PAY RANGE

Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to achievements, skills, experience, or work location. The range listed is just one component of the compensation package offered to candidates.
$119,000.00 - $206,000.00

APPLICANTS WITH DISABILITIES

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo .

WELLS FARGO RECRUITMENT AND HIRING REQUIREMENTS:

a. Third-Party recordings are prohibited unless authorized by Wells Fargo.
b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process

Required Qualifications:

• 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• Deep expertise in security tools (e.g., firewalls, EDR, NAC), frameworks (NIST, MITRE), and secure infrastructure design

Desired Qualifications:

• Strong, hands-on knowledge of one or many network security tools (e.g., firewalls, IDS/IPS, proxies, NAC).
• Familiarity with cloud security (AWS, Azure, GCP) and hybrid environments.
• Solid understanding of network segmentation, Zero Trust architecture, and secure device onboarding practices.
• Proven experience designing and implementing enterprise-scale security solutions.
• Experience developing and executing security tool strategies and roadmaps.
• Deep understanding of security frameworks (e.g., NIST, ISO 27001, MITRE ATT&CK).
• Strong understanding of endpoint protection platforms (e.g., CrowdStrike, Microsoft Defender for Endpoint, Tanium).
• Strong grasp of the OSI model and its relevance to cybersecurity.
• Excellent problem-solving, analytical, and communication skills.
• Ability to collaborate across technical and non-technical teams and clearly document technical requirements.
• Certifications: GCIA, CISSP, OSC

ABOUT THIS ROLE:

Wells Fargo is seeking a Lead Information Security Engineer to drive the design, implementation, and oversight of endpoint and network security controls across a global enterprise. This role is critical in ensuring over 1 million devices remain secure, compliant, and resilient against evolving cyber threats.

IN THIS ROLE, YOU WILL:

Security Architecture & Engineering

• Design and implement scalable, automated security controls across a large, distributed endpoint and network infrastructure.
• Define and maintain infrastructure security requirements aligned with enterprise policies and regulatory obligations.
• Evaluate and validate security control designs to ensure compliance, effectiveness, and alignment with Zero Trust principles.
• Lead secure onboarding of new endpoint technologies and ensure secure configurations across hybrid environments.

Threat Detection, Monitoring & Incident Response

• Develop and manage strategies for continuous compliance monitoring and threat detection.
• Lead complex security incident response efforts, including root cause analysis and digital forensics.
• Correlate and analyze security logs to identify vulnerabilities, threats, and anomalies.
• Recommend and implement mitigation strategies based on threat intelligence and post-incident findings.

Collaboration & Leadership

• Partner with Security Architecture, Infrastructure, Risk, and Compliance teams to integrate security into enterprise designs and deployment processes.
• Participate in architecture reviews and risk assessments for infrastructure and security initiatives.
• Present technical designs and security strategies to senior leadership and stakeholders.
• Mentor and provide technical guidance to engineers and security team members.

Documentation, Standards & Continuous Improvement

• Create and maintain technical documentation, security standards, and training materials.
• Translate complex security requirements into actionable, scalable technical solutions.
• Stay current with industry trends, threat intelligence, and regulatory changes to proactively evolve security strategies.
• Promote a security-first mindset and contribute to a culture of continuous improvement and operational excellence.

Required Qualifications:

• 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• Deep expertise in security tools (e.g., firewalls, EDR, NAC), frameworks (NIST, MITRE), and secure infrastructure design.

Desired Qualifications:

• Strong, hands-on knowledge of one or many network security tools (e.g., firewalls, IDS/IPS, proxies, NAC).
• Familiarity with cloud security (AWS, Azure, GCP) and hybrid environments.
• Solid understanding of network segmentation, Zero Trust architecture, and secure device onboarding practices.
• Proven experience designing and implementing enterprise-scale security solutions.
• Experience developing and executing security tool strategies and roadmaps.
• Deep understanding of security frameworks (e.g., NIST, ISO 27001, MITRE ATT&CK).
• Strong understanding of endpoint protection platforms (e.g., CrowdStrike, Microsoft Defender for Endpoint, Tanium).
• Strong grasp of the OSI model and its relevance to cybersecurity.
• Excellent problem-solving, analytical, and communication skills.
• Ability to collaborate across technical and non-technical teams and clearly document technical requirements.
• Certifications: GCIA, CISSP, OSCP

Job Expectations:

• This is a hybrid role and will be required to be on-site in one of the locations listed on the job posting
• This role is not available for visa sponsorship