PAY RANGE

Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to achievements, skills, experience, or work location. The range listed is just one component of the compensation package offered to candidates.
$119,000.00 - $206,000.00

APPLICANTS WITH DISABILITIES

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo .

WELLS FARGO RECRUITMENT AND HIRING REQUIREMENTS:

a. Third-Party recordings are prohibited unless authorized by Wells Fargo.
b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process

Required Qualifications:

• 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• Experience maintaining Incident Response Playbooks and drafting procedures
• Experience with audits, assessments or control testin

Desired Qualifications:

• Relevant Cyber Security certifications
• Excellent written and verbal communication skills
• Experience as a control operator, creator, or assessor
• Knowledge of IT, information security, risk and control frameworks (e.g. NIST Cybersecurity Framework and 800-53, FedRAMP, SWIFT, SOC 1 and 2)

Wells Fargo is seeking a Lead Information Security Engineer in Technology as part of Cybersecurity. Learn more about the career areas and lines of business at wellsfargojobs.com
Wells Fargo is seeking a Lead Information Security Engineer to support the Cyber Security Operations (CSO) team within Cyber Defense. A successful candidate will have experience working with cyber security ops teams, developing/managing incident response playbooks and procedures, developing/managing other high-level operational guides, developing executive-level briefings, responding to audit, regulatory, and compliance requests, and acting as the operational expert for execution of enterprise cyber policy for CSO teams. This candidate will also be required to independently lead cross-functional engagements with audit, compliance, legal, policy, governance, and other cyber threat management teams. A candidate with hands-on cyber security experience is preferred.

In this role, you will:

• Consult the organization on complex security issues and findings
• Evaluate and interpret internal and companywide information security policies, processes, standards, and participate with more experienced leaders in decision making on information security
• Collaborate and consult with peers, colleagues, and mid-level to more experienced managers to resolve issues and achieve goals
• Serve as a mentor to less experienced staff
• Lead initiatives for all Corrective Action (regulatory/compliance) Items for Cyber Security Operations across multiple teams.
• Work with Operational Risk Management as a Subject Matter Expert across multi-functional teams.
• Work closely with First Line of Defense, Independent Risk Management, and audit during testing of all internal controls.
• Conduct walk-through meetings, provide evidence and work to ensure outstanding questions or tasks for all outstanding audits, testing or assessments is addressed.
• Document, gather evidence and provide updates regarding work performed for Corrective Action closures.
• Work with leaders across the Enterprise to influence outcomes and ensure alignment with Wells Fargo policies, strategies, and objectives.
• Develop and review policies and procedures.
• Provide security consulting on large projects for internal clients to ensure conformity with corporate information, security policy, and standards
• Design, document, test, maintain, and provide issue resolution recommendations for highly complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security
• Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity

Required Qualifications:

• 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• Experience maintaining Incident Response Playbooks and drafting procedures
• Experience with audits, assessments or control testing

Desired Qualifications:

• Relevant Cyber Security certifications
• Excellent written and verbal communication skills
• Experience as a control operator, creator, or assessor
• Knowledge of IT, information security, risk and control frameworks (e.g. NIST Cybersecurity Framework and 800-53, FedRAMP, SWIFT, SOC 1 and 2).