PAY RANGE

Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to achievements, skills, experience, or work location. The range listed is just one component of the compensation package offered to candidates.
$119,000.00 - $206,000.00

APPLICANTS WITH DISABILITIES

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo .

WELLS FARGO RECRUITMENT AND HIRING REQUIREMENTS:

a. Third-Party recordings are prohibited unless authorized by Wells Fargo.
b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process

Required Qualifications:

• 5+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, educatio

Desired Qualifications:

• Knowledge and understanding of Third-Party Risk Management, Governance, and Reporting
• Experience working in an agile environment
• Experience with GRC platforms (e.g., Archer, ServiceNow GRC, RSA).
• Ability to influence across all organizational levels, particularly senior management
• Experience managing large technology development efforts within a major line of businesses
• Strong ability to communicate complex technical, information protection issues and value/impact in simple terms to very senior business and technology leaders
• A high level of comfort working with ambiguity or uncertainty and converting information into quantifiable concepts
• Strong organizational and project management skills with an ability to manage numerous, competing demands from internal and external stakeholders
• Strong ability to effectively communicate and broker agreements amongst diverse, differing, competing, and/or conflicting perspectives/priorities
• Proven success implementing large enterprise projects and/or enterprise proces

Wells Fargo is seeking a Lead Information Security Analyst to support the Third Party Security product model and product owners, with a specific focus on the Third Party Risk Management Module (TPRM), in ServiceNow, technology delivery; specifically supporting Technology Third Party Governance Team, Third Party Monitoring and Rapid Response team and BCP ServiceNow teams - providing direction for teams to design, develop, and deliver technology and processes for updating, upgrading technologies in TPRM.
This position designs TPRM changes, develop new capabilities, provides technical TPRM support and solutions for implementation in a sprints and production; also included supporting unit testing through the various environments as well as coordination of UAT across TTPG, TP MRR and BCP teams. This role is responsible for the ServiceNow Third Party Risk Management module/application vision, roadmap, and delivery of solutions across the Cyber Security Third Party product.
This role specifically supports the ServiceNow Third Party Risk Management module/application features and stories through our agile life cycle, as well supporting production; including patches, platform releases, and defects. This position will support the Change management process within TTPG as well.

In this role, you will:

• Provide advanced information security consultation for all aspects of information security compliance policy, risk management, and remediation
• Direct information security risk assessment and research, and recommend remediation plans and strategies
• Influence stakeholders on net new or on material changes to an asset to influence control decisions
• Provide consulting on security risk assessment and research, and recommend remediation plans and strategies
• Act as more experienced lead to the organization to develop security risk awareness and mitigating actions
• Consult the organization on complex security issues and findings
• Manage the most complex and critical information assets
• Evaluate and interpret internal and companywide information security policies, processes, standards, and participate with more experienced leaders in decision making on information security
• Serve as information security lead to advise on the development and delivery of Information Security Education and Awareness
• Collaborate and consult with peers, colleagues, and mid-level to more experienced managers to resolve issues and achieve goals
• Lead projects and teams
• Coordinate with vendor manager on third party assets to manage information security risks
• Serve as a mentor to less experienced staff

Required Qualifications:

• 5+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education

Desired Qualifications:

• Knowledge and understanding of Third-Party Risk Management, Governance, and Reporting
• Experience working in an agile environment
• Experience with GRC platforms (e.g., Archer, ServiceNow GRC, RSA).
• Ability to influence across all organizational levels, particularly senior management
• Experience managing large technology development efforts within a major line of businesses
• Strong ability to communicate complex technical, information protection issues and value/impact in simple terms to very senior business and technology leaders
• A high level of comfort working with ambiguity or uncertainty and converting information into quantifiable concepts
• Strong organizational and project management skills with an ability to manage numerous, competing demands from internal and external stakeholders
• Strong ability to effectively communicate and broker agreements amongst diverse, differing, competing, and/or conflicting perspectives/priorities
• Proven success implementing large enterprise projects and/or enterprise process

Job Expectations:

• Ability to travel up to 10% of the time.
• Ability to work a hybrid work schedule that includes on-site requirements in one of the listed locations on the job posting
• This position is not eligible for Visa sponsorship