U.S. Bank Senior Manager - Threat Informed Defense Technologies - Telecommute in Boise, Idaho
At U.S. Bank, we're passionate about helping customers and the communities where we live and work. The fifth-largest bank in the United States, we’re one of the country's most respected, innovative and successful financial institutions. U.S. Bank is an equal opportunity employer committed to creating a diverse workforce. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, among other factors.
Job DescriptionSummaryU.S. Bank is seeking a Senior Information Security Manager with demonstrated competence and visionary leadership experience to contribute toward the success of our technology initiatives. In this role, you will lead a team of security engineers who are responsible for supporting our security optimization platform and security engineers who build assurance programs for that platform. The ability to be hands on with the systems supported by this group while coaching this team to a high level of performance is critical to the success of this role.
Responsibilities Directs and oversees day-to-day operation and effectiveness of security-related programs and initiatives. Directs and leads development and implementation of organization-wide solutions in compliance with policy. Works with development and infrastructure support management to ensure that processes and programs are in place to support business critical systems. Updates the program and supporting documentation to support compliance. Evaluates security requirements in context with other business requirements and recommends measures to manage risk and adequately secure information systems. Monitors changes in business, technology, and threat environments to identify and develop strategies for addressing new risks to Bank systems and information. Manages vendor relationships for solutions or systems within their portfolio. Responsible for recruiting and developing top technical talent to support operational expansion of programs in their portfolio. Recommends: hires, transfers, terminations, salary adjustments, performance standards and reviews.
Essential Job FunctionsReview and analyze open source datasets to find threat information and use it to provide value to U.S. Bancorp via security optimization platform. Own and manage the relationship with MITRE’s Center for Threat Informed Defense. Lead the effective expanse of program development within the security optimization platform. Prepare assessments and cyber threat profiles of current events based on collection, research and analysis of open source information provided by ISS Cyber Threat Intelligence. Partner with peers to develop and test technology integrations used for automation and enrichment. Apply technical knowledge of security architectures, tools, and controls to enrich assurance programs within security optimization platform. Develop and maintain assurance programs within the security optimization platform that can be used in preparation of red team exercises. Apply knowledge of current cyber threats and the associated tactics, techniques, and procedures used to infiltrate computer networks to determine strategic roadmap for the team and associated tools. Maintain or develop professional contacts in the various communities in support of operations.
Required QualificationsSubject matter expertise (SME) in system engineering and offensive security functions such as penetration testing or Red Team operations. Required: BA/BS degree in IT, Computer Science, or equivalent experience. Candidates without a degree are encouraged to apply and will be assessed on a case by case basis related to their work experience and accomplishments. 12+ years of industry experience with hands-on security engineering experience 10+ years managing and building teams (including coaching and mentoring) 5+ years of experience communicating technical concepts to a non-technical audienceThis experience can include one or more of the following cyber-security functions: Cyber Threat Intelligence, Threat Hunting, System Administration, Intrusion Detection/Prevention, Monitoring, Incident Response, Digital Forensics, Red Team Operations or Vulnerability Management.
Prior experience as a technical subject matter expert that has worked across organizational boundaries to analyze threats to their organization’s infrastructure and services. Preferred QualificationsWorking knowledge of: Advanced cyber threats, threat vectors, attacker methodology to include, tools, tactics, and procedures and how they tie into Cyber Kill Chain or ATT&CK framework, Diamond Model etc. Cloud services and their attack surface. Malicious code and how technical vulnerabilities are exploited. Python, and PowerShell programming skills highly desirable.
Experience with: Malware detection and analysis using static and dynamic malware analysis methods. Commercial threat intelligence tooling and/or open source intelligence techniques. Disseminating information in accordance with TLP classification and handling protocols, to the sector through the appropriate mechanisms. Developing tools to enhance cyber-threat intelligence capabilities. Monitoring or understanding deep dark web forums is a plus.
Benefits: Take care of yourself and your family with U.S. Bank employee benefits. We know that healthy employees are happy employees, and we believe that work/life balance should be easy to achieve. That's why we share the cost of benefits and offer a variety of programs, resources and support you need to bring your full self to work and stay present and committed to the people who matter most - your family.
Learn all about U.S. Bank employee benefits, including tuition reimbursement, retirement plans and more, by visiting usbank.com/careers.
EEO is the Law Applicants can learn more about the company’s status as an equal opportunity employer by viewing the federal EEO is the Law poster.
E-Verify U.S. Bank participates in the U.S. Department of Homeland Security E-Verify program in all facilities located in the United States and certain U.S. territories. The E-Verify program is an Internet-based employment eligibility verification system operated by the U.S. Citizenship and Immigration Services. Learn more about the E-Verify program.
Salary range reflected is an estimate of base pay and is for the primary location. Base pay range may vary if an offer is made for work in a different location. Pay Range: $117,385.00 - $138,100.00 - $151,910.00
U.S. Bank is an equal opportunity employer committed to creating a diverse workforce. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, among other factors.