U.S. Bank Data Security Technical Lead in St. Paul, Minnesota
At U.S. Bank, we're passionate about helping customers and the communities where we live and work. The fifth-largest bank in the United States, we’re one of the country's most respected, innovative and successful financial institutions. U.S. Bank is an equal opportunity employer committed to creating a diverse workforce. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, among other factors.
Job DescriptionU.S. Bank is seeking a technical lead for the Data Security and Insider Threat Strategy team. Our preferred candidate will have extensive experience in data security and Insider Threat technology strategy, design and delivery. Candidates need a deep understanding of data sources, end to end controls and solution integrations critical for the success of the Data Security and Insider Threat Strategy team and overall continuous improvement to reduce the data and insider threat attack surface through technical controls. Successful applicants will seek out, identify and support prioritization of most critical technical needs, as well as work independently, collaboratively and with a focus on tangible results. Successful applications will also exemplify US Bank's ethical principles of uncompromising integrity, respect for others, accountability for decisions and actions, and good citizenship.
Responsibilities: Lead the technology strategy to efficiently detect, investigate and mitigate data security risk across all available solutions with strategic control design.
Understand our current technology solutions, architecture and controls to identify gaps and risks to resolve.
Bring together and lead discussions and/or working sessions across teams to drive toward improved technical outcomes or decisioning, including holding other areas accountable for necessary improvements.
Map the end-to-end control environment to understand where data security risk (and subsequent insider threats) reside across the enterprise, including those owned within the program and across enterprise technology delivery.
Establish core program requirements for data security and insider threat platforms to be applied to new and update technology deployments for the enterprise.
Review, identify and escalate technology design or capability shortcomings that need to be addressed for program maturity.
Articulate the implications of technology risks relative to insider threats, including different categories of insider threats, threat vectors and mitigation solutions.
Evaluate new and proposed security systems and technologies; including participation in technical workstreams for CapEx purchases and timely, effective implementations.
Stay abreast of current technologies, developments, security compliance requirements, standards and industry trends impacting the goals of the team and Information Security Services.
Support technical awareness of end-to-end controls for assessments, audits and regulatory engagements.
Coordinate across teams with security platform engineers, detection engineers and architects and provide technical leadership on behalf of the Program’s objectives. Preferred Skills/Experience:
The ideal candidate will have a well-rounded information security background including a strong understanding of IT risk management, information security controls, industry standards and best practices such as the NIST 800 series, NIST CSF, and ISO 27000 series. The candidate should understand and have experience with the security configuration, as well as various design controls, regulatory, legal and contractual requirements impacting financial institutions (e.g. GLBA, SOX, FFIEC, and PCI). Additional preferred skills and experience relevant to the work include: Strong understanding of data security concepts and end to end control design
Strategic approach to designing controls to secure data in on prem, hybrid and cloud environments (IaaS, PaaS, SaaS, private/public and cloud to cloud)
Strong understanding of access, network, endpoint, email and device controls needed to enable business processes, while minimizing the loss, theft or compromise of data.
Strong understanding of insider threat use cases and industry insider threat models
Strong understanding of log sources and data feeds leveraged for analysis, detection and preventative controls, including audit logs across solutions, servers and clients.
Knowledge of the MITRE Att&ck Framework and application to data security and insider threat concepts
Experience in computer networking, Network administration and/or database administration
Experience designing, implementing, and troubleshooting networked computer systems, including: System integration, hardware requirements, network design, secure network and systems architecture, access controls design and implementation and security policy and standards development
Experience with secure network and systems architecture, design and implementation, intrusion detection, defense and incident response, security configuration management, access controls design and implementation and security policy and standards development
Excellent conceptualization, analytical and logic skills with an ability to troubleshoot and propose new solutions
Ability to look across the enterprise and across technologies to align ownership, analyze potential impacts to processes and systems, and drive efficiency
Experience in user and entity behavioral analytics solutions, SIEMs, machine learning/AI and big data repositories
Industry certifications in information security, CERT Insider Threat, project management and technology auditing including, CISSP, CISM, CGEIT, CISA, GIAC GSEC, and/or PMP
Excellent communication skills, both oral and in written
Subject matter expert in: Data security in on premises, cloud and hybrid environments
Insider threat exploitation of vulnerabilities in the environment and how to leverage controls to mitigate
Information security technologies
Identity & Access controls
SEI Insider Threat Security Reference Architecture
Data Loss Prevention
Information security management
Information security architecture
Information security audits
Network and internet security
Benefits: Take care of yourself and your family with U.S. Bank employee benefits. We know that healthy employees are happy employees, and we believe that work/life balance should be easy to achieve. That's why we share the cost of benefits and offer a variety of programs, resources and support you need to bring your full self to work and stay present and committed to the people who matter most - your family.
Learn all about U.S. Bank employee benefits, including tuition reimbursement, retirement plans and more, by visiting usbank.com/careers.
EEO is the Law Applicants can learn more about the company’s status as an equal opportunity employer by viewing the federal EEO is the Law poster.
E-Verify U.S. Bank participates in the U.S. Department of Homeland Security E-Verify program in all facilities located in the United States and certain U.S. territories. The E-Verify program is an Internet-based employment eligibility verification system operated by the U.S. Citizenship and Immigration Services. Learn more about the E-Verify program.
U.S. Bank is an equal opportunity employer committed to creating a diverse workforce. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, among other factors.