Senior Engineer DevSecOps

Job Description:

At Bank of America we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients teammates communities and shareholders every day.

Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace attracting and developing exceptional talent supporting our teammates physical emotional and financial wellness recognizing and rewarding performance and how we make an impact in the communities we serve.

Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.

At Bank of America you can build a successful career with opportunities to learn grow and make an impact. Join us!

Job Description:
This job is responsible for defining and leading the engineering approach for complex features to deliver significant business outcomes. Key responsibilities of the job include delivering complex features and technology enabling development efficiencies providing technical thought leadership based on conducting multiple software implementations and applying both depth and breadth in a number of technical competencies. Additionally this job is accountable for end-to-end solution design and delivery.

Position Summary:

Senior Lead DevSecOps Engineer provides senior technical leadership & handson expertise in advancing DevSecOps and enterprise CI/CD capabilities that enable automated secure & reliable software delivery at scale. The role emphasizes developer experience & delivery metrics to improve productivity efficiency & engineering outcomes across a large diverse application portfolio. It embeds security & compliance by design throughout the software delivery lifecycle ensuring alignment with enterprise standards while enabling teams to move faster with confidence. The role also supports cloudnative adoption & modernization guiding application teams toward scalable resilient implementations aligned with standards.

This is a highimpact senior technical leadership role with responsibility for driving ITGPST toward bestinclass DevSecOps and engineering practices while aligning with GTwide standards.

Responsibilities:

• Ensures that the design and engineering approach for complex features are consistent with the larger portfolio solution
• Define the technology tool stack for the solution and evaluate and adapt new testing tool/framework/practices for team(s)
• Enables team(s)/applications with Continuous Integration/Continuous Development (CI/CD) capabilities and engages with other technical stakeholders pertaining to efficient functioning of CI-CD pipeline
• Guides and influences team(s) on design and best practices for high code performance e.g. pairing code reviews
• Provides end-to-end delivery of complex features including automation for either a single team or multiple teams at the program level
• Conducts research design prototyping and other exploration activities such as evaluating new toolsets and components for release management CI/CD and features
• Works with stakeholders to establish high-level solution needs and with architects for technical requirements

Additional Responsibilities:

DevSecOps & Platform Leadership

• Lead ITGPST adoption & implementation of GTs standard CI/CD toolset (Horizon) including source control CI CD & related engineering practices
• Champion Agile & DevSecOps ways of working that enable teams to ship software faster safer & more reliably
• Drive increased automation across build test security scanning & deployment pipelines

Developer Experience & Metrics

• Partner with EET & central Horizon teams to evaluate new capabilities troubleshoot platform issues & influence roadmap direction
• Define track & use delivery metrics (e.g. commit lead time deployment frequency people coding) to inform datadriven decisions
• Lead ITGPST participation in the GTwide Developer Excellence program including leadership of development tools working groups

Security & Compliance

• Drive shiftleft security by guiding development teams on early detection of vulnerabilities throughout the SDLC
• Assist teams with remediation strategies dependency modernization & replacement of endoflife components
• Ensure alignment with GT technology standards change management & audit requirements

Cloud & Modernization

• Guide application teams in evaluating cloud readiness & migration suitability
• Provide handson technical support for cloudnative & containerbased implementations

People & Program Leadership

• Lead & influence multiple virtual teams across global ITGPST divisions
• Communicate effectively with senior leaders at divisional and GT levels

Required Qualifications:

• 10 years of overall software engineering experience including 5 years in DevSecOps CI/CD or platform engineering roles.
• Experience supporting large multiteam engineering organizations and enterprisescale application portfolios.
• Strong knowledge of Linux and Windows OS fundamentals networking concepts and infrastructure automation.
• Proficiency in programming and scripting languages used in automation and pipeline development.
• Handson experience with Gitbased source control and branching strategies (Bitbucket GitHub).
• CI experience with Jenkins (scripted or declarative) and/or GitHub Actions plus common build tools (Maven npm MS Build pip).
• Experience with CD and release orchestration tools (Ansible XL Release Harness or similar).
• Experience with containers and orchestration platforms (Docker Kubernetes OpenShift).
• Familiarity with cloud platforms (AWS and/or Azure).
• Working knowledge of database automation and SQL for CI/CD and analysis/reporting.
• Strong analytical troubleshooting and problemresolution skills.
• Excellent written and verbal communication skills.
• Ability to mentor develop and influence engineers while fostering a DevSecOps culture.
• Comfortable presenting to and partnering with senior technology leadership.

Desired Qualifications:

• Strong analytical troubleshooting and problemresolution skills.
• Excellent written and verbal communication skills.
• Ability to mentor develop and influence engineers while fostering a DevSecOps culture.
• Comfortable presenting to and partnering with senior technology leadership.

Skills:

• Automation
• Influence
• Result Orientation
• Stakeholder Management
• Technical Strategy Development
• Application Development
• Architecture
• Business Acumen
• Risk Management
• Solution Design
• Agile Practices
• Analytical Thinking
• Collaboration
• Data Management
• Solution Delivery Process

Shift:

Hours Per Week:

Pay Transparency details