8 days old

EIS Self-Assurance Activities Lead - ORC5

Flagstaff, AZ 86004
  • Job Code
Job Description

Youve got the passion. Youve got the skills. Now you just need the right opportunity. At Wells Fargo, youll have the chance to join a team of intelligent and talented people who share the same values. Our diverse lines of business offer a world of opportunity to expand your capabilities and advance your career. We invest in our people and provide a supportive environment in which to learn and grow.


Since 1852, customers have trusted that Wells Fargo would keep their assets secure from theft and always available. Today, maintaining customer trust remains our underlying operating principle. Enterprise Information Securitys vision is to provide Wells Fargo world leading cyber security risk management. Through a framework that addresses policy, process, operations, people, and technology, Enterprise Information Security protects Wells Fargos infrastructure, corporate data, and customer assets, and ensures alignment with applicable regulations and laws. Enterprise Information Security is part of Wells Fargo's Corporate Risk organization and is led by the Chief Information Security Officer.

The Enterprise Information Security Front Line Risk Management team is responsible for first line risk management for Enterprise Information Security risk-generating activities.This team implements and governs a comprehensive first line of defense risk strategy and program for Enterprise Information Security, monitors adherence to risk appetite, and ensures daily operations align with sound risk management practices. The team is responsible for identifying, assessing, controlling, mitigating, monitoring, and reporting of risks within Enterprise Information Security risk-generating activities. The team also executes against Corporate Risk policies and frameworks that are applicable to the organization. The Enterprise Information Security Front Line Risk Management team has a newly created position for an operational risk consultant who will oversee and implement risk management practices to ensure that the Enterprise Information Security organization is in adherence with the enterprise Self-Assurance Activities Policy. This operational risk consultant will ensure that the organization is implementing, executing, and governing self-assurance activities which are intended to provide the business reasonable assurance that its processes and risk-mitigating controls are operating as designed and performing as expected. Self-assurance activities may include quality assurance activities, monitoring activities, and reporting. This operational risk consultant will be responsible for designing and implementing the Enterprise Information Security self-assurance activities program and overseeing its implementation across the organization. This individual will also be responsible for developing governance routines, providing summary results to management including recommended actions, and escalating as appropriate.


  • Analyzes and translates Corporate Risk policies such as the Self-Assurance Activities Policy into actionable processes and procedures and oversees implementation across the organization
  • Develops governance and reporting routines to proactively monitor for on-going adherence and reports aggregated results and recommended actions to management
  • Partners with business unit leaders and provides operational risk expertise regarding the development of new self-assurance activities and/or enhancements to existing activities
  • Evaluates adequacy and effectiveness of existing self-assurance activities which may include quality assurance activities, monitoring activities, and reporting and recommends changes for continuous improvement
  • Directs content development for standardized reporting, control metrics and senior leadership briefings
  • Ability to communicate confidently and professionally to leadership
  • Interacts effectively across the organization including management while demonstrating the ability to build strong relationships with business partners and the three lines of defense
  • Facilitates large group efforts and drives consensus
  • Adapts to change while prioritizing effectively and delivering high quality work in tight timeframes
  • Wells Fargo & Company (NYSE: WFC) is a diversified, community-based financial services company. Founded in 1852 and headquartered in San Francisco, Wells Fargo provides banking, insurance, investments, mortgage, and consumer and commercial finance through our many locations, ATMs, the internet (wellsfargo.com) and mobile banking. To learn more, Wells Fargo perspectives are also available at Wells Fargo Blogs and Wells Fargo Stories.

    Required Qualifications

    10+ years of experience in compliance, operational risk management (includes audit, legal, credit risk, market risk, or the management of a process or business with accountability for compliance or operational risk), or a combination of both; or 10+ years of IT systems security, business process management or financial services industry experience, of which 5+ years must include direct experience in compliance, operational risk management, or a combination of both3+ years of experience with Governance, Risk, and Compliance (GRC) concepts

    Desired Qualifications

    Advanced Microsoft Office skillsExcellent verbal, written, and interpersonal communication skillsStrong analytical skills with high attention to detail and accuracyAbility to interact with all levels of an organizationAbility to evaluate risks and the impact of decisions on an overall organizationAbility to influence and build relationships with LOB stakeholders, technology CIO leadership, external service providers, and architecture teamsExperience reviewing testing strategies and methodologies; evaluating the adequacy and effectiveness of policies, procedures, processes, initiatives, products and internal controls; and identifying issues resulting from internal and/or external compliance examinationsMeeting facilitation experience in leading discussions that result in consensus and commitmentAbility to work effectively, as well as independently, in a team environmentAbility to identify and manage complex issues and negotiate solutions within a geographically dispersed organizationKnowledge and understanding of Information Technology governance risk and compliance processes such as; policies, control standards, risk management concepts, or information securityKnowledge and understanding of information security principles, policies, and proceduresKnowledge and understanding of banking or financial services industryCertified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), or Certified in Risk and Information Systems Control (CRISC)


    All offers for employment with Wells Fargo are contingent upon the candidate having successfully completed a criminal background check. Wells Fargo will consider qualified candidates with criminal histories in a manner consistent with the requirements of applicable local, state and Federal law, including Section 19 of the Federal Deposit Insurance Act.

    Relevant military experience is considered for veterans and transitioning service men and women.
    Wells Fargo is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation.


    Featured Jobs

    Career News

    Before you go...

    Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

    Share this job:

    EIS Self-Assurance Activities Lead - ORC5

    Wells Fargo
    Flagstaff, AZ 86004

    Share this job

    EIS Self-Assurance Activities Lead - ORC5

    Wells Fargo
    Flagstaff, AZ

    Separate email addresses with commas

    Enter valid email address for sender.

    Join us to start saving your Favorite Jobs!

    Sign In Create Account
    Powered ByCareerCast