Sr. Cyber Security Analyst (1st Shift)

    • U.S. Bank
  • Cincinnati, OH
  • Posted 35 days ago | Updated 3 hours ago


On Site
Compensation information provided in the description
Full Time


Standard operating procedure
Cyber security
Information security
Incident management
Tier 1
Use cases
Information Technology
System administration
Network administration
Analytical skill
Security operations
Life insurance
Customer service
Contact center
Microsoft Excel
Regulatory Compliance
Malware analysis
Computer networking
Windows PowerShell
Health care

Job Details

At U.S. Bank, we're on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each person is unique in their potential. A career with U.S. Bank gives you a wide, ever-growing range of opportunities to discover what makes you thrive at every stage of your career. Try new things, learn new skills and discover what you excel at-all from Day One.

Job Description

U.S. Bank is seeking an Information Security Analyst to utilize security tools to monitor the U.S. Bancorp network to identify, analyze and respond to cyber security alerts to determine whether a security incident has occurred. The analyst follows standard operating procedures to perform the initial triage and analysis of alerts, and escalates potential incidents to senior analysts or incident response team members


  • Remediate serious attacks escalated from Tier 1
  • Perform in-depth triage of security incidents
  • Assist with the development of incident response plans, workflows, and SOPs
  • Assist with the development of automation playbooks
  • Work with cyber intelligence analysts to convert intelligence into useful detection
  • Collaborate with detection team to build and/or tune detection rules and signatures as needed
  • Identify root cause and implement proactive/mitigation steps
  • Develop and implement detection use cases
  • Assist Cyber Security Incident Response (CSIRT) Team with response efforts if/when needed
  • Track and report on security metrics
  • Utilize IDS, SIEM, SOAR, Endpoint Detection & Response, etc. to monitor the network of USB
  • Identify, analyze, and respond to security incidents
  • Research security events and incidents to provide details and recommendations
  • Follow standard operating procedures (SOPs) to perform internal and external escalations
  • Review incidents to assess their urgency and escalate if necessary


  • High School Diploma or equivalent work experience
  • Minimum of 2 years of experience in information technology and/or information security and compliance
  • Understanding of financial industry legal, regulatory and compliance requirements for information security


  • Common ports and services
  • IPv4 and IPv6 basic packet structure
  • HTTP methods (GET/POST)
  • DNS resolution
  • Common malware strategies (recon, exploit, callback)
  • Types of Security Threats
  • MITRE ATT&CK Framework
  • 2 Years I.T. experience (System Administration, Network Administration, Pen Tester, Security Administrator, etc.)
  • Fundamental networking, TCP/IP understanding
  • Strong analytical skills
  • 1st/2nd shift flexibility
  • Strong written and verbal English communication skills
  • Advanced Threat Actors
  • Lateral Movement
  • Root causes & Attack vectors
  • SIEM Platforms
  • SOAR Technologies
  • Scripting Languages (Python, PowerShell, etc.)


  • Bachelor's Degree
  • At least one Industry accepted security certification.
  • 5+ years of total IT related experience
  • 2+ years' experience working in a Security Operations Center

If there's anything we can do to accommodate a disability during any portion of the application or hiring process, please refer to our disability accommodations for applicants .


Our approach to benefits and total rewards considers our team members' whole selves and what may be needed to thrive in and outside work. That's why our benefits are designed to help you and your family boost your health, protect your financial security and give you peace of mind. Our benefits include the following (some may vary based on role, location or hours):

  • Healthcare (medical, dental, vision)
  • Basic term and optional term life insurance
  • Short-term and long-term disability
  • Pregnancy disability and parental leave
  • 401(k) and employer-funded retirement plan
  • Paid vacation (from two to five weeks depending on salary grade and tenure)
  • Up to 11 paid holiday opportunities
  • Adoption assistance
  • Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law

EEO is the Law

U.S. Bank is an equal opportunity employer committed to creating a diverse workforce. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, among other factors. Applicants can learn more about the company's status as an equal opportunity employer by viewing the federal KNOW YOUR RIGHTS EEO poster.


U.S. Bank participates in the U.S. Department of Homeland Security E-Verify program in all facilities located in the United States and certain U.S. territories. The E-Verify program is an Internet-based employment eligibility verification system operated by the U.S. Citizenship and Immigration Services. Learn more about the E-Verify program .

The salary range reflects figures based on the primary location, which is listed first. The actual range for the role may differ based on the location of the role. In addition to salary, U.S. Bank offers a comprehensive benefits package, including incentive and recognition programs, equity stock purchase 401(k) contribution and pension (all benefits are subject to eligibility requirements). Pay Range: $95,285.00 - $112,100.00 - $123,310.00

Job postings typically remain open for approximately 20 days of the posting date listed above, however the job posting may be closed earlier should it be determined the position is no longer required due to business need. Job postings in areas with a high volume of applicants, such as customer service, contact center, and Financial Crimes investigations, remain open for approximately 5 days of the posting listed date.