Principal Security Engineer - CSIRT - U.S. Bank Cincinnati, OH, USA; Minneapolis, MN Bookmark Share Print 582 2 1

Listing Description

US Bank is looking for an experienced computer security incident responder to join the existing Computer Security Incident Response Team (CSIRT) staff, and be primarily responsible for ensuring the incident response capabilities in cloud environments.  In order to succeed, the qualified candidate must have demonstrable expertise in delivering capabilities to investigate and respond to security incidents in the major cloud environments. They will work in partnership with other information security teams and development teams.

Responsibilities include:

§  Investigating potential cybersecurity incidents

§  Developing response processes and training security operations staff

§  Reviewing and tracking detected events to identify new exploits, threats and mitigation strategies, and enforce incident reporting standards

§  Leading in-depth technical analysis of new and emerging information security threats

§  Analyzing threats and vulnerabilities to determine their impact to the bank's operations

§  Assisting with investigations and eDiscovery efforts involving court-proven forensic processes and technologies

§  Ability to assess, contain, eradicate and recover systems associated with compromises, whether network, Windows, or *NIX.

Skills and Experience:

·      Expertise in security logging, monitoring and event management tools

·      Expertise in log analysis, packet analysis

·      CISSP, CHFI, CEH or similar certification is preferred but not required

·      Experience in the financial sector is preferred but not required

·      Malware reverse engineering skills are desirable but not required

·      Minimum of 4 years experience with incident response/incident handling

·      Minimum of 2 years experience with major cloud environments such as AWS, Azure and GCP

·      Minimum of 2 years experience with major cloud environments such as AWS, Azure and GCP

·      Demonstrable proficiency with cloud tools and investigations, threat intelligence platforms, security automation and orchestration, capture the flag events and red/blue/purple team activities

·      Demonstrable proficiency with cybersecurity frameworks such as NIST 800-53. MITRE ATT&CK, threat hunting diamond model, and cyber kill chains.

US Bank has a comprehensive total compensation package that includes base salary, bonuses and benefits.  These will be discussed with HR during the interview process.  This total compensation package can fluctuate depending on candidate's experience.

We are looking for team members located in the Cincinnati market to work in our brand new, state-of-the-art fusion center.  We also have no qualms about hiring talent where they are located.