U.S. Bank Information Security Engineer - Key Management - Knoxville, TN in Knoxville, Tennessee
At U.S. Bank, we're passionate about helping customers and the communities where we live and work. The fifth-largest bank in the United States, we’re one of the country's most respected, innovative and successful financial institutions. U.S. Bank is an equal opportunity employer committed to creating a diverse workforce. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, among other factors.
Job DescriptionImplements and supports solutions/technologies: network proxies, intrusions, detection/prevention systems, remote access, second factor authentication, security event monitoring, infrastructure and system hardening, patch deployment and vulnerability management. Performs the daily operation and execution of security-related tools, processes and controls related to cyber defense initiatives. Helps coordinate and drive remediation of identified risks and control deficiencies. Looks for ways to optimize security processes and recommend opportunities and solutions for improvement and automation. Serves as technical and function subject matter expert across multiple security domain areas, raising awareness and communicating security risks within the company. Supports and participates in incident response and technical investigations as needed. Ensures adherence to compliance regulations and policies.
Basic Qualifications - Bachelor's degree in Engineering or Science, or equivalent work experience - Five or more year of experience in information security - Two or more years of experience in IT infrastructure management, application architecture, risk management, middleware technology, and IT project management
Preferred Skills/Experience Detailed project management skills
Advanced understanding of Microsoft offices tools
Ability to communicate clearly; orally and written, with all levels of staff and management on the topic of cryptographic key management
Technical aptitude on PC operations, Payment terminals, ATMs, Host to Host networking, Cloud computing
Experience with HSMs (hardware security module), AWS, GCP, Azure and Salesforce a plus
Excellent organizational skills
Working knowledge of Payments and Banking Industry regulatory requirements
Basic understanding of symmetric and asymmetric cryptography and their specific key management practices a plus.
Security / Governance Responsibilities: Ensures key management processes are in alignment with U.S. Bank, Elavon, and industry standards and policies.
Maintains accurate records around key management including metadata for all types of cryptographic keys, security appliances / systems, and storage / transfer media, etc.
Oversees key lifecycle events for cryptographic keys and systems across Elavon and U.S. Bank environments.
Monitors and oversees key management roles and assignments, including Key Administrators, Key Custodians, and resources in multiple data centers.
Clearly communicate / educate key management regulations and requirements across Elavon and U.S Bank teams / locations / resources; including, but not limited to: Key management practices, policies, and guidelines
Industry regulations and standards
Technology advances within Payments and Banking Industry
Key Custodians and other resources as needed around their key management duties.
Ensures proper separation of duties for cryptographic systems and key lifecycle administration.
Coordinates periodic disaster recovery, incident response exercises, audits, and risk assessments.
Works closely with leaders and various teamsto ensure proper governance of key management is being maintained.
Coordinate and oversee key management events / activities globally.
Participate as Subject Matter Expert in internal and external compliance audits.
Coordinate and perform as required, internal team QA and QCP processes.
Manage and ensure compliance of 3rd party Key Management Service Providers.
SME on industry and regulatory requirements for cryptographic key and PIN management. (I.e. NIST, FIPS, PCI PIN, PCI DSS, PCI P2PE, etc.).
Benefits: Take care of yourself and your family with U.S. Bank employee benefits. We know that healthy employees are happy employees, and we believe that work/life balance should be easy to achieve. That's why we share the cost of benefits and offer a variety of programs, resources and support you need to bring your full self to work and stay present and committed to the people who matter most - your family.
Learn all about U.S. Bank employee benefits, including tuition reimbursement, retirement plans and more, by visiting usbank.com/careers.
EEO is the Law Applicants can learn more about the company’s status as an equal opportunity employer by viewing the federal EEO is the Law poster.
E-Verify U.S. Bank participates in the U.S. Department of Homeland Security E-Verify program in all facilities located in the United States and certain U.S. territories. The E-Verify program is an Internet-based employment eligibility verification system operated by the U.S. Citizenship and Immigration Services. Learn more about the E-Verify program.
U.S. Bank is an equal opportunity employer committed to creating a diverse workforce. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, among other factors.