Wells Fargo Information Security Engineer 5: Cyber Threat Management Qualys Policy Compliance Module in San Antonio, Texas

At Wells Fargo, we have one goal: to satisfy our customers’ financial needs and help them achieve their dreams. We’re looking for talented people who will put our customers at the center of everything we do. Join our diverse and inclusive team where you’ll feel valued and inspired to contribute your unique skills and experience.

Help us build a better Wells Fargo. It all begins with outstanding talent. It all begins with you.

Corporate Risk helps all Wells Fargo businesses identify and manage risk. We focus on three key risk areas: credit risk, operational risk and market risk. We help our management and Board of Directors identify and monitor risks that may affect multiple lines of business, and take appropriate action when business activities exceed the risk tolerance of the company.

Since 1852, customers have trusted that Wells Fargo would keep their assets secure from theft and always available. Today, maintaining customer trust remains our underlying operating principle. Enterprise Information Security’s (EIS) vision is to provide Wells Fargo world leading cyber security risk management. Through a framework that addresses policy, process, operations, people, and technology, EIS protects Wells Fargo’s infrastructure, corporate data, and customer assets, and ensures alignment with applicable regulations and laws. EIS is part of Wells Fargo's Corporate Risk organization and is led by the Chief Information Security Officer.

Note: This position can sit in any core Wells Fargo location or telecommute.

Enterprise Information Security / Cyber Security Defense and Monitoring is looking for a senior engineer responsible for serving as a security expert in creating and implementing policy compliance scanning. As a senior engineer, the person filling this role will be responsible for leading various policy compliance initiatives while working with vendors and business partners to ensure successful implementation. This position is a mixture of analyst and hands-on engineering roles with the primary responsibility of reviewing and mapping the existing policy verbiage into enforceable technology controls at the OS layer leveraging the Qualys Policy Compliance module. This position also has a secondary role of providing engineering support for enterprise vulnerability scanning.

Additional responsibilities may include:

  • Provide guidance and serve as an SME in assessing the security of multiple infrastructure environments with cloud, Citrix, VMware, general server and workstation OS, networks and other systems

  • Identify the status of technical policy compliance by conducting policy scans and using the results to make recommendations for mitigating risks

  • Develop auditing methodologies and architecture to manage and provide routine policy compliance scanning of the relevant computing environments, with specific focus on Middleware, Citrix, VMware and the underlying Windows environment

  • Participate in the development of software and network security procedures and guidelines for information security and technical policy compliance execution, governance, and reporting

  • Assess the impact caused by non-compliance of technical controls for policies

Required Qualifications:

  • 7+ years of information security applications and systems experience

  • 5+ years of TCP/ IP (Transmission Control Protocol/Internet Protocol) experience

  • 3+ years of experience engineering and analyzing server-based operating systems such as Windows or Unix

Desired Qualifications:

  • Advanced Information Security technical skills and understanding of information security practices and policies

  • Ability to manage complex issues and develop solutions

  • Excellent verbal and written communication skills

  • Experience working in a large enterprise environment

  • Ability to articulate issues, risks, and proposed solutions to various levels of staff and management

  • Ability to handle confidential material in a professional manner

  • Ability to identify key issues, involve affected parties, design solutions, obtain buy-in, and communicate effectively through resolution

  • Ability to organize and manage multiple priorities

  • Ability to think creatively to find innovative solutions to complex analytical questions

  • Knowledge and understanding of banking or financial services industry

  • Outstanding problem solving skills

  • Strong analytical skills with high attention to detail and accuracy

How to Express Interest in This Job: Wells Fargo invites you to apply for this job at https://employment.wellsfargo.com/psp/PSEA/APPLICANTNW/HRMS/c/HRSHRAM.HRSAPPSCHJOB.GBL?Page=HRSAPPJBPST&FOCUS=Applicant&SiteId=1&JobOpeningId=5393950&PostingSeq=1.

All offers for employment with Wells Fargo are contingent upon the candidate having successfully completed a criminal background check. Wells Fargo will consider qualified candidates with criminal histories in a manner consistent with the requirements of applicable local, state and Federal law, including Section 19 of the Federal Deposit Insurance Act.

Relevant military experience is considered for veterans and transitioning service men and women.

Wells Fargo is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation.

Relevant military experience is considered for veterans and transitioning service men and women.

Wells Fargo is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation.