Senior Information Security API Analyst

at  Wells Fargo

Wells Fargo is back in the office, working and collaborating for great outcomes. This role is in the office three days a week, located in the cities posted on the req.
There is no Visa sponsorship or transfer for this position.
Wells Fargo’s industry-leading application security program is seeking a Senior Analyst to contribute to strategic API and Cloud Security efforts and to drive key initiatives. We need someone who understands API and API Security Programs. You’ll be one part technologist, one part analyst and one part risk manager.
With your API expertise, you’ll be a wise advisor that is able to build security controls and address security gaps. You’ll come with a strong background in systems and have good understanding of web application security.
Each day will be energizing as you will be a part of developing our next generation Enterprise Application Security Program. You’ll possess a security first mindset and focus on ensuring several security programs run effectively and efficiently. You’ll have the opportunity to work with technical teams as well as work with the business to ensure the API model is built correctly and accurately.
The Application Security function within Cybersecurity is responsible for the secure software training, practices, and tools used to address security risks across all phases of the Wells Fargo software development life cycle.

In this role, you will:

• Partner across several Technology teams to identify, notify, and monitor API security gaps
• Execute robust processes and controls for API security oversight
• Ensure Cybersecurity policies reflect API security requirements
• Drive key special projects from ideation through closure/BAU, including engaging key stakeholders, ensuring critical milestones are met, establishing processes and reporting where needed, and keeping leadership appraised.
• Govern Application Security Practice refresh processes
• Meet project deliverables while leveraging solid understanding of security initiatives, policies, procedures, and compliance requirements
• Provide reporting on security initiatives and control operations
• Provide support, guidance, and expertise to Technology partners, as needed
• Independently resolve complex issues

Required Qualifications:

• 4+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education.
• 4+ years of product management experience

Desired Qualifications:

• 5+ years of Technology engineering and implementation experience
• 3+ years of Application Security experience
• Strong organizational skills
• Keen attention to detail
• Excellent verbal and written communication skills

Wells Fargo’s industry-leading application security program is seeking a Senior Information Security Analyst to assist in delivery of innovative, next generation application security solutions to secure thousands of applications and millions of customers. In this role, you will guide Wells Fargo’s API security practice and lead key security initiatives with a collaborative team of onshore and offshore resources.

APPLICANTS WITH DISABILITIES

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo .

• Partner across several Technology teams to identify, notify, and monitor API security gaps
• Execute robust processes and controls for API security oversight
• Ensure Cybersecurity policies reflect API security requirements
• Drive key special projects from ideation through closure/BAU, including engaging key stakeholders, ensuring critical milestones are met, establishing processes and reporting where needed, and keeping leadership appraised.
• Govern Application Security Practice refresh processes
• Meet project deliverables while leveraging solid understanding of security initiatives, policies, procedures, and compliance requirements
• Provide reporting on security initiatives and control operations
• Provide support, guidance, and expertise to Technology partners, as needed
• Independently resolve complex issue