6 days old

Operational Risk Manager 4 - EAM Risk and Policy Management Controls Design Manager

Minneapolis, MN
  • Job Code
Job Description

At Wells Fargo, we have one goal: to satisfy our customers financial needs and help them achieve their dreams. Were looking for talented people who will put our customers at the center of everything we do. Join our diverse and inclusive team where youll feel valued and inspired to contribute your unique skills and experience.

Help us build a better Wells Fargo. It all begins with outstanding talent. It all begins with you.

Corporate Risk helps all Wells Fargo businesses identify and manage risk.We focus on three key risk areas: credit risk, operational risk and market risk. We help our management and Board of Directors identify and monitor risks that may affect multiple lines of business, and take appropriate action when business activities exceed the risk tolerance of the company.

Since 1852, customers have trusted that Wells Fargo would keep their assets secure from theft and always available. Today, maintaining customer trust remains our underlying operating principle.

Enterprise Information Securitys (EIS) vision is to provide Wells Fargo world leading cyber security risk management. Through a framework that addresses policy, process, operations, people, and technology, EIS protects Wells Fargos infrastructure, corporate data, and customer assets, and ensures alignment with applicable regulations and laws. EIS is part of Wells Fargo's Corporate Risk organization and is led by the Chief Information Security Officer.

The Controls Design manager will be responsible for the business ownership of controls design, documentation and maintenance of all EAM controls within the Information Security Governance, Risk, and Compliance (GRC) platform. The leader of this team will direct a group of individual contributors supporting the implementation and ongoing enhancements to the GRC platform.

This team is responsible for the following:

  • Ensure EAM requirements are alignment to Information Security and Corporate Risk standards
  • Documenting controls that are currently in production within the EAM environment
  • Documenting control requirements in alignment with IS-EAM policy and control standards
  • Complete annual gap analysis and resulting risk assessment
  • Identify control weaknesses and rate controls as a result of validation testing
  • Act as liaisons with control owners and stakeholders to maintain documented controls as well as documenting new controls via remediation activities or changes in processes/tools
  • Govern data that is entered, stored, and reported in the GRC platform
  • Support GRC platform functions in future enhancements and process improvements
  • Required Qualifications

    10+ years of experience in compliance, operational risk management (includes audit, legal, credit risk, market risk, or the management of a process or business with accountability for compliance or operational risk), or a combination of both; or 10+ years of IT systems security, business process management or financial services industry experience, of which 5+ years must include direct experience in compliance, operational risk management, or a combination of both5+ years of management experience

    Desired Qualifications

    Advanced Microsoft Office skillsExcellent verbal, written, and interpersonal communication skillsStrong analytical skills with high attention to detail and accuracyAbility to articulate complex concepts in a clear manner8+ years of information security experienceMeeting facilitation experience in leading discussions that result in consensus and commitmentExperience leading, developing, and implementing information security strategies across a complex organizationStrategic planning experience in translating leadership vision into executable strategies and initiatives enterprise-wide4+ years of experience leading and executing complex technology transformational programs across an enterpriseAbility to influence and build relationships with LOB stakeholders, technology CIO leadership, external service providers, and architecture teamsKnowledge and understanding of mitigating security controls (, antivirus, IPS or IDS, email filtering, web site blocking, patching) and how they work in an overall defense in depth risk assessment methodologyInformation Security Frameworks and standards (FFIEC, NIST, ISO) experienceKnowledge and understanding of information security policies and control standards governing network security products/toolsExperience providing principal level strategic financial crime and external threat analysisKnowledge and understanding of platform technologies including network, distributed systems, desktop computing, voice, and threat management technologiesExperience with information security and risk management including: policy and standards, information security assessment, and mitigation solution design and implementationA BS/BA degree or higherCertified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), or Certified in Risk and Information Systems Control (CRISC)

    Other Desired Qualifications

    Experience working with Governance, Risk, and Compliance platforms (e.g., Archer, BWise, OpenPages, RSAM, etc.)


    All offers for employment with Wells Fargo are contingent upon the candidate having successfully completed a criminal background check. Wells Fargo will consider qualified candidates with criminal histories in a manner consistent with the requirements of applicable local, state and Federal law, including Section 19 of the Federal Deposit Insurance Act.

    Relevant military experience is considered for veterans and transitioning service men and women.
    Wells Fargo is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation.


    Featured Jobs

    Career News

    Before you go...

    Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

    Share this job:

    Operational Risk Manager 4 - EAM Risk and Policy Management Controls Design Manager

    Wells Fargo
    Minneapolis, MN

    Join us to start saving your Favorite Jobs!

    Sign In Create Account
    Powered ByCareerCast