Application Penetration Testing - Information Security Manager at Wells Fargo
Charlotte, North Carolina, USA -
Full Time


Start Date

Immediate

Expiry Date

04 Nov, 25

Salary

0.0

Posted On

06 Aug, 25

Experience

1 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

No

Skills

Gwapt, Cissp, Oscp, Training, Gpen, Security Testing

Industry

Information Technology/IT

Description

About this role:
Wells Fargo is seeking an Information Security Manager for our Application Security Team. Application Security enhances the ability of the development organization to consistently deliver highly functional applications that are secure and resilient against attack. We develop policies, processes, controls, and tools to proactively embed security into Wells Fargo-developed applications.
The role will lead a Dynamic Application Security Testing and manual penetration testing program for the bank. It will oversee teams responsible for securing our applications and reducing the risk of data breach. The leadership role requires strong information security and application security scanning knowledge. The ideal candidate for this position will have demonstrated experiences leading a team, influencing, and collaborating with all levels of leadership. The role will report directly to the Technology Director of Application Penetration Testing and Threat Modeling.

In this role, you will:

  • Manage and develop a geographically dispersed team of highly specialized individual contributors as they execute dynamic application security tests and perform application penetration assessments against a wide variety of technology systems
  • Evolve offensive capabilities in line with threats, cyber threat intelligence and the technology strategy. Maintain an advanced awareness of current and evolving cyber threat tactics and techniques
  • Make decisions and resolve issues regarding changes to information security policy, standards, and procedures as needed for systems, applications, and tools
  • Oversee resource allocations to ensure commitments align with strategic objectives
  • Advise more experienced leadership or executive management on issues with high, critical impact on the company
  • Manage, hire, and develop specialized application security penetration testers across platforms.
  • Develop and guide a culture of talent development to meet business objectives and strategy

Required Qualifications, US:

  • 4+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  • 2+ years of Penetration Testing Leadership experience
  • 2+ years of Leadership experience
  • 3+ years of Dynamic Application Security Testing
  • 1+ years of application security experience

Desired Qualifications:

  • 1 + years of hands-on penetration testing experience
  • 1 + years of CI/CD integration experience
  • Preferred Certifications: CISSP, CISM, GWAPT, GPEN, GXPN, GMOB, BSCP, or OSCP
  • Knowledge and understanding of information security practices and policies, including information security frameworks, standards and best practices

Job Expectations:

  • Ability to travel up to 10% of the time.
  • Ability to work onsite in the office in a hybrid model.
  • This position is not eligible for Visa Sponsorship

Locations:

  • Charlotte, NC (CIC)

APPLICANTS WITH DISABILITIES

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo .

WELLS FARGO RECRUITMENT AND HIRING REQUIREMENTS:

a. Third-Party recordings are prohibited unless authorized by Wells Fargo.
b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process

Responsibilities
  • Manage and develop a geographically dispersed team of highly specialized individual contributors as they execute dynamic application security tests and perform application penetration assessments against a wide variety of technology systems
  • Evolve offensive capabilities in line with threats, cyber threat intelligence and the technology strategy. Maintain an advanced awareness of current and evolving cyber threat tactics and techniques
  • Make decisions and resolve issues regarding changes to information security policy, standards, and procedures as needed for systems, applications, and tools
  • Oversee resource allocations to ensure commitments align with strategic objectives
  • Advise more experienced leadership or executive management on issues with high, critical impact on the company
  • Manage, hire, and develop specialized application security penetration testers across platforms.
  • Develop and guide a culture of talent development to meet business objectives and strateg
Loading...