U.S. Bank Europe DAC - Ireland Branch1 week ago

Lead Threat Hunter

U.S. Bank Europe DAC - Ireland Branch

$126,820–$149,200 year

On-site · Chicago, Illinois, United States or Atlanta, Georgia, United States

Chicago, Illinois, United States or Atlanta, Georgia, United StatesOn-siteFull Time$126,820–$149,200 yearSenior LevelBachelors DegreeLarge

Type

Full Time

Level

Senior Level

Education

Bachelors Degree

Company size

Large

Job Summary

Lead Threat Hunter to join U.S. Bank’s security incident response program; design, implement and execute detection rules; investigate potential cybersecurity incidents; develop response processes and train security operations staff. Collaborates across teams to map threats to MITRE ATT&CK, automates hunting workflows, and analyzes threats and vulnerabilities to protect bank operations. Requires strong knowledge of AI topics, security logging/monitoring/tools, cloud environments, and experience leading technical analysis and incident handling. Strong communication, leadership, and ability to drive proactive security improvements are essential.

Required Qualifications

Bachelor's degree, or equivalent work experience
8+ years of information security
8+ years of information security experience
4+ years’ incident response/incident handling experience
2+ years’ experience as a threat hunter
Experience in incident response or threat hunting in major cloud environments (AWS, Azure, GCP)
Demonstrable proficiency in threat intelligence platforms, security automation and orchestration and red/blue/purple team activities
Excellent communication and reporting skills

Desired Qualifications

Bachelor's degree or equivalent work experience
8+ years of relevant experience in information security
Experience as a technical incident responder/threat hunter
Strong collaboration and communication skills
Ability to map activities to MITRE ATT&CK and develop automation/playbooks
Proactive hunter mindset with AI topic knowledge
Experience with AI automation tooling, Jupyter notebooks, Python, automation and APIs
Experience with security logging, monitoring, event management tools, log and packet analysis
Experience in major cloud environments (AWS, Azure, GCP)
Threat intelligence platforms, security orchestration and red/blue/purple team activities
SANS, CHFI, OSCP or similar certifications (preferred)
Experience in the financial sector (preferred)
Excellent reporting and leadership skills
Ability to adapt to multiple security domains and work across teams

Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.

Hiring someone like this?

Get your role in front of qualified candidates on Sorce.

Get started