1+ months

Information Security Engineer 4 - Cyber Threat Intelligence (CTI) Scripter

Flagstaff, AZ 86004
  • Job Code
Job Description

It starts with you. Our goal is to attract, develop, retain, and motivate the most talented people - those who care and who work together as partners across business units and functions. We value and promote diversity and inclusion in every aspect of our business and at every level of our organization.

Corporate Risk provides leadership, enhances communications, assists with problem identification and solutions, and shares best practices. In addition, this group provides an enterprise-wide view of risk, assists management and our Board of Directors in identifying and monitoring risks that may affect multiple lines of business, and takes appropriate action when business activities exceed the risk tolerance of the company.

We have a new opportunity for an Information Security Engineer 4 (ISE 4)in the Enterprise Information Security (EIS) Cyber Threat Management organization. The individual selected for this position will work as part of the Cyber Threat Intelligence team and will provide cyber threat intelligence analysis, assess and analyze attack surface, conduct threat modeling, and deliver actionable intelligence with focus on current and emerging cyber-attacks against financial sector assets.

TheInformation Security Engineer 4 (ISE 4)will:

  • Actively engage in the intelligence cycle, participating in discussions that enable cyber threat awareness of observed threat activity in the sector.
  • Work with internal teams to identify, analyze, and share correlated and enriched threat Intel to assist incident response and threat detection, allowing faster time to action.
  • Utilize a background in scripting languages to bring greater efficiencies to the work we do.
  • Perform cyber threat analysis and reporting on information from both internal and external sources, and appropriately manage and communicate relevant cyber threat intelligence to partner teams within Enterprise Information Security.
  • Analyze cyber threat data and correlate with existing understanding of cyber threats impacting the financial services sector.
  • Work with partner teams and vendors to design test scenarios and scripts to conduct cyber threat intelligence research in a more automated way.
  • Conduct research and write papers based on the identification of trends and up-and-coming threats, and tailor products to intended customers.
  • Actively monitor and research cyber threats on the Internet and Dark web that have a direct or indirect impact/relevance to financial services, business operations, technology infrastructure, and client trust.
  • Initiate and participate in cyber threat intelligence exchanges with the Wells Fargo LOB partners to include the full range of intelligence lifecycle activities.
  • Provide cyber threat analysis to support Wells Fargo and financial services sector.
  • Triage, process, analyze, and disseminate alerts, reports, and briefings.
  • Participate in intelligence sharing sessions to review cyber threat deliverables andintelligence gap support requests, and guide analytic discussions and nominate topics to be covered during the calls.
  • Develop and further relationships with personnel at other financial institutions, government agencies, and other appropriate organizations.

** The preferred work locations are Charlotte, NC, Minneapolis, MN, or Chandler, AZ, however we will consider other Wells Fargo locations or telecommute**.

Required Qualifications

  • 1 + years of threat intelligence experience within a financial services industry
  • 5+ years of information security applications and systems experience

Desired Qualifications

  • A BS/BA degree or higher
  • 5+ years of information security administration experience
  • Experience working in a large enterprise environment
  • Splunk experience
  • Ability to communicate effectively, in both written and verbal formats, with senior executive-level leaders
  • Ability to execute in a fast paced, high demand, environment while balancing multiple priorities
  • Ability to present complex material in a digestible, consumable manner to all levels of management
  • Ability to work effectively, as well as independently, in a team environment
  • Highly refined and professional verbal and written communications
  • Knowledge and understanding of compiling and preparing executive summaries, whitepaper, and presentations for management/senior leaders
  • Knowledge and understanding of establishing or managing cyber threat management capabilities and functions
  • Knowledge and understanding of information security principles, policies, and procedures
  • Knowledge and understanding of information security technology
  • Knowledge and understanding of monitoring the development of security vulnerabilities, threats, exposures, associated risk, and mitigating solutions
  • Knowledge and understanding of technology testing: script development
  • Knowledge and understanding of threat analysis and assessment of potential and current information security risk/threats
  • Strong analytical and technical skills
  • Strong organizational, multi-tasking, and prioritizing skills
  • Strong presentation skills
  • Experience managing complex projects in a large enterprise environment
  • Experience overseeing development of counter-measure strategies and tactics to offset emerging and evolving external threats from malware/viruses, phishing, pharming and other social engineering schemes
  • Ability to manage complex issues and develop solutions
  • Advanced Information Security technical skills
  • Excellent verbal and written communication skills

Other Desired Qualifications
  • Advanced hands-on experience in threat management and/or vulnerability management
  • Familiarity with a variety of intelligence analysis techniques to generate and test a hypothesis, assess cause and effect, challenge analysis, and support decision making. Examples of these techniques include, but are not limited to:
    • Structured Analysis Technique
    • Key Assumption Check
    • Alternative Competing Hypotheses
    • Strengths-Weaknesses-Opportunities-Threats (SWOT) Analysis
    • Kill Chain Methodology
  • Working knowledge in one or more of the following areas:
    • Threat Modeling Framework (not STRIDE or DREAD)
    • APT & AET
    • Cyber crime
    • Fraud
    • Emerging Threats
    • Social Engineering
    • Insider Threats
    • Technology Applications
  • Ability to work within cross-functional, cross-business, and cross-agency teams

Job Expectations

  • Ability to travel up to 10% of the time


All offers for employment with Wells Fargo are contingent upon the candidate having successfully completed a criminal background check. Wells Fargo will consider qualified candidates with criminal histories in a manner consistent with the requirements of applicable local, state and Federal law, including Section 19 of the Federal Deposit Insurance Act.

Relevant military experience is considered for veterans and transitioning service men and women.

Wells Fargo is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation.



  • Financial Services
  • Business
  • Engineering
  • Government
  • Administrative / Clerical

Featured Jobs

Career News

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Information Security Engineer 4 - Cyber Threat Intelligence (CTI) Scripter

Wells Fargo
Flagstaff, AZ 86004

Share this job

Information Security Engineer 4 - Cyber Threat Intelligence (CTI) Scripter

Wells Fargo
Flagstaff, AZ

Separate email addresses with commas

Enter valid email address for sender.

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast