About this role:

Wells Fargo is seeking a Senior Lead Information Security Analyst...

In this role, you will:

• Provide oversight to the Information Security program for a major line of business
• Consult with line of business on the consistent implementation of the enterprise information security model and solutions to remediate information security risks
• Ensure that risks to all information assets are being managed in a timely and effective manner to meet the Information Security Program requirements and the current threat landscape
• Ensure information security capabilities are included in all aspects of the company's technology architecture
• Proactively manage the information security risk profile of line of business information assets throughout the lifecycle of the asset
• Provide vision, direction, and expertise to more experienced leadership on implementing innovative and significant business solutions that are large-scale, cross-functional, or companywide strategies
• Ensure the team has the necessary training and is keeping abreast of regulatory and compliance issues
• Engage with all levels of professionals and managers companywide and serve as an experienced advisor to leadership
• Lead two or more complex Cybersecurity policy governance areas
• Align policy area scope and deliverables to strategic and transformational goals
• Develop and evolve Cybersecurity policy governance program strategy to scale with Cybersecurity organizational growth
• Develop and execute Cybersecurity policy governance annual activities considering inputs across Cybersecurity domain functions and key stakeholder groups
• Plan and coordinate with PGO teammates to support on-time delivery of deliverables across all programs
• Drive the successful completion of programs to achieve business goals, including timely identification, escalation, and remediation of risks and issues that impact program execution and delivery
• Enhance and maintain knowledge of Wells Fargo’s expectations for program and change management, including policies, processes, procedures and tools for program delivery
• Maintain and employ knowledge of industry best practices for program and change management, including agile methodology
• Deliver periodic business and operating reports, including identification and remediation of execution or other risks and issues, retrospective reviews, and lessons learned
• Build strong relationships with program sponsors, business partners, and key stakeholders
• Coordinate, facilitate, negotiate, and influence cross-functional macro-level topics with key stakeholders and senior management
• Deliver clear, concise, and actionable communication to various levels of organization on a timely basis to ensure effective understanding, decision-making, and execution

Required Qualifications, US:

• 7 years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 5 years of experience managing policy governance, including drafting policy

Desired Qualifications:

• 5 years experience with security infrastructure technologies, cryptography, certificate and key management, data loss prevention or information protection
• 7 years experience in the development and management of complex programs spanning multiple technology, Cybersecurity, or large banking operations
• 7 in financial services or other highly-regulated industry; knowledge of the financial services regulatory environment
• 5 years experience change management principles (e.g., ADKAR) and developing and implementing change management strategies
• 5 years of Technical Writing experience
• Knowledge of COBIT, FedRamp, FFIEC, ISO, MITRE, NIST, and other key industry frameworks and authoritative sources
• Functional experience across two or more Cybersecurity domains (e.g., infrastructure, cryptography, identity and access management)
• Experience with developing and presenting business management materials to senior management and governance committees
• Strong critical thinking skills, consistent attention to detail, and ability to meet deadlines amidst competing priorities
• Advanced level leadership, communication, relationship building, negotiating, and influencing skills
• Advanced proficiency in MS Word, Excel, and PowerPoint
• Experience with agile methodology and Atlassian suite of products (e.g., Confluence, Jira)
• Experience with data aggregation and reporting tools (e.g., Tableau)

This resource will lead a policy governance body of work to identify, formulate, and implement complex Cybersecurity policies, procedures, and controls for Cybersecurity. In so doing, this resource will support execution of the 2023/24 strategic initiative to implement Policy Simplification across all Cybersecurity policy stacks and will partner and influence across the Cybersecurity policy stakeholder community, including Cybersecurity technical domains, Business Information Security Officers (BISO), Chief Information Officers, front line risk management, and the Enterprise Policy Office.

We Value Diversity

At Wells Fargo, we believe in diversity, equity and inclusion in the workplace; accordingly, we welcome applications for employment from all qualified candidates, regardless of race, color, gender, national origin, religion, age, sexual orientation, gender identity, gender expression, genetic information, individuals with disabilities, pregnancy, marital status, status as a protected veteran or any other status protected by applicable law.

Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit’s risk appetite and all risk and compliance program requirements.

Candidates applying to job openings posted in US: All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic.

Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process.

Drug and Alcohol Policy

Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more.