What are the responsibilities and job description for the Principal Engineer position at wellsfargo?
Title: Principal Engineer
Location: 401 Las Colinas Blvd W Bldg A Irving, TX
Duration: 23 months
Work Engagement: W2
Work Schedule: 3 days in office/2 days remote
Benefits on offer for this contract position: Health Insurance, Life insurance, 401K and Voluntary Benefits
Summary:
As a Principal Engineer within the Chief Data Office, you will be a hands‑on technical leader responsible for translating reference architecture into production‑ready engineering assets.
You will design, build, and continuously improve:
Reusable CI/CD workflow components (GitHub Actions)
Deployment patterns using Harness CD to OpenShift
Policy‑driven security and compliance automation
A core focus of the role is enabling enterprise adoption of P2P‑RCM by delivering practical templates, automation libraries, reference implementations, and onboarding guidance that engineering teams can adopt quickly and consistently.
Responsibilities:
Reference Architecture Engineering & Enablement
Implement and maintain reference implementations for web services, APIs, data pipelines, CMS platforms, and enterprise integration patterns
Translate architecture standards into executable assets, including starter repositories, reusable libraries, workflow templates, and deployment blueprints
Create and maintain architectural decision records (ADRs), implementation guides, and operational runbooks
Partner with Enterprise Architecture to ensure alignment with firm‑wide principles, standards, and governance
Provide technical mentorship to Lead and Senior Engineers through design reviews and implementation coaching
CI/CD & Release Engineering (P2P‑RCM)
Engineer standardized GitHub Actions workflow templates and reusable workflows that encode enterprise best practices for build, test, security scanning, and release readiness
Implement pipeline policy gates and automated evidence collection aligned to P2P‑RCM requirements to ensure predictable, audit‑ready releases
Enable rapid onboarding to P2P‑RCM through documentation, office hours, and hands‑on troubleshooting
Support both enterprise pipelines (EPLX/EPL) and non‑standard pipelines through drop‑in automation components and integration patterns
Collaborate with CDXO and release governance stakeholders to evolve release cargo packaging, promotion, and traceability practices
DevSecOps & Compliance Automation
Integrate and operationalize CI/CD security and quality scanning, including:
Static analysis (Sonar)
SAST (Checkmarx)
SCA (Black Duck)
Secret scanning (GitHub Secret Scanning)
DAST
Design enforceable policy gates and automated reporting that block non‑compliant builds while reducing manual review
Engineer software supply chain security controls, including dependency pinning, artifact provenance, and signing/verification where applicable
Automate vulnerability management workflows for triage, remediation guidance, and verification
Implement Infrastructure as Code (IaC) and GitOps patterns using tools such as Terraform and Ansible to promote repeatability, compliance, and least‑privilege access
OpenShift Delivery Enablement (Harness CD)
Build and maintain standardized Harness CD pipeline modules for OpenShift deployments, including approvals, rollbacks, progressive delivery, and environment promotion
Define deployment traceability and audit‑ready telemetry connecting build artifacts, test results, security evidence, and deployment events
Partner with Platform Engineering, Cloud Operations, and Security teams to meet enterprise reliability and resiliency expectations
Establish and document operational patterns for secrets management, configuration promotion, and incident response readiness
Technical Leadership & Continuous Improvement
Drive adoption of engineering standards through reference code, enablement sessions, and measurable improvements to developer experience
Identify inefficiencies in release governance and delivery workflows and deliver automation to reduce toil and variability
Evaluate emerging technologies and recommend pragmatic improvements to platforms, tooling, and workflows
Represent the team in cross‑organizational working groups and architecture forums
Qualifications:
Applicants must be authorized to work for ANY employer in the U.S. This position is not eligible for visa sponsorship.
Professional software engineering experience with strong proficiency in Python and the ability to lead complex engineering initiatives
Experience building web applications and APIs using industry‑standard frameworks such as Django, FastAPI, or Flask
Experience designing and implementing CI/CD automation and DevOps practices, including GitHub Actions and reusable workflow development
Hands‑on experience integrating security and quality scanning into CI/CD pipelines with enforceable policy gates (Sonar, Checkmarx, Black Duck, GitHub Secret Scanning, DAST)
Experience working with cloud‑native platforms and container orchestration, including OpenShift/Kubernetes, and deployment automation
Experience building or operating deployment automation to OpenShift using Harness CD (or equivalent), including promotion, approvals, and rollback strategies
DevSecOps or application security engineering experience, including compliance automation and vulnerability management
Proven ability to collaborate across engineering, security, platform, and governance stakeholders to deliver reusable standards and drive adoption
Experience utilizing AI‑powered development tools such as GitHub Copilot in a professional engineering environment
Advanced expertise in Python, including modern language patterns, packaging, and test automation using Pytest (preferred)
Experience developing and maintaining Django‑based platforms at enterprise scale; familiarity with Wagtail CMS and Wagtail CRX (CodeRed CMS) (preferred)
Experience with OpenShift/Kubernetes platform engineering, including multi‑tenant clusters, resource governance, and observability practices (preferred)
Experience with Infrastructure as Code, GitOps, and policy‑as‑code approaches using tools such as Terraform, Ansible, and ArgoCD (preferred)
Strong understanding of branching strategies, repository governance, and enterprise release models (preferred)
Experience with SRE practices, observability platforms, and incident management workflows (preferred)
Familiarity with API‑first and spec‑driven development approaches (preferred)