Senior Information Security Risk, Compliance & Audit Consultant


At U.S. Bank, we're passionate about helping customers and the communities where we live and work. The fifth-largest bank in the United States, we’re one of the country's most respected, innovative and successful financial institutions. U.S. Bank is an equal opportunity employer committed to creating a diverse workforce. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, among other factors.



U.S. Bank is seeking a talented Information Security Risk, Compliance & Audit Consultant to support information security policy management and adherence. The candidate will be primarily responsible for:

• Development of information security policy
Familiarity with authoritative sources and industry standards
Coordinating policy content with subject matter experts
Assessing applicability and impact with business stakeholders
Developing implementation plans with business stakeholders
Assisting with development of supporting procedures

• Supporting policy management activities
Managing policy materials and documentation
Socialization and management of policy reviews and timelines
Managing reviewer lists
Managing policy repository and updates

• Supporting annual Information Security policy self-assessments
Create and distribute reports from Archer on the status of assessments
Reviewing completed assessments in Archer for accuracy and completeness
Working with business lines to verify and/or adjust their assessments as needed
Identify areas of non-compliance and provide recommendation for remediation

We are seeking an effective, competent, proficient professional, who is autonomous, results driven, can operate in an environment with competing priorities, and a proven track record of successful risk management and compliance work with a minimum of 5 years of experience. The candidate will have a strong understanding of risk management and the ability to effectively apply information learned to other tasks and activities and collaborate across organizations to achieve mutual goals.



  Required Skills/Experience:

The candidate will have experience with the regulatory, legal and contractual requirements impacting financial institutions (e.g. FFIEC, SOX), and industry standards and best practices related to policy management, information security and information technology risk management.

The candidate will have or exhibit the following:

• Ability to independently perform complex tasks and apply information to other activities, tasks and work efforts
• Excellent written and verbal communication skills
• Ability to build and maintain relationships across diverse teams
• Skilled at balancing competing priorities and requirements to deliver projects and business as usual work
• Careful attention to detail that will ensure audit and regulatory evidence is complete and accurate
• Ability to analyze and articulate implications of policy and compliance requirements
• Strong working knowledge of MS Excel, MS PowerPoint, MS SharePoint (lists, documents and user administration), Archer


Information Technology

Primary Location



1st - Daytime



Average Hours Per Week