Sr. Cyber Security Analyst

At U.S. Bank, we’re on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions, enabling the communities we support to grow and succeed in the right ways, all more confidently and more often—that’s what we call the courage to thrive.   We believe it takes all of us to bring our shared ambition to life, and each person is unique in their potential. A career with U.S. Bank gives you a wide, ever-growing range of opportunities to discover what makes you thrive. Try new things, learn new skills and discover what you excel at—all from Day One. 

As a wholly owned subsidiary of U.S. Bank, Elavon is committed to building the platforms and ecosystems that help over 1.5 million customers around the world to achieve their financial goals—no matter what they need. From transaction processing to customer service, to driving innovation and launching new products, we’re building a range of tailored payment solutions powered by the latest technology. As part of our team, you can explore what motivates and energizes your career goals: partnering with our customers, our communities, and each other. 

Job Description

U.S. Bank is seeking an Information Security Analyst to utilize security tools to monitor the U.S. Bancorp network to identify, analyze and respond to cyber security alerts to determine whether a security incident has occurred.

The analyst follows standard operating procedures to perform the initial triage and analysis of alerts, and escalates potential incidents to senior analysts or incident response team members

RESPONSIBILITIES

• Remediate serious attacks escalated from Tier 1

• Perform in-depth triage of security incidents

• Assist with the development of incident response plans, workflows, and SOPs

• Assist with the development of automation playbooks

• Work with cyber intelligence analysts to convert intelligence into useful detection

• Collaborate with detection team to build and/or tune detection rules and signatures as needed

• Identify root cause and implement proactive/mitigation steps

• Develop and implement detection use cases

• Assist Cyber Security Incident Response (CSIRT) Team with response efforts if/when needed

• Track and report on security metrics

• Utilize IDS, SIEM, SOAR, Endpoint Detection & Response, etc. to monitor the network of USB

• Identify, analyze, and respond to security incidents

• Research security events and incidents to provide details and recommendations

• Follow standard operating procedures (SOPs) to perform internal and external escalations

• Review incidents to assess their urgency and escalate if necessary

EXPERIENCE SHOULD INCLUDE

• Common ports and services

• IPv4 and IPv6 basic packet structure

• HTTP methods (GET/POST)

• DNS resolution

• SSL/TLS

• Common malware strategies (recon, exploit, callback)

• Types of Security Threats

• MITRE ATT&CK Framework

• 2 Years I.T. experience (System Administration, Network Administration, Pen Tester, Security Administrator, etc.)

• Fundamental networking, TCP/IP understanding

• Strong analytical skills

• 1st/2nd shift flexibility

• Strong written and verbal English communication skills

• Advanced Threat Actors

• Lateral Movement

• Root causes & Attack vectors

• SIEM Platforms

• SOAR Technologies

• Scripting Languages (Python, PowerShell, etc.)

PREFERRED QUALIFICATIONS

• Bachelor’s Degree

• At least one Industry accepted security certification.

• 5+ years of total IT related experience

• 2+ years’ experience working in a Security Operations Center

The role offers a hybrid / flexible schedule, which means there's an in-office expectation of 3 or more days per week and the flexibility to work outside the office location for the other days.

This position is not eligible for visa sponsorship.

If there’s anything we can do to accommodate a disability during any portion of the application or hiring process, please refer to our disability accommodations for applicants.

Benefits:

We offer an exciting, fast-paced and diverse working environment with employees of many different nationalities. We provide benefits to help you protect your health and financial security; and give you peace of mind. We also invest in your career growth with development resources that give you the opportunity to stretch and shine.

Posting may be closed earlier due to high volume of applicants.