U.S. Bank
Overview
Join to apply for the
Senior Information Security Architect
role at
U.S. Bank . U.S. Bank is seeking a Senior Information Security Architect with influencing skills and implementation experience to contribute toward the success of our technology initiatives. The role provides leadership on definitions of security architecture, including the development and implementation of secure administration processes for all platforms. The candidate will develop and recommend security designs and frameworks for technology systems by defining processes and architecture for creating secure networks, building firewalls, and implementing intrusion-detection systems. The role serves as an internal information security consultant to the organization and participates on projects to recommend secure solutions based on policies, standards and best practices. Responsibilities Define target-state architecture for internal ISS security tools and systems. Lead strategic technology efforts (e.g., Cloud adoption and AI platform) to define secure platforms, threats and countermeasures. Collaborate with business line leads and platform owners to onboard new technologies and services securely. Participate in Information Security audits of the bank's external vendor/service providers in compliance with auditing standards and requirements. Provide information security subject matter expertise in risk assessments and vendor security risk management, including field visits to third-party locations. Consult with business lines and IT Development Groups on security questions, design, and ISS security exception requests. Maintain awareness of emerging industry security technologies, regulatory issues, and practices.
Experience, Qualifications and Skills
Experience in Cloud Security with public Cloud (PaaS and IaaS) security (5+ years). Threat-modeling experience (2+ years). Architecture Framework experience (2+ years) with enterprise security architecture. Architecture Modeling experience with industry standards (2+ years). Experience in a highly regulated environment (3+ years). Artificial Intelligence security experience (1 year). Bachelor's degree or equivalent work experience. At least seven years of experience with processes, tools, techniques, and practices for assuring adherence to data standards and protection. Preferred: Extensive skills in Azure and AWS; proficiency with Mitre frameworks (Atlas); knowledge of Enterprise or Security Architecture Frameworks (TOGAF, Zachman, BAIT, SABSA). Knowledge of industry and regulatory regulations (NIST, FFIEC, PSD2, GLBA, GDPR, SOX, HIPAA) with strong PCI and FedRAMP knowledge. Ability to create threat-models using Mitre and architect auditable controls. Certifications: ISACA Certified Information Security Manager; Certified Information Systems Auditor; Certified Information System Security Professional. Subject matter expertise in information assurance, network and internet security, information security audits, architecture, technologies, and management.
Job Details
Seniority level: Mid-Senior level Employment type: Full-time Job function: Information Technology Industries: Banking
Other Information
The role offers a hybrid/flexible schedule with an in-office expectation of 3 or more days per week and the flexibility to work remotely for the remaining days. Benefits and equal opportunity statements, E-Verify information, and compliance notices are provided in the reference material. U.S. Bank is an equal opportunity employer and participates in the E-Verify program where applicable. Note
Posting may be closed earlier due to high volume of applicants. #J-18808-Ljbffr
Join to apply for the
Senior Information Security Architect
role at
U.S. Bank . U.S. Bank is seeking a Senior Information Security Architect with influencing skills and implementation experience to contribute toward the success of our technology initiatives. The role provides leadership on definitions of security architecture, including the development and implementation of secure administration processes for all platforms. The candidate will develop and recommend security designs and frameworks for technology systems by defining processes and architecture for creating secure networks, building firewalls, and implementing intrusion-detection systems. The role serves as an internal information security consultant to the organization and participates on projects to recommend secure solutions based on policies, standards and best practices. Responsibilities Define target-state architecture for internal ISS security tools and systems. Lead strategic technology efforts (e.g., Cloud adoption and AI platform) to define secure platforms, threats and countermeasures. Collaborate with business line leads and platform owners to onboard new technologies and services securely. Participate in Information Security audits of the bank's external vendor/service providers in compliance with auditing standards and requirements. Provide information security subject matter expertise in risk assessments and vendor security risk management, including field visits to third-party locations. Consult with business lines and IT Development Groups on security questions, design, and ISS security exception requests. Maintain awareness of emerging industry security technologies, regulatory issues, and practices.
Experience, Qualifications and Skills
Experience in Cloud Security with public Cloud (PaaS and IaaS) security (5+ years). Threat-modeling experience (2+ years). Architecture Framework experience (2+ years) with enterprise security architecture. Architecture Modeling experience with industry standards (2+ years). Experience in a highly regulated environment (3+ years). Artificial Intelligence security experience (1 year). Bachelor's degree or equivalent work experience. At least seven years of experience with processes, tools, techniques, and practices for assuring adherence to data standards and protection. Preferred: Extensive skills in Azure and AWS; proficiency with Mitre frameworks (Atlas); knowledge of Enterprise or Security Architecture Frameworks (TOGAF, Zachman, BAIT, SABSA). Knowledge of industry and regulatory regulations (NIST, FFIEC, PSD2, GLBA, GDPR, SOX, HIPAA) with strong PCI and FedRAMP knowledge. Ability to create threat-models using Mitre and architect auditable controls. Certifications: ISACA Certified Information Security Manager; Certified Information Systems Auditor; Certified Information System Security Professional. Subject matter expertise in information assurance, network and internet security, information security audits, architecture, technologies, and management.
Job Details
Seniority level: Mid-Senior level Employment type: Full-time Job function: Information Technology Industries: Banking
Other Information
The role offers a hybrid/flexible schedule with an in-office expectation of 3 or more days per week and the flexibility to work remotely for the remaining days. Benefits and equal opportunity statements, E-Verify information, and compliance notices are provided in the reference material. U.S. Bank is an equal opportunity employer and participates in the E-Verify program where applicable. Note
Posting may be closed earlier due to high volume of applicants. #J-18808-Ljbffr