U.S. Bank is seeking an experienced Merger and Acquisition Senior IAM Information Security Engineer with demonstrated competence and thought leadership capability to contribute toward the success of our technology initiatives. This position is responsible to collaborate with IAM stakeholders, and support user's access and authorization entitlement, and monitoring of activities within the organization for applications, data, and systems.
? Serve as the senior SME for the pertinent IAM technologies.
? As applicable, perform IAM service support activities such as design, implementation, monitoring, and audit compliance.
? Support operationalization and continuous optimization of IAM security solution capabilities through tuning and enhancements that align with identified threats and overall organizational risk appetite.
? As required, correlate, direct, design, and deploy (as applicable) Directory Service (AD, LDAP, CIAM, MFA, etc.) requirements to support integrate solutions.
? Support IAM security requirements with sustainable IAM processes and procedures to ensure transformation integration continuity.
? Support IAM monitoring of user/system account activity on the network; to include laptops, workstations, servers, printers and network devices.
? Support IAM security integration and monitoring for remote access technologies, multi-factor authentication, single-sign-on, etc.
? Verify logs from devices on the network sent to SIEM for correlation and alerting of IAM events.
? Monitor and investigate IAM alerts arising from the SIEM.
? Participate in and support \"incident response\" team efforts and other security investigation activities as assigned.
? Assist in extending IAM related SOC and CSIRT processes, procedures and training.
? Perform analysis of IAM events/incidents and provide remediation suggestions to relevant owners.
? Identify, isolate, and document solution defects and work with the owner/vendor to bring issues to resolution.
? Create and regularly evaluate process, quality control, and configuration management documentation.
? Partner with other teams to ensure the successful deployment of security tools (e.g., Business lines, Network Operations, Risk Management, Audit/Compliance, other ISS/IPS teams etc.)
? Participate as an on-call resource.
- Bachelor's degree in Engineering or Science, or equivalent work experience
- Five or more year of experience in information security
- Two or more years of experience in IT infrastructure management, application architecture, risk management, middleware technology, and IT project management
? 5 years of proven success in a similar security or operations role.
? Operational/engineering experience with Directory Service (AD, LDAP, NFS, etc.) solutions
? Technical knowledge of Certificate of Authority/PKI services and solutions
? Technical knowledge of tokenization, encryption, and key management solutions.
? Experience with Linux/Unix Servers or Windows Servers.
? Understanding of tiered defense security design.
? Knowledge of data governance and management practices.
? Knowledge of SSO protocols, e.g., SAMLv1-2, OAuth, CAS, Active Directory Federated Services (ADFS), etc.
? Knowledge of security/network engineering and operations.
? Knowledge of networking concepts and technologies.
? Confident ability to recognize security events of interest that may require improved detection/alerting capabilities.
? Familiarity with monitoring, event correlation and alert/detection technologies.
? Familiarity with common industry best practices e.g., SABSA, TOGAF, ITIL, SDLC, AGILE.
? Understanding of information security and incident response tools and technologies.
? Experience creating reports and solutions to capture metrics/KPIs.
? Effectively communicate technical information to non-technical audiences and influence others to comply with policies/conform to standards and best practices.
? Exceptional documentation and writing skills.
? Excellent organizational, time management and interpersonal skills.
? Strong attention to detail and process.
? Willing to work non-traditional hours when necessary.
? Project management skills.
? Systems integration experience.
? CISSP, GIAC, CISA, or other appropriate certifications.
? Experience with Human based penetration testing of core builds e.g., leveraging standard tool such as NMAP, Nessus, IDA pro, Burpsuite, Kali-linux, Metasploit, Wireshark, SecureCRT and/or Putty.
? Experience performing automated and manual offensive penetration testing using industry standards tools such as those listed above.
? Experience with Fortify SAST and WebSense DAST code analysis tools
? Experience with process/test automation, development and/or scripting e.g., REST, Java, Ruby, Python, Power/Unix Shell, etc.
? Experience with audit related frameworks, such as the MITRE Security Framework, ISO\\IEC27001, COBIT, NIST Cyber Security Framework, and Common Control Framework.
**Job:** Information Technology
**Primary Location:** United States
**Shift:** 1st - Daytime
**Average Hours Per Week:** 40
**Requisition ID:** 190019747
**Other Locations:** Georgia-GA-Atlanta
U.S. Bank is an Equal Opportunity Employer committed to creating a diverse workforce.
U.S. Bank is an equal opportunity employer committed to creating a diverse workforce. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, among other factors. Associated topics: attack, forensic, identity, identity access management, information assurance, information technology security, malicious, security analyst, security engineer, security officer
* The salary listed in the header is an estimate based on salary data for similar jobs in the same area. Salary or compensation data found in the job description is accurate.