–
160024429
At U.S. Bank, we’re passionate about helping customers and the communities where we live and work. The fifth-largest bank in the United States, we’re one of the country’s most respected, innovative and successful financial institutions. U.S. Bank is an equal opportunity employer committed to creating a diverse workforce. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, disability or veteran status, among other factors.
U.S. Bank is seeking a
Penetration Testing Leader. The Pentest
Senior Information Security Manager
will have extensive penetration testing,
management and policy experience to contribute toward the success of our technology initiatives. Maintains security governance program and/or directs and oversees the development and management of the information security program in alignment with defined strategy and in compliance with governing policy, standards, baselines, and guidelines. Defines, directs, and manages one or more of the major information security program functions. Oversees the management of security programs, projects, and services in support of the function(s). Monitors the regulatory environment for emerging requirements that will effect the Bank’s information security program and initiatives.
Manages and maintains assigned program components to be compliant with policy. Works with senior technology and business management to support understanding of information security risk and satisfaction of due care standards in compliance with legal, regulatory, and contractual obligations and with Bank information security policy. Monitors changes in business, technology, and threat environments and develops strategies for addressing new risks to Bank systems and information. Manages vendor relationships and ensures that appropriate contract provisions are in place for timely updates to address emerging vulnerabilities. Directs the implementation of controls to protect the Bank’s infrastructure from intrusion and from damage caused by malware and other threats. Directs a program of processes and controls to verify the state of security and reduce the likelihood of security incidents. Coordinates reporting and communication with Media Relations, Marketing, and executive management to manage reputational risk. Establishes metrics and performance targets in support of the information security strategy. Designs and implements continuous improvement processes. Maintains and oversees the execution of an incident management process that ensures timely detection, containment, and eradication of threats; recovery from resulting damage; and corrective action to minimize the risk of future incidents. Oversees participation in audit and regulatory examinations and directs initiatives to address findings and meet commitments. Manages staff of up to 50 employees. Recommends: hires, transfers, terminations, salary adjustments, performance standards and reviews. Plans, develops, and controls moderate to large project/product budgets.
Successful applicants will exemplify US Bank’s ethical principles of uncompromising integrity, respect for others, accountability for decisions and actions, and good citizenship.
Leaders at U.S. Bank consistently demonstrate integrity and ethics, maturity and resilience, and inspire trust and confidence among their teams. Our leaders are strong communicators who promote collaborative relationships, influence others, and value the diversity of backgrounds and ideas among their employees.
Qualifications
Basic Qualifications:
-Bachelor’s degree or equivalent work experience
-Certified Information Systems Auditor
-ISACA Certified Information Security Manager
-Certified Information System Security Professional
-At least 10 years experience with processes, tools, techniques and practices for assuring adherence to standards associated with accessing, altering and protecting organizational data.
-At least 6 years experience with management approaches, tools, and techniques for gaining the cooperation and support of others.
Preferred Skills/Experience:
Extensive experience in:
– Master’s degree
-IT: business in a business
Subject matter expert in:
-IT environment
-Information assurance
-Technical/financial knowledge
-Information security administration
-Network and internet security
-IT standards, procedures, policy
-IT governance
-Product and vendor evaluation
-Information security management
-Information security technologies
-Information security architecture
-Information security audits
Job
Information Technology
Primary Location
United States
Shift
1st – Daytime
Travel
Yes, 5 % of the Time
Average Hours Per Week
40
EmoticonEmoticon