APPLICANTS WITH DISABILITIES

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo .

WELLS FARGO RECRUITMENT AND HIRING REQUIREMENTS:

a. Third-Party recordings are prohibited unless authorized by Wells Fargo.
b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process

Required Qualifications:

• Experience in Engineering, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education.
• Deep experience with compliance frameworks including NIST CSF, ISO27001, SOX, PCI DSS, GDPR, and CIS Controls.
• Experience driving risk and compliance programs that enable innovation, reduce delivery friction, and support secure digital transformation.
• Experience in automated compliance reporting, control testing, and metrics generation as well as expertise in embedding security and compliance controls into CI/CD pipelines, cloud-native platforms, and Infrastructure-as-Code environments.
• Familiarity with Agile GRC, Cognitive GRC, or compliance-as-code approaches in high-velocity digital environments.
• Excellent communication and stakeholder engagement skills, including experience presenting to senior executives, auditors, and regulators

Desired Qualifications:

• Strong understanding of cloud platforms (AWS, Azure, GCP) and their native security controls.
• Awareness of integrating Generative AI (GenAI) into Governance, Risk Management, and Compliance (GRC)

Wells Fargo is seeking a Digital Risk and Controls Management Lead to drive innovation and strengthen risk practices within the Integrated Governance Solutions team. This strategic role focuses on modernizing and automating digital risk and compliance processes across both cloud-native and on-premises platforms.
By embedding compliance-as-code and implementing continuous control monitoring, you will help ensure secure, scalable, and resilient digital capabilities. Your work will align with enterprise risk frameworks to support business growth and operational excellence.

In this role, you will:

• Coach and develop experienced risk and controls engineers and governance professionals in roles with moderate complexity and risk, responsible for delivering high-quality compliance and governance capabilities through modern tooling and automation.
• Ensure adherence to enterprise governance and security frameworks while aligning control implementation with platform and architectural strategy across cloud and hybrid environments.
• Partner with, engage, and influence enterprise architects, engineering leaders, and risk stakeholders to incorporate modern risk and control strategies, enabling secure-by-design practices and digital transformation initiatives such as cloud migration and data modernization.
• Identify and recommend strategies to resolve escalated control, compliance, and audit challenges while ensuring security standards are embedded across the SDLC.
• Act as an escalation partner for agile teams, enabling risk-aligned, high-velocity delivery by removing friction and duplicative risk controls, and fostering a culture of experimentation and continual improvement.
• Guide the implementation of automated compliance testing, metrics reporting, and policy-as-code into CI/CD pipelines and development workflows to enhance traceability, audit readiness, and continuous improvement.
• Interpret and apply regulatory frameworks (e.g., NIST, SOX, DORA, FFIEC, PCI, GDPR) to ensure security, resilience, and compliance within Workplace Technology, and proactively manage risk.
• Collaborate with and influence Product Managers to drive a risk-aware product strategy, influence control requirements in the product backlog, and align delivery outcomes with enterprise security objectives.
• Interact directly with Audit and Controls’ teams to assess, select, and implement solutions that improve automation, monitoring, and defensibility of controls.
• Foster a culture of innovative, scalable risk and compliance solutions continuous learning, transparency, and accountability.

Required Qualifications:

• Experience in Engineering, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education.
• Deep experience with compliance frameworks including NIST CSF, ISO27001, SOX, PCI DSS, GDPR, and CIS Controls.
• Experience driving risk and compliance programs that enable innovation, reduce delivery friction, and support secure digital transformation.
• Experience in automated compliance reporting, control testing, and metrics generation as well as expertise in embedding security and compliance controls into CI/CD pipelines, cloud-native platforms, and Infrastructure-as-Code environments.
• Familiarity with Agile GRC, Cognitive GRC, or compliance-as-code approaches in high-velocity digital environments.
• Excellent communication and stakeholder engagement skills, including experience presenting to senior executives, auditors, and regulators.

Desired Qualifications:

• Strong understanding of cloud platforms (AWS, Azure, GCP) and their native security controls.
• Awareness of integrating Generative AI (GenAI) into Governance, Risk Management, and Compliance (GRC).