Information Security Director - Cyber Threat Intelligence_

Charlotte

At U.S. Bank, we’re on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each person is unique in their potential. A career with U.S. Bank gives you a wide, ever-growing range of opportunities to discover what makes you thrive at every stage of your career. Try new things, learn new skills and discover what you excel at—all from Day One.

**Job Description**

U.S. Bank is seeking an Information Security Director with demonstrated competence and visionary leadership experience in the cyber threat intelligence (CTI) arena. The CTI manager will oversee the development, maintenance, and day-to-day operations of the cyber threat intelligence program. The Manager will enhance all CTI lifecycles, tooling, and processes, to include, the identification, analysis, and dissemination of current and emerging threat indicators.

This position is a leadership role within the Information Security Service (ISS) organization at U.S. Bank. Leads a group of security engineers, analysts, or specialists in the threat intelligence domain. The successful candidate demonstrates a wealth of knowledge around cyber threat intelligence processes, vendors, dissemination, and action of key intelligence indicators. This position is a highly visible role and the has a history of building programs and delivering impactful results. Responsibilities include providing coaching and support to the growth of the team, evaluating capacity within the team, increasing skills and training, and playing a stakeholder role on prioritization of work with the appropriate product manager as needed. As a people manager, participating on strategic initiatives that impact the overall bank strategy will be tasked as necessary.

**_The role offers a hybrid/flexible schedule, which means there’s an in-office expectation of 3 or more days per week and the flexibility to work outside the office location for the other days at one of the following locations:_**

+ Washington, DC

+ Cincinnati, OH

+ Minneapolis, MN

+ Charlotte, NC

Responsibilities:

+ Manage, empower, and lead a team of cyber threat analysts.

+ Mature our threat intelligence strategy and framework.

+ The manager will maintain policy and set the strategic priorities within the team for securing the Bank's systems and information.

+ Directs and leads development, implementation, and enforcement of organization-wide threat intelligence policies and procedures.

+ Monitors regulatory environment for emerging requirements that will affect the Bank's information security program and initiatives. Updates the policy and the program to support compliance.

+ Evaluates security requirements in context with other business requirements, and recommends measures to manage risk and adequately secure information systems.

+ Monitors changes in business, technology, and threat environments to identify and develop strategies for addressing new risks to Bank systems and information.

+ Establishes security monitoring practices for all platforms across the enterprise.

+ Directs and oversees maintenance of programs to manage risks to the Bank's network, systems, and data from malware, network intrusion, and other threats.

+ Assesses the risk associated with newly discovered vulnerabilities and directs the application of vendor-supplied patches to manage risk.

+ Assesses cost of potential threats relative to cost of solutions required to eliminate or minimize threats.

+ Manages outsourced security contracts and/or contractors.

+ Serves as liaison to internal and external auditors, regulators, and customers in examinations of the Bank's threat intelligence program. Monitors all phases of audits to ensure progress according to audit plan; monitors status of ongoing reviews.

+ Will manage staff of up to 10 employees. Recommends: hires, transfers, terminations, salary adjustments, performance standards and reviews.

Basic Qualifications

+ Bachelor's degree or equivalent work experienceAt least 10 years experience with management approaches, tools, and techniques for gaining the cooperation and support of others.At least 10 years experience with processes, tools, techniques and practices for assuring adherence to standards associated with accessing and disseminating cyber threat intelligence information throughout an organization.

Subject matter expert in:

+ Security regulations and requirements

+ Threat intelligence / sharing platforms

+ Information assurance

+ Technical/financial knowledge

+ Network and internet security

+ IT standards, procedures, policy, governance, environment

+ Product and vendor evaluation

+ Information security management, technologies, architecture, audits, administration

If there’s anything we can do to accommodate a disability during any portion of the application or hiring process, please refer to our disability accommodations for applicants (sbank.com/global/en/disability-accommodations-for-applicants) .

**Benefits:**

Our approach to benefits and total rewards considers our team members’ whole selves and what may be needed to thrive in and outside work. That's why our benefits are designed to help you and your family boost your health, protect your financial security and give you peace of mind. Our benefits include the following (some may vary based on role, location or hours):

+ Healthcare (medical, dental, vision)

+ Basic term and optional term life insurance

+ Short-term and long-term disability

+ Pregnancy disability and parental leave

+ 401(k) and employer-funded retirement plan

+ Paid vacation (from two to five weeks depending on salary grade and tenure)

+ Up to 11 paid holiday opportunities

+ Adoption assistance

+ Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law

**EEO is the Law**

U.S. Bank is an equal opportunity employer committed to creating a diverse workforce. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, among other factors. Applicants can learn more about the company’s status as an equal opportunity employer by viewing the federal **KNOW YOUR RIGHTS (ov/sites/default/files/2023-06/22-088\_EEOC\_KnowYourRights6.12ScreenRdr.pdf)** EEO poster.

**E-Verify**

U.S. Bank participates in the U.S. Department of Homeland Security E-Verify program in all facilities located in the United States and certain U.S. territories. The E-Verify program is an Internet-based employment eligibility verification system operated by the U.S. Citizenship and Immigration Services. Learn more about the E-Verify program (sbank.com/verification-of-eligibility-for-employment) .

The salary range reflects figures based on the primary location, which is listed first. The actual range for the role may differ based on the location of the role. In addition to salary, U.S. Bank offers a comprehensive benefits package, including incentive and recognition programs, equity stock purchase 401(k) contribution and pension (all benefits are subject to eligibility requirements). Pay Range: $139,740.00 - $164,400.00 - $180,840.00

Job postings typically remain open for approximately 20 days of the posting date listed above, however the job posting may be closed earlier should it be determined the position is no longer required due to business need. Job postings in areas with a high volume of applicants, such as customer service, contact center, and Financial Crimes investigations, remain open for approximately 5 days of the posting listed date.