design, implementation, and maintenance of a highly available, scalable, and resilient infrastructure.
• Develop and execute an infrastructure roadmap that aligns with business and technology goals.
• Oversee cloud and on-premises infrastructure, ensuring cost optimization, performance, and reliability.
• Partner with development teams to drive best practices in infrastructure design and cloud-native architecture.
• Maintain and improve Infrastructure as Code (IaC) practices using Terraform, CloudFormation, or similar tools.
• Work closely with engineering teams to embed AI models into application workflows for improved performance, scalability, and cost
• Define and implement SRE best practices to ensure system reliability, observability, and performance.
• Own the developer experience agenda and partner with engineering leaders to implement best practices and tool like DevOps, CI/CD, and other Gen/AI tools along with implementation of DORA metrics
• Establish Service Level Objectives (SLOs) and Service Level Indicators (SLIs) to measure and improve system health.
• Develop automated monitoring, alerting, and incident response processes to reduce Mean Time to Detect (MTTD) and Mean Time to Resolve (MTTR).
• Enhance system performance and capacity planning through proactive scaling and resource optimization.

Required Qualifications:

​

• BS in Computer Science, Engineering, Cybersecurity or a related field
• Minimum of 10+ years of experience in information security and infrastructure with at least 5 years in a senior leadership role.
• Minimum of 5+ years of experience in developing and implementing SRE functions to manage both On-Prem and Cloud infrastructure including FinOps Management, DevOps, CI/CD, System engineering.
• Extensive experience in cybersecurity strategy, risk management, and governance frameworks.
• In-depth knowledge of security regulations, compliance frameworks, and industry standards (HIPAA, HITRUST, NIST, ISO 27001, PCI-DSS, SOC 2).
• Strong hands-on experience in securing enterprise infrastructure, including networks, cloud platforms (primarily AWS), data centers, and endpoint security solutions.
• Expertise in security technologies, including SIEM, EDR/XDR, vulnerability management, intrusion detection/prevention systems (IDS/IPS), and next-gen firewalls.
• Proven experience designing and implementing security controls in cloud environments, containerized applications, and DevSecOps workflows.
• Knowledge of networking (TCP/IP, load balancing, DNS, VPNs) and infrastructure security best practices.
• Demonstrated ability to manage security incidents, forensic investigations, and threat intelligence programs.
• Experience leading large-scale security transformation projects and security operations center (SOC) initiatives.
• Deep understanding of IAM solutions, Zero Trust Architecture, micro-segmentation, and data loss prevention (DLP) strategies.
• Experience managing cybersecurity budgets, vendor relationships, and security investments.
• Excellent communication, leadership, and stakeholder engagement skills, with the ability to translate technical security risks into business terms.

​

Preferred Qualifications:

​

• Industry certifications such as CISSP, CISM, CISA, GIAC, CCSP, or CRISC highly desirable.

The actual salary an employee can expect to receive, plus bonus pursuant to the terms of any bonus plan if applicable, will depend on experience, seniority, geographic location, and other factors permitted by law. To review benefits, please visit https://bluehealthintelligence.com/about-bhi/careers/

​

Base salary range: 220k - 275k

​

Equal Employment Opportunity It is the policy of BHI to provide equal employment opportunity and advancement opportunities to all colleagues and qualified applicants for employment without regard to race, color, religion, national origin, sex, age, disability, sexual orientation, gender identity, or any other classification protected by the federal, state or local laws.