Information Security Specialist

at  US Bank National Association

At U.S. Bank, we’re on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each person is unique in their potential. A career with U.S. Bank gives you a wide, ever-growing range of opportunities to discover what makes you thrive at every stage of your career. Try new things, learn new skills and discover what you excel at—all from Day One.

JOB DESCRIPTION

The Senior Information Security Specialist - Application Onboarding plays a key role in the design, maintenance, and ongoing support of processes related to onboarding new applications within the Identity and Access Management (IAM) platform. This candidate will report into the Workforce Access Management team within the Identity and Access Management department. This position includes consulting with application teams to determine the best integration pattern for their application, executing technical processes to onboard the application into the IAM product, and performing data analysis activities to ensure compliance with key controls.

Primary Responsibilities

• Onboard in-scope applications to the organization’s global standard IAM platform and key controls.
• Consult with application teams to determine the best integration pattern for onboarding into the IAM platform.
• Liaise with application teams to oversee the design and implementation of aggregating the application’s system data into the IAM platform and processes.
• Perform intensive data analysis, testing, and monitoring between application system data and the data aggregated to the IAM platform.
• Investigate and report issues according to procedures and maintain ownership through to resolution.
• Communicate effectively to application teams and stakeholders.
• Support Identity & Access Management controls and processes in accordance with regulatory standards.
• Maintain internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators.
• Effectively communicate status on key deliverables.
• Adhere strictly to compliance and operational risk controls in accordance with regulatory standards, policies and practices; report control weaknesses; compliance breaches and operational loss events

Preferred Skills/Experience

• College degree or equivalent industry experience and certifications, with proficiency in Security Operations Center activities
• One to three years of relevant experience in cybersecurity, or in network or information technology environments

Extensive experience in:

• Application integration patterns such as Active Directory, JDBC, REST API, SCIM, flat file, etc.
• Ability to work with application teams and communicate effectively
• Understanding of the functional components for authentication and authorization mechanisms
• High level of attention to detail and accuracy
• IT standards, procedures, policy, governance, environment
• Information security management, technologies, architecture, audits, administration
• Technical writing/documentation

Subject matter expert in:

• Identity and Access Management (IAM) domain
• Oracle Identity Manager (OIM)
• SailPoint IIQ

Certifications preferred:

• Certified Information System Security Professional

If there’s anything we can do to accommodate a disability during any portion of the application or hiring process, please refer to our disability accommodations for applicants.

Primary Responsibilities

• Onboard in-scope applications to the organization’s global standard IAM platform and key controls.
• Consult with application teams to determine the best integration pattern for onboarding into the IAM platform.
• Liaise with application teams to oversee the design and implementation of aggregating the application’s system data into the IAM platform and processes.
• Perform intensive data analysis, testing, and monitoring between application system data and the data aggregated to the IAM platform.
• Investigate and report issues according to procedures and maintain ownership through to resolution.
• Communicate effectively to application teams and stakeholders.
• Support Identity & Access Management controls and processes in accordance with regulatory standards.
• Maintain internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators.
• Effectively communicate status on key deliverables.
• Adhere strictly to compliance and operational risk controls in accordance with regulatory standards, policies and practices; report control weaknesses; compliance breaches and operational loss event

Our approach to benefits and total rewards considers our team members’ whole selves and what may be needed to thrive in and outside work. That’s why our benefits are designed to help you and your family boost your health, protect your financial security and give you peace of mind. Our benefits include the following (some may vary based on role, location or hours):

• Healthcare (medical, dental, vision)
• Basic term and optional term life insurance
• Short-term and long-term disability
• Pregnancy disability and parental leave
• 401(k) and employer-funded retirement plan
• Paid vacation (from two to five weeks depending on salary grade and tenure)
• Up to 11 paid holiday opportunities
• Adoption assistance
• Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by la