At U.S. Bank, we’re on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each person is unique in their potential. A career with U.S. Bank gives you a wide, ever-growing range of opportunities to discover what makes you thrive at every stage of your career. Try new things, learn new skills and discover what you excel at—all from Day One.

　　Job Description

　　U.S. Bank is seeking a motivated Information Security Risk and Compliance Consultant with extensive controls development, liaison, and relationship management experience to contribute toward the success of our technology initiatives.

　　At times the Information Security Risk and Compliance Consultant will support various strategic initiatives, enabling U.S. Bank and the Information Security Services - Governance, Risk and Compliance (ISS GRC) team to adhere to policies and industry best practices as part of overall process, risk and control governance.

　　We are seeking an independent, self-motivated candidate with a proven track record of controls design and successful project management, with experience in information security governance and compliance process development, and in providing business analysis and process documentation services, with the ability to collaborate across internal organizations to achieve mutual goals. This will be a challenging yet rewarding opportunity in financial services information security.

　　The Information Security Risk and Compliance Consultant will be responsible for developing and implementing information security controls, procedures, and guidelines in alignment with the organization's overall risk management strategy. This role will design and oversee the implementation of security controls and technologies to protect the organization's information assets, including data encryption, access controls, and intrusion detection and prevention systems.

　　The Information Security Risk and Compliance Consultant will help business leaders and technology teams understand the risk of security control gaps and help them plan their remediation.

　　The ideal candidate will have a well-rounded Governance, Risk or Compliance background, preferably within information security / cybersecurity with an understanding of Information Security Frameworks such as NIST CSF.

　　Responsibilities will include but may not be limited to:

　　Working with subject matter experts in a controls development role to help define and document requirements, processes, controls and governance of those artifacts

　　Serving as consultant to internal business groups on process and controls improvement projects designed to improve their business results

　　Managing routine projects

　　Frequently interfacing with business lines, including management, and/or internal resources to ensure quality, timeliness, and testing of all project/release work

　　Providing subject matter expertise for one or more security GRC programs

　　Developing and maintaining repeatable, documented control functionality and processes that align to authoritative sources

　　Assisting in the review and validation of information security controls and understanding the efficacy of controls and the level of risk mitigation

　　Providing recommendations to leadership on program effectiveness and enhancement

　　Successful applicants will exemplify U.S. Bank's eth

　　ical principles of uncompromising integrity, respect for others, accountability for decisions and actions, and good citizenship.

　　Preferred Skills/Experience

　　Bachelor's degree or equivalent work experience

　　3-5 years of GRC experience including knowledge in Information security architecture, technologies, and management, as well as information technology/cybersecurity governance, standards, procedures, and policies, and as well as the analysis of requirements and workflows

　　Careful attention to detail that could ensure audit and regulatory evidence is complete and accurate

　　Effective interpersonal, verbal, and written communication and collaboration

　　Proficient in reporting with advanced business intelligence tools such as Tableau and/or Power BI

　　Proficient in use of GRC tools such as RSA Archer or ServiceNow

　　On-going, self-learning in information technology/information security/cybersecurity industry trends

　　Strong decision-making and problem-solving skills

　　Current cybersecurity certifications such as ISACA. CISSP, CISA, etc.

　　The candidate additionally will have or exhibit the following:

　　Skilled at communicating technical information to non-technical audiences and stakeholders at every level of the organization

　　Strong technical writing skills

　　Ability to successfully manage complex projects with numerous stakeholders across the organization

　　Ability to build and maintain relationships across diverse teams

　　Ability to define and write business requirements and process documentation

　　#ISS

　　If there’s anything we can do to accommodate a disability during any portion of the application or hiring process, please refer to our disability accommodations for applicants (https://careers.usbank.com/global/en/disability-accommodations-for-applicants) .

　　Learn how the way we work at U.S. Bank (https://assets.phenompeople.com/CareerConnectResources/prod/UBNAGLOBAL/documents/Thewaywework-1666895142717.pdf) drives meaningful relationships with our customers and collaboration across the company.

　　Benefits:

　　Our approach to benefits and total rewards considers our team members’ whole selves and what may be needed to thrive in and outside work. That's why our benefits are designed to help you and your family boost your health, protect your financial security and give you peace of mind. Our benefits include the following (some may vary based on role, location or hours):

　　Healthcare (medical, dental, vision)

　　Basic term and optional term life insurance

　　Short-term and long-term disability

　　Pregnancy disability and parental leave

　　401(k) and employer-funded retirement plan

　　Paid vacation (from two to five weeks depending on salary grade and tenure)

　　Up to 11 paid holiday opportunities

　　Adoption assistance

　　Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law

　　EEO is the Law

　　U.S. Bank is an equal opportunity employer committed to creating a diverse workforce. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, among other factors. Applicants can learn more about the company’s status as an equal opportunity employer by viewing the federal KNOW YOUR RIGHTS (https://eeoc.gov/sites/default/files/2023-06/22-088_EEOC_KnowYourRights6.12ScreenRdr.pdf) EEO poster.

　　E-Verify

　　U.S. Bank participates in the U.S. Department of Homeland Security E-Verify program in all facilities located in the United States and certain U.S. territories. The E-Verify program is an Internet-based employment eligibility verification system operated by the U.S. Citizenship and Immigration Services. Learn more about the E-Verify program (https://careers.usbank.com/verification-of-eligibility-for-employment) .

　　The salary range reflects figures based on the primary location, which is listed first. The actual range for the role may differ based on the location of the role. In addition to salary, US Bank offers a comprehensive benefits package, including incentive and recognition programs, equity stock purchase 401k contribution and pension (all benefits are subject to eligibility requirements). Pay Range: $95,285.00 - $112,100.00 - $123,310.00

　　Job postings typically remain open for approximately 20 days of the posting date listed above, however the job posting may be closed earlier should it be determined the position is no longer required due to business need. Job postings in areas with a high volume of applicants, such as customer service, contact center, and Financial Crimes investigations, remain open for approximately 5 days of the posting listed date.