Software Engineer III - Quartz Security
Bank of America
Job Description:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.
Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.
At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!
Job Description:
This job is responsible for developing and delivering complex requirements to accomplish business goals. Key responsibilities of the job include ensuring that software is developed to meet functional, non-functional and compliance requirements, and solutions are well designed with maintainability/ease of integration and testing built-in from the outset. Job expectations include a strong knowledge of development and testing practices common to the industry and design and architectural patterns.
Quartz has for over a decade revolutionized the way Global Markets does business at Bank of America Merrill Lynch. Quartz has been the primary platform for pricing trades, managing positions, and computing risk exposure. Thousands of developers are using the highly agile platform to deliver applications to tens of thousands of end users. As a part of the Quartz team, you will contribute to the technology that will re define the future of our business.
The Quartz Platform team is now starting a core refresh of the platform to modernize with capabilities required to meet our user’s future needs. We are looking to add experienced software engineers with solid CS knowledge and a track record of delivery on at least one large project in a relevant area (in a PhD or prior job). This person needs to be able to own and independently implement one part of a complex project, while collaborating effectively with the owners of the other parts.
The qualified applicant will become a key developer for the security team for Quartz, owning not just the core security layer for every quartz connection but also managing our CA and integrating with single sign-on for cross windows/application service use.
Responsibilities:
Codes solutions and unit test to deliver a requirement/story per the defined acceptance criteria and compliance requirements
Designs, develops, and modifies architecture components, application interfaces, and solution enablers while ensuring principal architecture integrity is maintained
Mentors other software engineers and coach team on Continuous Integration and Continuous Development (CI-CD) practices and automating tool stack
Executes story refinement, definition of requirements, and estimating work necessary to realize a story through the delivery lifecycle
Performs spike/proof of concept as necessary to mitigate risk or implement new ideas
Automates manual release activities
Designs, develops, and maintains automated test suites (integration, regression, performance)
Skills:
Application Development
Automation
Influence
Solution Design
Technical Strategy Development
Architecture
Business Acumen
DevOps Practices
Result Orientation
Solution Delivery Process
Analytical Thinking
Collaboration
Data Management
Risk Management
Test Engineering
Required Qualifications:
Track record of delivery on at least one large project in a relevant area (in a PhD or prior job)
Must already have deep experience in computer security, including hands on experience with PKI/Kerberos, keytab etc. SSO technologies, encryption standards. Debugging using tools like Wireshark.
Computer Security background
Public Key Infrastructure
Kerberos
mTLS
Python proficiency
OpenSSL
Understand how to debug security issues using packet sniffers (Wireshark)
Desired Qualifications:
Running a certificate authority (CA)
Linux SA experience
Familiarity with enterprise federation security solution
HSM
KeyVaults
GSSAPI
x509 certificates
Shift:
1st shift (United States of America)Hours Per Week:
40