Lead Cyber Threat Intelligence Analyst

Lead Cyber Threat Intelligence (CTI) Analyst – U.S. Bank

This position is not eligible for visa sponsorship. The role requires working from a U.S. Bank location three (3) or more days per week. The Lead CTI Analyst will serve as a functional leader within the Threat Informed Defense organization, delivering actionable intelligence to reduce enterprise cyber risk while leading daily intelligence operations across tactical, operational, and strategic levels.

The Lead CTI Analyst functions as a senior individual contributor with leadership responsibilities, mentoring analysts and guiding CTI execution without direct people‑management responsibilities. The role includes supporting critical Cyber Defense functions such as Threat Hunting, Threat Detection, and Incident Response.

• Prioritize intelligence requirements (IR) and requests for intelligence (RFI), including developing intelligence targeting and collection plans.
• Analyze cyber threats and engage stakeholders to determine impact to U.S. Bancorp.
• Monitor a wide array of diverse information sources, ranging from open‑source to classified materials for potential threats.
• Maintain detailed awareness of threats to the financial sector.
• Actively participate in the development, documentation, and implementation of new processes to expand and mature capabilities for the organization.

• 5+ years of hands‑on Cyber Threat Intelligence (CTI) experience with strong analytical tradecraft.
• Proven ability to analyze threat data and produce clear, actionable intelligence outputs.
• 3+ years of leading through influence (mentoring, coaching, acting as an SME without direct reports).
• Strong stakeholder communication and influence skills, including the ability to guide decisions using intelligence insights.
• Experience with a broad set of threat intelligence tools, vendors, and processes.
• Demonstrated understanding of the intelligence lifecycle (collection, analysis, dissemination).
• Background working within cyber threat intelligence teams (not purely general cybersecurity or operations).

• Experience influencing senior stakeholders and supporting strategic decision‑making through intelligence outputs.
• Exposure to AI use cases within cyber threat intelligence.
• Background in adjacent areas such as incident response, threat hunting, or detection engineering (as a supplement to CTI experience).
• Track record of improving processes, tools, or intelligence outputs to increase team effectiveness.
• Experience operating in a proactive, forward‑looking intelligence environment rather than purely reactive threat response.

• Healthcare (medical, dental, vision)
• Basic term and optional term life insurance
• Short‑term and long‑term disability
• Pregnancy disability and parental leave
• 401(k) and employer‑funded retirement plan
• Paid vacation (from two to five weeks depending on salary grade and tenure)
• Up to 11 paid holiday opportunities
• Adoption assistance
• Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law.

U.S. Bank is an equal opportunity employer. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, and other factors protected under applicable law.

U.S. Bank participates in the U.S. Department of Homeland Security E‑Verify program in all facilities located in the United States and certain U.S. territories.

U.S. Bank will consider qualified applicants with arrest or conviction records for employment. U.S. Bank conducts background checks consistent with applicable local laws, including the Los Angeles County Fair Chance Ordinance and the California Fair Chance Act as well as the San Francisco Fair Chance Ordinance. U.S. Bank is subject to, and conducts background checks consistent with the requirements of Section 19 of the Federal Deposit Insurance Act (FDIA).

Certain positions may also be subject to the requirements of FINRA, NMLS registration, Reg Z, Reg G, OFAC, the NFA, the FCPA, the Bank Secrecy Act, the SAFE Act, and/or federal guidelines applicable to an agreement, such as those related to ethics, safety, or operational procedures. Applicants must be able to comply with U.S. Bank policies and procedures including the Code of Ethics and Business Conduct and related workplace conduct and safety policies.