U.S. Bank Cyber Defense Data Protection Engineer - Remote in Sacramento, California
At U.S. Bank, we're passionate about helping customers and the communities where we live and work. The fifth-largest bank in the United States, we’re one of the country's most respected, innovative and successful financial institutions. U.S. Bank is an equal opportunity employer committed to creating a diverse workforce. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, among other factors.
The Data Protection Operations Engineer is a critical role within the Information Security Technology Operations team, focused on identifying and protecting sensitive bank information from threats and misuse. The incumbent will focus on enabling database monitoring activity within the Cyber Defense Operations Team. The role includes alerting/detection and complex security attack event correlation services, report creations and brings new database sources onboarded into the DAM tools. The incumbent will be part of the team that manages tools and technologies pertinent to securing sensitive data in transit and at rest using Database Monitoring, Cloud Access Security Broker (CASB), Data Leakage Protection (DLP), Data Classification, Tokenization, and Encryption technologies. The position will perform as a lead subject matter expert (SME) for data protection technologies, including the oversight and improvement of solution health, performance, stability, and ongoing support. Additional responsibilities include creating reports, writing documentation, implementing organizational policies, and ensuring implemented solutions meet the security requirements for supported projects and initiatives.
Serve as a Level 3 SME for the pertinent technologies.
Perform management activities such as implementation, monitoring, periodic access reviews, licensing attestations, capacity planning, scalability testing, fail-over testing, backup/recovery planning, disaster recovery and audit compliance.
Implement tasks/projects critical to the organization’s data protection technologies.
Perform analysis of events/incidents to identify and enhance Database Monitoring and Tokenization / Encryption controls
Research and document security best practices to proactively identify security gaps including vendor review, technology evaluations, demos, and proof of concept trials.
Identify, isolate, and document solution defects and work with the owner/vendor to bring issues to resolution.
Create and regularly evaluate process, quality control, and configuration management documentation.
Instruct, monitor, and mentor L1/L2 resource personnel and team(s) to assist in streamlining operational activities and processes.
Develop, manage, and maintain DAM tool / coverage metrics, appropriate change management and risk records
Minimize software vulnerabilities for pertinent technologies by the regular review and implementation of software patches, certificate updates, and configuration changes
Partner with engineering to plan and implement application upgrades for pertinent technologies
Partner with other teams to ensure the successful deployment of security tools (e.g.: Business lines, Network Operations, Database Mgmt, Risk Mgmt, Audit/Compliance, other ISS teams, Mid-Range Server Teams, Mainframe Server Teams, etc.) across multiple time-zones and countries
Participate in an on-call rotation.
Participate in disaster recovery exercises.
Required Skills –
6+ years of proven success in a similar security role.
Prior experience with database management or database activity monitoring solutions.
Familiarity with Relational databases as well as SQL skills.
Experience in creating and maintaining detailed technical writing including process, procedure, and change control record documentation.
Top Skills -
Strong tuning and operational experience with DAM monitoring tools (Imperva, Guardium)
Strong tuning and operational experience with Data Tokenization tools (Voltage)
Other Preferred Skills -
CISSP, GIAC, CISA, or other appropriate certifications a plus.
Project management skills.
Security and IT metrics experience a plus; report creation abilities strongly desired.
Experience with process automation and/or scripting (i.e. XML, C++, VBA, Regular Expressions, Python, PERL, Power Shell, etc.).
Knowledge of cloud computing platforms such as Google Cloud, Amazon AWS, and Microsoft Azure
Experience with audit related frameworks, such as the NIST Cyber Security Framework and Common Control Framework.
Familiarity with common industry best practices (ITIL, SDLC, AGILE, COBIT).
Familiarity with financial services industry rules and regulations (PCI, SOX, GLBA, BASEL).
A strong understanding of tiered defense-in-depth security design.
Detailed technical knowledge of security engineering and operations.
Knowledge of database concepts such as SQL (DML/DQL/DCL) and clustering.
Familiarity with data tokenization and encryption.
Familiarity with Big Data environments and/or Big Data security solutions.
Confident ability to recognize security events of interest that may require improved detection/alerting capabilities.
Experience with Windows and/or Linux/Unix Servers and numerous databases.
Experience in routing and switching technologies.
Familiar with technologies in the security monitoring, event correlation and alert/detection space.
Experience creating reports and dashboards for metrics/KPIs.
Effectively communicate technical information to non-technical audiences and influence others to comply with policies/conform to standards and best practices.
Excellent organizational, time management and interpersonal skills.
The ability to prioritize work efforts between operational tasks and strategic efforts.
A strong customer focus, with the ability to manage expectations appropriately, provide a superior customer/client experience and build long-term relationships.
Strong attention to detail and process.
If there’s anything we can do to accommodate a disability during any portion of the application or hiring process, please refer to our disability accommodations for applicants (https://careers.usbank.com/global/en/disability-accommodations-for-applicants) .
Learn how the way we work at U.S. Bank (https://assets.phenompeople.com/CareerConnectResources/prod/UBNAGLOBAL/documents/Thewaywework-1666895142717.pdf) drives meaningful relationships with our customers and collaboration across the company.
Take care of yourself and your family with U.S. Bank employee benefits. We know that healthy employees are happy employees, and we believe that work/life balance should be easy to achieve. That's why we share the cost of benefits and offer a variety of programs, resources and support you need to bring your full self to work and stay present and committed to the people who matter most - your family.
Learn all about U.S. Bank employee benefits, including tuition reimbursement, retirement plans and more, by visiting careers.usbank.com (https://careers.usbank.com/global/en/benefits) .
EEO is the Law
Applicants can learn more about the company’s status as an equal opportunity employer by viewing the federal EEO is the Law (https://www.dol.gov/sites/dolgov/files/ofccp/regs/compliance/posters/pdf/eeopost.pdf) poster.
U.S. Bank participates in the U.S. Department of Homeland Security E-Verify program in all facilities located in the United States and certain U.S. territories. The E-Verify program is an Internet-based employment eligibility verification system operated by the U.S. Citizenship and Immigration Services. Learn more about the E-Verify program (https://careers.usbank.com/verification-of-eligibility-for-employment) .
The salary range reflects figures based on the primary location, which is listed first. The actual range for the role may differ based on the location of the role. In addition to salary, US Bank offers a comprehensive benefits package, including incentive and recognition programs, equity stock purchase 401k contribution and pension (all benefits are subject to eligibility requirements). Pay Range: $105,230.00 - $123,800.00 - $136,180.00
Due to legal requirements, U.S. Bank requires that the successful candidate hired for some positions be fully-vaccinated for COVID-19, absent being granted an accommodation due to a medical condition, pregnancy, or sincerely held religious belief or other legally required exemption. For these positions, as part of the conditional offer of employment, the successful candidate will be asked to provide proof of vaccination or approval for an accommodation or exemption upon hire.
U.S. Bank will consider qualified applicants with criminal histories in a manner consistent with the San Francisco Fair Chance Ordinance.
U.S. Bank is an equal opportunity employer committed to creating a diverse workforce. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, among other factors.