30 days old

Information Security Manager 3 - Security Content Development

Field Rep 002, AZ
  • Job Code
Job Description

Since 1852, customers have trusted that Wells Fargo would keep their assets secure from theft and always available. Today, maintaining customer trust remains our underlying operating principle.

Enterprise Information Securitys (EIS) vision is to provide Wells Fargo world leading cyber security risk management. Through a framework that addresses policy, process, operations, people, and technology, EIS protects Wells Fargos infrastructure, corporate data, and customer assets, and ensures alignment with applicable regulations and laws. EIS is part of Wells Fargo's Corporate Risk organization and is led by the Chief Information Security Officer.

Job Description:

Note: This position can sit in any core Wells Fargo location or telecommute.

Within the Security Content Development (SCD) team, this Information Security Manager position will lead data quality engineering efforts and associated projects related to enterprise CoTS and custom Wells Fargo (WF) applications to include proxy, web, middleware, and database tiers, for the Cyber Threat Fusion Center (CTFC). This team is responsible for managing WF application-related data feed ingestion and data quality improvements for enterprise visibility, optimizing data alignment to the Common Information Model (CIM) where possible.

The SCD Data Quality Engineering Application Data team manager will work closely with platform and application engineers and Cyber Security teams to provide a reliable and optimized collection of enterprise security event and enrichment data spanning numerous platforms to enhance and improve upon security visibility across the Wells Fargo enterprise network. The SCD team supports many cutting edge technologies that allow Wells Fargo to address many of the challenges with managing a large information security capability. This leadership position will manage and provide leadership for a high performance team of security engineers and analysts, and will collaborate with risk managers, project managers, analysts, and platform engineers in addition to Cyber Security engineers and analysts focused on analytics, monitoring, alerting, and developing next generation visualizations, and more. This is an exciting opportunity as we continue to innovate and expand our capabilities in the management of Cyber Threats.

Security Content Development manager for Data Quality Engineering Application Data.

Required Qualifications

  • 9+ years of experience in one or a combination of the following: information security, IT systems security or technology experience including 3+ years direct experience in information security
  • 3+ years of management experience, in an Information Security or IT environment
  • 2 + years of Regular Expression (regex) experience

Desired Qualifications

  • 3+ years of experience managing large information security functions
  • Experience managing a technology infrastructure function, application or information security function that has impact across the enterprise
  • Excellent verbal, written, and interpersonal communication skills
  • Ability to effectively influence and interact with all levels of an organization
  • Ability to execute in a fast paced, high demand, environment while balancing multiple priorities
  • Experience working in a large enterprise environment
  • Experience analyzing large data sets
  • Ability to identify key issues, involve affected parties, design solutions, obtain buy-in, and communicate effectively through resolution
  • Knowledge and understanding of application security planning and security architecture
  • Experience with Security Information and Event Management (SIEM) products
  • Knowledge and understanding of banking or financial services industry
  • Knowledge and understanding of data security controls including malware protection, firewalls, intrusion detection systems, content filtering, Internet proxies, encryption controls, and log management solutions
  • Knowledge and understanding of Linux
  • Knowledge and understanding of UNIX
  • Knowledge and understanding of desktop and Windows server operating systems
  • Knowledge and understanding of Information Security Tools Development Unix and Windows
  • Knowledge and understanding of issues or change management processes
  • Ability to prioritize work, meet deadlines, achieve goals, and work under pressure in a dynamic and complex environment
  • Highly refined and professional verbal and written communications
  • Strong analytical skills with high attention to detail and accuracy
  • Ability to handle confidential material in a professional manner

Other Desired Qualifications
  • 3 + years of technology application management experience
  • 3+ years of management experience, in an Information Security or IT environment
  • Familiarization with multiple database platforms
  • Advanced Information Security technical skills and understanding of information security practices and policies
  • Ability to manage complex issues and develop solutions
  • Hands-on experience with information security tools such as an enterprise SIEM solution, IDS/IPS, endpoint security solutions, email/web security gateways, and other security detection/mitigation devices
  • Experience with host-based and/or network-based forensics tools and techniques
  • Experience with host and/or network log analysis as applied to incident response / threat hunting
  • Knowledge of offensive security, with the ability to think like an adversary when hunting and responding to incidents
  • Strong ability to identify anomalous behavior on endpoint devices and/or network communications
  • Strong experience in operating system and application security hardening and best practices
  • Strong investigative mindset with an attention to detail
  • Experience with multiple operating systems to include Windows, Mac OS, and Unix/Linux
  • Demonstrate the ability to provide written and verbal communications to management to address real-time issues and incidents, including writing formal incident reports
  • Advanced problem solving skills, ability to develop effective long-term solutions to complex problems
  • Certifications in one or more of the following: Certified Information Systems Security Professional (CISSP), GIAC Certified Incident Handler (GCIH), GIAC Reverse Engineering Malware (GREM), GIAC Certified Forensic Analyst (GCFA), GIAC Network Forensics Analyst (GNFA), Offensive Security (OSCP/OSCE/etc), or other relevant certifications.
  • Programming, networking, and multiple-OS support experience.

Job Expectations

  • Ability to travel up to 10% of the time


All offers for employment with Wells Fargo are contingent upon the candidate having successfully completed a criminal background check. Wells Fargo will consider qualified candidates with criminal histories in a manner consistent with the requirements of applicable local, state and Federal law, including Section 19 of the Federal Deposit Insurance Act.

Relevant military experience is considered for veterans and transitioning service men and women.

Wells Fargo is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation.



  • Information Technology
  • Financial Services
  • Management
  • Engineering
  • Security / Protective Services

Featured Jobs

Career News

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Information Security Manager 3 - Security Content Development

Wells Fargo
Field Rep 002, AZ

Share this job

Information Security Manager 3 - Security Content Development

Wells Fargo
Field Rep 002, AZ

Separate email addresses with commas

Enter valid email address for sender.

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast