Senior Information Security Analyst, Policy Governance, Cyber.

at  Wells Fargo

PAY RANGE

Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to achievements, skills, experience, or work location. The range listed is just one component of the compensation package offered to candidates.
$84,000.00 - $149,400.00

APPLICANTS WITH DISABILITIES

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo .

WELLS FARGO RECRUITMENT AND HIRING REQUIREMENTS:

a. Third-Party recordings are prohibited unless authorized by Wells Fargo.
b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process

Required Qualifications:

• 4+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 2+ years of experience cyber policy governance, including drafting policy; or 2+ years of cyber governanc

Desired Qualifications:

• 2+ years experience with security infrastructure technologies, cryptography, certificate and key management, data loss prevention, information protection, cloud governance, vuln management, or incident response
• 3+ in financial services or other highly-regulated industry; knowledge of the financial services regulatory environment
• 3+ years experience change management principles (e.g., ADKAR) and developing and implementing change management strategies
• 3+ years of Technical Writing experience
• Knowledge of COBIT, FedRamp, FFIEC, ISO, MITRE, NIST, CRI and other key industry frameworks and authoritative sources
• Functional experience across two or more Cybersecurity domains (e.g., infrastructure, cryptography, identity and access management, vuln management, data loss prevention)
• Strong critical thinking skills, consistent attention to detail, and ability to meet deadlines amidst competing priorities
• Advanced level communication, relationship building, negotiating, and influencing skills
• Advanced proficiency in MS Word, Excel, and PowerPoint
• Experience with agile methodology and Atlassian suite of products (e.g., Confluence, Jira)
• Experience with data aggregation and reporting tools (e.g., Tableau

Wells Fargo is seeking a Senior Information Security Analyst. This resource will support a policy governance body of work to identify, formulate, and implement complex Cybersecurity policies, procedures, and controls for Cybersecurity. In so doing, this resource will support execution of the 2024 strategic initiative to implement Policy Simplification across all Cybersecurity policy stacks (and Policy Modernization in 2025) while partnering and influencing across the Cybersecurity policy stakeholder community, including Cybersecurity technical domains, Business Information Security Officers (BISO), Chief Information Officers, front line risk management, and the Enterprise Policy Office.

In this role, you will:

• Provide information security consultation to improve awareness and compliance with Enterprise Information Security policy, processes and standards
• Perform remediation of security assessment review issues, complex ad hoc data, and reporting to support information security risk management
• Provide guidance and direction in reviewing assessment findings and mitigating controls to optimize information security
• Identify and direct information asset portfolio reconciliations and certifications
• Provide advanced data aggregation and data of information security risk exposure
• Develop and deliver Information Security Education Awareness and Training in accordance with the Enterprise Information Security Program standards
• Review draft and proposed control standards for business impact and recommend modifications or clarifications as required
• Conduct security control testing and consultation with stakeholders
• Evaluate and interpret internal and Enterprise Information Security policies, processes and standards, and provide recommendations to improve them
• Collaborate and consult with peers, colleagues, and managers to resolve issues and achieve goals
• Interact with internal customers
• Serve as a mentor to less experienced staff
• Support two or more complex Cybersecurity policy governance areas
• Support alignment to policy area scope and deliverables to strategic and transformational goals
• Coordinate with PGO teammates to support on-time delivery of deliverables across all programs
• Drive the successful completion of programs to achieve business goals, including timely identification, escalation, and remediation of risks and issues that impact program execution and delivery
• Enhance and maintain knowledge of Wells Fargo’s expectations for program and change management, including policies, processes, procedures and tools for program delivery
• Maintain and employ knowledge of industry best practices for program and change management, including agile methodology
• Support development of periodic business and operating reports, including identification and remediation of execution or other risks and issues, retrospective reviews, and lessons learned
• Build strong relationships with program sponsors, business partners, and key stakeholders
• Deliver clear, concise, and actionable communication to various levels of organization on a timely basis to ensure effective understanding, decision-making, and execution

Required Qualifications:

• 4+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 2+ years of experience cyber policy governance, including drafting policy; or 2+ years of cyber governance

Desired Qualifications:

• 2+ years experience with security infrastructure technologies, cryptography, certificate and key management, data loss prevention, information protection, cloud governance, vuln management, or incident response
• 3+ in financial services or other highly-regulated industry; knowledge of the financial services regulatory environment
• 3+ years experience change management principles (e.g., ADKAR) and developing and implementing change management strategies
• 3+ years of Technical Writing experience
• Knowledge of COBIT, FedRamp, FFIEC, ISO, MITRE, NIST, CRI and other key industry frameworks and authoritative sources
• Functional experience across two or more Cybersecurity domains (e.g., infrastructure, cryptography, identity and access management, vuln management, data loss prevention)
• Strong critical thinking skills, consistent attention to detail, and ability to meet deadlines amidst competing priorities
• Advanced level communication, relationship building, negotiating, and influencing skills
• Advanced proficiency in MS Word, Excel, and PowerPoint
• Experience with agile methodology and Atlassian suite of products (e.g., Confluence, Jira)
• Experience with data aggregation and reporting tools (e.g., Tableau)

Job Expectations:

• This is not a remote position. Candidates are required to work in the office three (3) days per week at the specified location
• Wells Fargo cannot consider individuals for this role who will require immigration assistance either now or in the future