Senior Audit Manager, Executive Director (Cybersecurity)

at  Wells Fargo

APPLICANTS WITH DISABILITIES

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo .

Required Qualifications, US:

• 6+ years of Audit, Risk experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 3+ years of management experienc

Desired Qualifications:

• 7+ years of increasing responsibilities within IT audit, including experience leading and supervising audits (external and/or internal).
• Experience working in the first or second line of defense would be beneficial.
• Knowledge of IT, information security and Cloud management and control frameworks (e.g. NIST Cybersecurity Framework and 800-53, CIS Top 20 Critical Security Controls, FFIEC IT Examination Handbooks, COBIT, FedRAMP, ISO 2700x, ITIL).
• CCSP, CCAK and Ethical Hacker certifications would be highly regarded, as well as Cybersecurity Certificates from ISACA or ISC2, and Cloud related certifications.
• CISA or CISSP Certifications, or equivalent.
• Solid knowledge and understanding of audit or risk methodologies and supporting tools
• Strong understanding of financial regulatory environment
• Excellent verbal, written, and interpersonal communication skills.
• Experience leading and providing feedback to staff on audit projects or engagements.
• Familiarity with server, network, database, and application security hardening
• Hand-on technical experience in technologies such as Active Directory, Cybersecurity technologies, Operating systems and databases is beneficial.
• Strong experience with IT and Cybersecurity Governance
• Bachelor’s degree or higher in Computer Science/Information Technology
• Experience at a large financial institution or Big 4 accounting fir

Our Enterprise Technology Audit Group (ETAG) is seeking a Senior Audit Manager - Executive Director who will provide leadership in the audit coverage of Wells Fargo’s core Cybersecurity controls (e.g., Identity and Access Management, Cybersecurity Governance, Information Protection, Cloud Security, Security Information and Event Management, etc.). We’re building a Cybersecurity Audit function for the future and looking for high-energy talent to join us on our journey! You’ll be part of a team that provides audit coverage of the controls and tools that provide the front-line protection for the Bank’s critical systems and data. Given the dynamic nature of the external threat landscape, you’ll be exposed to cutting edge technology and threat management techniques. We’re looking for team members that have a passion for Cybersecurity and a continual thirst for knowledge in this fascinating and critical space.

In this role, you will:

• Manage a team of audit staff responsible for a defined segment of the Audit Plan
• Be responsible for resource management and assisting broader team in overall audit plan completion
• Assess associated risks and controls and complete engagements within their segment of the audit plan
• Plan and organize work in an annual cycle, not just project cycle
• Ensure audit engagements are risk-based, and executed according to Internal Audit policies and guidance
• Build and maintain a proficient team of auditors
• Provide timely feedback, coaching and monitoring of development plans
• Develop and maintain excellent business relationships with leadership and other stakeholders, such as regulatory agencies
• Manage allocation of people and financial resources for Audit
• Develop and guide a culture of talent development to meet business objectives and strategy

Required Qualifications, US:

• 6+ years of Audit, Risk experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 3+ years of management experience

Desired Qualifications:

• 7+ years of increasing responsibilities within IT audit, including experience leading and supervising audits (external and/or internal).
• Experience working in the first or second line of defense would be beneficial.
• Knowledge of IT, information security and Cloud management and control frameworks (e.g. NIST Cybersecurity Framework and 800-53, CIS Top 20 Critical Security Controls, FFIEC IT Examination Handbooks, COBIT, FedRAMP, ISO 2700x, ITIL).
• CCSP, CCAK and Ethical Hacker certifications would be highly regarded, as well as Cybersecurity Certificates from ISACA or ISC2, and Cloud related certifications.
• CISA or CISSP Certifications, or equivalent.
• Solid knowledge and understanding of audit or risk methodologies and supporting tools
• Strong understanding of financial regulatory environment
• Excellent verbal, written, and interpersonal communication skills.
• Experience leading and providing feedback to staff on audit projects or engagements.
• Familiarity with server, network, database, and application security hardening
• Hand-on technical experience in technologies such as Active Directory, Cybersecurity technologies, Operating systems and databases is beneficial.
• Strong experience with IT and Cybersecurity Governance
• Bachelor’s degree or higher in Computer Science/Information Technology
• Experience at a large financial institution or Big 4 accounting firm

Job Expectations:

• Ability to travel up to 10% of the time
• Position is not eligible for VISA Sponsorship