U.S. Bank Job - 32276374 | CareerArc
  Search for More Jobs
Get alerts for jobs like this Get jobs like this tweeted to you
Company: U.S. Bank
Location: Richfield, MN
Career Level: Associate
Industries: Banking, Insurance, Financial Services


U.S. Bank is seeking a senior level Information Security Specialist with lead and threat and vulnerability experience to contribute toward the success of our technology initiatives. Responsible for providing technical expertise in development and support of all activities, processes, and tools for protecting technology-based information. Provides team leadership for security staff on a daily basis. Educates, trains, and supports end-users and ISS staff in good security practices and procedures. Facilitates training process by recommending and researching opportunities for the team. Approves recommended changes to security policies/procedures. Provides technical support to clients, management, security administrators, and network operations. Leads the team in the identification of gaps in coverage for potential threats against the Bank and recommends tools to fill those gaps. Notifies IT operations groups of vulnerabilities within their systems, raises awareness of security alerts that could affect systems they manage, and provides recommendations on mitigating/removing the vulnerabilities. Develops guidelines for the usage, control, maintenance, and auditability of information and computer resources. Provides implementation support for risk assessment and data security procedures and products. Conducts the risk analysis and assessment of threats to the security of the Bank's network, systems, or information. Reviews the identification of network security issues and coordinates the response in accordance with the Security Incident Management Plan. Conducts forensic analysis and investigations. Updates and maintains the Security Incident Management Plan. Provides guidance on vulnerability assessments to help the organization develop security standards and procedures that support strategic, tactical, and operational objectives on a cost-effective basis. Reviews, develops, tests, and implements data security-related infrastructure for team tools, security plans, products, and control techniques. Provides analysis and implementation of complex project access requests. Works with business lines to identify initial access security requirements. Identifies possible solutions to satisfy customer requirements and security policy standards. Provides guidance to junior and senior staff as appropriate.


Basic Qualifications
- Bachelor's degree or equivalent work experience
- At least five years of experience with the processes, tools, techniques and practices for assuring adherence to quality standards associated with developing, enhancing and operationalizing application systems and databases

Preferred Skills/Experience
- Experience securing AWS, GCP, and/or Azure – Identity and Access Management
- Experience using\supporting Azure AD Connect and or Microsoft Identity Manger
- Experience using\supporting Google Cloud Directory Sync
- Experience with using Terraform and reviewing code
- Experience Securing Active Directory\Windows
- Experience with Powershell, Python or other scripting language

Extensive experience in:
- Information security technologies
- Information security management
- Technical writing/documentation
- Change control
- Product and vendor evaluation
- IT environment
- IT standards, procedures, policy
- Information security audits
- Information security architecture

Subject matter expert in:
- Information security administration

 Apply on company website