U.S. Bank Principal Cloud IAM Engineer in Richfield, Minnesota
At U.S. Bank, we're passionate about helping customers and the communities where we live and work. The fifth-largest bank in the United States, we’re one of the country's most respected, innovative and successful financial institutions. U.S. Bank is an equal opportunity employer committed to creating a diverse workforce. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, among other factors.
Job DescriptionU.S. Bank is seeking engineers and a leader our Cloud Identity and Access Management (IAM) team. We are looking for individual contributors as well as a technical lead, or a manager of the team. These definitely will be hands on roles and you do not need previous formal management experience to apply for the leadership position. As our organization is continuing to grow it's cloud footprint, our IAM team is needing to grow as well. These positions will be on a new team within a larger, established, IAM team that already supports all of the on-prem IAM needs as well as the existing cloud deployments. There are both other leaders and engineers with cloud security experience on the larger team, so we have a great system to help support people transitioning into this new role.
Our teams support the vast enterprise technology footprint at US Bank. Many of us have years of experience supporting Active Directory, Linux, web authentication, SSO, general systems admin work, API security, building automations, as well as experience supporting AWS, GCP, and Azure. This team will primarily focus on developing patterns and templates for cloud deployments, but will also need to support migration efforts from on-prem systems to the cloud. Knowledge of AWS, Azure, or GCP, experience with IAM or Information Security, and experience as an IT or security engineer are all key to this role.
Responsibilities: Help to build the patterns our application and infrastructure teams will use to deploy to the cloud with Infrastructure as Code. Our goal is to have all IAM policies, users, permissions, etc, to be created with code as well.
Work with existing security teams to build scripts and automation to ensure compliance with all IAM requirements.
Work with application and infrastructure teams to implement security best practices within the cloud while engineering solutions to move systems to a cloud provider.
Work with other security teams to evaluate new services from cloud providers, understand the potential usage of those services within our organization, and proactively develop security requirements for those services.
This role has multiple levels, open to candidates with 5+ years of experience within Information Security. The successful candidate will be hired for the level of the position that aligns with their experience.
Principal Basic Qualifications - Bachelor's degree in Engineering or Science, or equivalent work experience - Eight or more years' of experience in information security - Two or more years' of experience in IT infrastructure management, application architecture, risk management, data architecture, middleware technology, and IT operations and project management
Preferred Skills/Experience - 2+ years job-related experience provisioning and managing applications in both virtual and cloud infrastructures (AWS, GCP, or Azure preferred), shell scripting for process automation, experience with templating languages such as Cloud Formation (AWS), ARM (Azure), or Terraform and managing cloud-based systems and/or cloud-native clusters - 2+ years of experience working with DevOps teams and CICD pipelines to support Infrastructure as Code or IAM as Code - Experience with serverless technologies, Kubernetes, Docker, etc.
- Proven experience in working autonomous and take ownership of issue analysis and resolution efforts
- Working knowledge of cloud security principles and techniques including but not limited to elastic network security and cloud-native/PaaS security constructs
Benefits: Take care of yourself and your family with U.S. Bank employee benefits. We know that healthy employees are happy employees, and we believe that work/life balance should be easy to achieve. That's why we share the cost of benefits and offer a variety of programs, resources and support you need to bring your full self to work and stay present and committed to the people who matter most - your family.
Learn all about U.S. Bank employee benefits, including tuition reimbursement, retirement plans and more, by visiting usbank.com/careers.
EEO is the Law Applicants can learn more about the company’s status as an equal opportunity employer by viewing the federal EEO is the Law poster.
E-Verify U.S. Bank participates in the U.S. Department of Homeland Security E-Verify program in all facilities located in the United States and certain U.S. territories. The E-Verify program is an Internet-based employment eligibility verification system operated by the U.S. Citizenship and Immigration Services. Learn more about the E-Verify program.
U.S. Bank is an equal opportunity employer committed to creating a diverse workforce. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, among other factors.