At Umpqua, we create a great place to work by offering a unique brand of relationship banking and fostering a culture where associates thrive. We are dedicated to supporting our customers and communities, and we can only achieve this through the dedication of our employees.

We value Trust, Ownership, Growth, Empathy, Teamwork, Heart, Enjoyment, and Relationships, and we are eager to meet candidates who embody these core values. We are always on the lookout for results-focused individuals who can think independently, work collaboratively, and support our broader purpose.

Think of us as financial partners, because at Umpqua, we believe the best way forward is together. Together for people. Together for business. Together for better.

About the Role:

In this role you will provide guidance and support to ensure the secure implementation of new products and services. This role involves collaborating with various departments to identify cybersecurity risk, perform security assessments, and ensure compliance with standards.

• Provide guidance and support for secure implementation of new products and services.
• Manage engagement scope for new services, technologies, or changes impacting connectivity, hosting, or data flow.
• Conduct security reviews and assessments, collect evidence, identify controls, and sign off on projects.
• Define the scope of security assessments and review initial data and components.
• Lead meetings, validate details, complete threat models, and perform security assessments.
• Address attack vectors such as Spoofing, Tampering, Repudiation, Information Disclosure, Denial of Service, and Elevation of Privilege.
• Identify and investigate non-standard implementation components.
• Clearly communicate assessment results to stakeholders.
• Recommend control standards and assign follow-up tasks for risks and recommendations.
• Proactively manage cybersecurity engagements and ensure compliance with industry standards.
• Learn new technologies and associated security risks and controls.  
• Maintain knowledge of cloud delivery, security, and service deployment models (IaaS, PaaS, SaaS).
• Conduct security awareness campaigns for internal associates.
• Collaborate with fraud and marketing teams for external awareness campaigns.
• Provide cybersecurity metrics and reporting.

About You:

• Bachelor’s degree in Information Security.
• 4-7 years of information technology.
• 2-4 years of information/cyber security experience. Required.
• Demonstrated experience with administering enterprise services including client and server systems, security tools and applications, directory services, firewalls, IDS/IPS, security gateways, routers, and switches, required.
• Knowledge of operating system fundamentals, networking fundamentals, network protocols, web applications, and critical security controls.
• Knowledge of common attacker tactics and techniques.
• Knowledge of internal audit concepts and regulatory requirements (e.g. SOX, GLBA, etc.).
• Ability to prioritize tasks and work though issues and obstacles with minimal guidance and coaching.
• Ability to work individually and as part of a team.
• Proficient written/verbal communications skills.

Job Location(s): Ability to work fully onsite at posted location(s).

California, Idaho, Oregon, Washington, or Arizona.

Our Benefits:

We offer a competitive total rewards package including base wages and comprehensive benefits. The pay range for this role is $77,767.00 to $144,423.00 and the pay rate for the selected candidate is dependent upon a variety of non-discriminatory factors including, but not limited to, job-related knowledge, skills, and experience, education, and geographic location. The role may be eligible for performance-based incentive compensation and those details will be provided during the recruitment process.

We offer eligible associates comprehensive healthcare coverage (medical, dental, and vision plans), a 401(k)-retirement savings plan with employer match for qualifying associate contributions, an employee assistance program, life insurance, disability insurance, tuition assistance, mental health resources, identity theft protection, legal support, auto and home insurance, pet insurance, access to an online discount marketplace, and paid vacation, sick days, volunteer days, and holidays. Benefit eligibility begins the first day of the month following the date of hire for associates who are regularly scheduled to work at least thirty hours weekly.

Our Commitment to Diversity:

Umpqua Bank is an equal opportunity and affirmative action employer committed to employing, engaging, and developing a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, color, national origin, religion, sex, age, sexual orientation, gender identity, gender expression, protected veteran status, disability, or any other applicable protected status or characteristics. If you require an accommodation to complete the application or interview(s), please let us know by email: careers@umpquabank.com.

To Staffing and Recruiting Agencies:

Our posted job opportunities are only intended for individuals seeking employment at Umpqua Bank. Umpqua Bank does not accept unsolicited resumes or applications from agencies and Umpqua Bank will not be responsible for any fees related to unsolicited resume submissions. Staffing and recruiting agencies are not authorized to submit profiles, applications, or resumes to this site or to any Umpqua Bank employee and any such submissions will be considered unsolicited unless requested directly by a member of the Talent Acquisition team.