Senior Information Security Engineer - Endpoint Protection Operations

at  US Bank National Association

At U.S. Bank, we’re on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each person is unique in their potential. A career with U.S. Bank gives you a wide, ever-growing range of opportunities to discover what makes you thrive at every stage of your career. Try new things, learn new skills and discover what you excel at—all from Day One.

JOB DESCRIPTION

Gone are the days of the traditional castle wall and mushy interior, in today’s world it’s all about protecting the endpoint.

• Are you a well-rounded IT Professional that is excited about Security?
• Do you enjoy operationalizing endpoint protection capabilities and security controls, making processes more efficient and secure through automation and standardization across multi-OS environments?

The candidate selected for this role will help deliver security controls across all endpoints from Servers to Workstations across the globe to effectively manage risk within U.S. Bank’s information security practice.

BASIC QUALIFICATIONS:

• Bachelor’s degree in Engineering or Science, or equivalent work experience
• Five or more years of experience in information security
• Two or more years of experience in IT infrastructure management, application architecture, risk management, middleware technology, and IT project management

EXPERIENCE SHOULD INCLUDE:

• 2+ years experience with Endpoint Protection technologies on both server and workstation platforms.
• 2+ years experience with Windows, Linux and Mac based application deployment, support and remediation.
• Highly flexible/willing to learn new technologies
• Strong communication, documentation, and collaboration skills
• Highly organized with excellent analytical, problem solving and decision-making skills

PREFERRED SKILLS/EXPERIENCE

• CISSP, or relevant higher level IT certifications
• Solid understanding of AV, Firewall, networking, and EDR (Endpoint Detection and Response) technologies
• At least one operations-specific Associate/Professional certification (e.g. MCSE, MCITP, Microsoft 365 Certified: Security Administrator Associate) and commitment to achieve a security-specific certification within six months (e.g., CISSP or CCSP) of starting date.
  If there’s anything we can do to accommodate a disability during any portion of the application or hiring process, please refer to our disability accommodations for applicants.

THE ROLE OFFERS A HYBRID/FLEXIBLE SCHEDULE, WHICH MEANS THERE’S AN IN-OFFICE EXPECTATION OF 3 OR MORE DAYS PER WEEK AND THE FLEXIBILITY TO WORK OUTSIDE THE OFFICE LOCATION FOR THE OTHER DAYS AT ONE OF THE FOLLOWING LOCATIONS:

• Cincinnati, OH
• Minneapolis, MN
• Charlotte, NC

As part of the Endpoint Protection team this role participates in:

• Following best practices and cybersecurity frameworks
• Ensuring continuous utility and complete coverage of endpoint security controls
• Securing workloads world-wide
• Finding areas of improvement for security controls and related performance.
• Continuous tuning, ongoing integration, feature expansion, reporting, validation, and monitoring of endpoint security controls
• Know the regulatory landscape for public cloud and the implementation patterns required to be compliant.
• Collaborate with the Incident Response team to continuously improve the ability to rapidly detect, contain, investigate, eradicate, and recover from security incidents.

The ideal candidate has a well-rounded and highly technical background with a strong understanding of operating security technologies and security best practices and a strong understanding of end-to-end IT Operations fundamentals

• Familiarity with security frameworks and best practices (e.g., (e.g. ITIL, NIST Cyber Security Framework, MITRE ATT&CK etc.).
• Well-versed in deploying native and third-party technologies to secure endpoint platforms and workloads from on-prem to remote to cloud.
• Technical experience with networks, operating systems, applications, and other aspects of information technology architecture.
• Skilled at communicating technical information to non-technical audiences and stakeholders at every level.

Our approach to benefits and total rewards considers our team members’ whole selves and what may be needed to thrive in and outside work. That’s why our benefits are designed to help you and your family boost your health, protect your financial security and give you peace of mind. Our benefits include the following (some may vary based on role, location or hours):

• Healthcare (medical, dental, vision)
• Basic term and optional term life insurance
• Short-term and long-term disability
• Pregnancy disability and parental leave
• 401(k) and employer-funded retirement plan
• Paid vacation (from two to five weeks depending on salary grade and tenure)
• Up to 11 paid holiday opportunities
• Adoption assistance
• Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by la