Senior Lead Information Security Analyst, Policy Governance

at  Wells Fargo

APPLICANTS WITH DISABILITIES

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo .

WELLS FARGO RECRUITMENT AND HIRING REQUIREMENTS:

a. Third-Party recordings are prohibited unless authorized by Wells Fargo.
b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process

Required Qualifications, US:

• 7+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 4+ years of experience managing policy governance, including drafting policy; or 4+ years of cyber governanc

Desired Qualifications:

• 5+ years experience with security infrastructure technologies, cryptography, certificate and key management, data loss prevention, information protection, cloud governance, or incident response
• 7+ years experience in the development and management of complex programs spanning multiple technology, Cybersecurity, or large banking operations
• 7+ in financial services or other highly-regulated industry; knowledge of the financial services regulatory environment
• 5+ years experience change management principles (e.g., ADKAR) and developing and implementing change management strategies
• 5+ years of Technical Writing experience
• Knowledge of COBIT, FedRamp, FFIEC, ISO, MITRE, NIST, CRI and other key industry frameworks and authoritative sources
• Functional experience across two or more Cybersecurity domains (e.g., infrastructure, cryptography, identity and access management, data loss prevention)
• Experience with developing and presenting business management materials to senior management and governance committees
• Strong critical thinking skills, consistent attention to detail, and ability to meet deadlines amidst competing priorities
• Advanced level leadership, communication, relationship building, negotiating, and influencing skills
• Advanced proficiency in MS Word, Excel, and PowerPoint
• Experience with agile methodology and Atlassian suite of products (e.g., Confluence, Jira)
• Experience with data aggregation and reporting tools (e.g., Tableau)
• This is not a remote position. Candidates are required to work in the office three (3) days per week at the specified location
• Wells Fargo cannot consider individuals for this role who will require immigration assistance either now or in the futur

Wells Fargo is seeking a Senior Lead Information Security Analyst;This resource will lead a policy governance body of work to identify, formulate, and implement complex Cybersecurity policies, procedures, and controls for Cybersecurity. In so doing, this resource will support execution of the 2024 strategic initiative to implement Policy Simplification across all Cybersecurity policy stacks (and Policy Modernization in 2025) while partnering and influencing across the Cybersecurity policy stakeholder community, including Cybersecurity technical domains, Business Information Security Officers (BISO), Chief Information Officers, front line risk management, and the Enterprise Policy Office.

In this role, you will:

• Provide oversight to the Information Security program for a major line of business
• Consult with line of business on the consistent implementation of the enterprise information security model and solutions to remediate information security risks
• Ensure that risks to all information assets are being managed in a timely and effective manner to meet the Information Security Program requirements and the current threat landscape
• Ensure information security capabilities are included in all aspects of the company’s technology architecture
• Proactively manage the information security risk profile of line of business information assets throughout the lifecycle of the asset
• Provide vision, direction, and expertise to more experienced leadership on implementing innovative and significant business solutions that are large-scale, cross-functional, or companywide strategies
• Ensure the team has the necessary training and is keeping abreast of regulatory and compliance issues
• Engage with all levels of professionals and managers companywide and serve as an experienced advisor to leadership
• Lead two or more complex Cybersecurity policy governance areas
• Align policy area scope and deliverables to strategic and transformational goals
• Develop and evolve Cybersecurity policy governance program strategy to scale with Cybersecurity organizational growth
• Develop and execute Cybersecurity policy governance annual activities considering inputs across Cybersecurity domain functions and key stakeholder groups
• Plan and coordinate with PGO teammates to support on-time delivery of deliverables across all programs
• Drive the successful completion of programs to achieve business goals, including timely identification, escalation, and remediation of risks and issues that impact program execution and delivery
• Enhance and maintain knowledge of Wells Fargo’s expectations for program and change management, including policies, processes, procedures and tools for program delivery
• Maintain and employ knowledge of industry best practices for program and change management, including agile methodology
• Deliver periodic business and operating reports, including identification and remediation of execution or other risks and issues, retrospective reviews, and lessons learned
• Build strong relationships with program sponsors, business partners, and key stakeholders
• Coordinate, facilitate, negotiate, and influence cross-functional macro-level topics with key stakeholders and senior management
• Deliver clear, concise, and actionable communication to various levels of organization on a timely basis to ensure effective understanding, decision-making, and execution

Required Qualifications, US:

• 7+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 4+ years of experience managing policy governance, including drafting policy; or 4+ years of cyber governance

Desired Qualifications:

• 5+ years experience with security infrastructure technologies, cryptography, certificate and key management, data loss prevention, information protection, cloud governance, or incident response
• 7+ years experience in the development and management of complex programs spanning multiple technology, Cybersecurity, or large banking operations
• 7+ in financial services or other highly-regulated industry; knowledge of the financial services regulatory environment
• 5+ years experience change management principles (e.g., ADKAR) and developing and implementing change management strategies
• 5+ years of Technical Writing experience
• Knowledge of COBIT, FedRamp, FFIEC, ISO, MITRE, NIST, CRI and other key industry frameworks and authoritative sources
• Functional experience across two or more Cybersecurity domains (e.g., infrastructure, cryptography, identity and access management, data loss prevention)
• Experience with developing and presenting business management materials to senior management and governance committees
• Strong critical thinking skills, consistent attention to detail, and ability to meet deadlines amidst competing priorities
• Advanced level leadership, communication, relationship building, negotiating, and influencing skills
• Advanced proficiency in MS Word, Excel, and PowerPoint
• Experience with agile methodology and Atlassian suite of products (e.g., Confluence, Jira)
• Experience with data aggregation and reporting tools (e.g., Tableau)
• This is not a remote position. Candidates are required to work in the office three (3) days per week at the specified location
• Wells Fargo cannot consider individuals for this role who will require immigration assistance either now or in the future