Job Location: Irving, TX
At Wells Fargo, we are looking for talented people who will put our customers at the center of everything we do. We are seeking candidates who embrace diversity, equity and inclusion in a workplace where everyone feels valued and inspired. Help us build a better Wells Fargo. It all begins with outstanding talent. It all begins with you.
Wells Fargo Information and Cyber Security (ICS) Vulnerability Operations team is looking for a Sr. Lead Info Security Analyst. Learn more about the career areas and lines of business at wellsfargojobs.com .
The Cyber Hygiene Vulnerability Operations team is a governance team aligned to the Information Security division within Wells Fargo Technology. The team provides oversight of active enterprise-wide infrastructure vulnerabilities and facilitates their rapid research and subsequent remediation. The team also owns the policy and regulatory controls surrounding delivery of this service for the company.
This particular role is responsible for escalating overdue vulnerabilities to senior leaders for help getting urgent, prioritized attention to remediate them.
In this role, you will:
- Serve as primary executor of the risk management control for vulnerability consequence model escalation.
- Provide daily guidance to other team members involved in executing this control in a collaborative teamwork fashion.
- Identify improvements and lead efforts to implement the improvements to control execution and underlying technology and procedures.
- Develop an understanding of incoming work, identify the affected parties, communicate action needed concisely.
- Work with the remediation owners and their leadership to provide guidance on actions required
- Track deliverables until completed, escalating when deliverables are missed.
- Craft communications and reports which provide transparency into progress and insight into problems or actions needed.
- Retain evidence and artifacts demonstrating the quality of execution of this work in support of audit and control reviews and quality assurance assessments.
- Support the Information Security program in governing vulnerability remediation across the Wells Fargo Technology organization.
- Consult with line of business on the consistent implementation of the enterprise information security model and solutions to remediate information security risks
- Ensure that risks to all information assets are being managed in a timely and effective manner to meet the Information Security Program requirements and the current threat landscape
- Ensure information security capabilities are included in all aspects of the company’s technology architecture
- Proactively manage the information security risk profile of line of business information assets throughout the lifecycle of the asset
- Provide vision, direction, and expertise to more experienced leadership on implementing innovative and significant business solutions that are large-scale, cross-functional, or companywide strategies
- Ensure the team has the necessary training and is keeping abreast of regulatory and compliance issues
- Engage with all levels of professionals and managers companywide and serve as an experienced advisor to leadership
Broadly, success is based on on-time delivery of the work, ability to drive resolution of challenges, and proactive escalation and visibility into items at risk or experiencing active issues. To address deliverables, take data from many different sources and assemble it into a coherent package for affected teams to quickly digest the actions needed. Use systems of records to merge, manipulate, analyze, and summarize data for senior leadership decision making.
Required Qualifications:
- 7+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
- 3+ years of advanced Excel data analysis
Desired Qualifications:
- Demonstrated experience in analyzing governance, policy, compliance, and risk management practices
- Ability to work and influence successfully within a matrixed environment and build effective business partnerships with all levels of team members
- Ability to influence, partner, and negotiate with senior business leaders to gain commitment to accomplish business goals
- Ability to facilitate and lead meetings to reach conclusions, identify tasks, record actions, and achieve results
- Problem solving and decision-making skills
- Strong communication skills and ability to articulate complex material to a diverse audience
- Strong analytical skills with high attention to detail and accuracy
- Excellent verbal, written, and interpersonal communication skills
- Advanced Microsoft Office (Word, Excel, Outlook, and PowerPoint) skills
- Demonstrated experience in use of Sharepoint
- Demonstrated experience with Tableau
- Demonstrated experience with Jira
- Demonstrated experience with Qualys
- Demonstrated knowledge of Agile methodology
- Advanced knowledge of Common Vulnerabilities and Exposures (CVE)
- Financial industry experience
Job Expectations:
- 0-5% travel for things such as annual offsite meetings
- Work is generally performed onsite in a Wells Fargo hub location with ad hoc remote work as negotiated with manager
Summary:
The Vulnerability Operations team is a governance team aligned to the Technology Infrastructure and Information Security organizations at Wells Fargo. The team provides oversight of outstanding enterprise-wide software vulnerabilities and facilitates their rapid research and subsequent closure. The team also owns the policy and regulatory controls surrounding delivery of this service for the company.
This particular role is responsible for escalating overdue vulnerabilities to senior leaders for help getting urgent, prioritized attention to remediate them.
The role requires significant ad hoc data analytics, strong communication and facilitation skills, a cool head under pressure, and a collaborative, encouraging spirit with a sense of humor.
Description:
Seeking a proactive, independent team member with superb attention to detail and attention to maintaining evidence sufficient to support enterprise risk management controls and to provide adequate defense in annual internal audits and possible regulatory scrutiny. The successful candidate will be a go-getter who takes charge and leads the work boldly and without concern for who needs to be engaged to get results. Develop an understanding of incoming work, identify the affected parties, communicate action needed concisely, and work with the teams to track the deliverables until done, escalating when deliverables are missed, and driving the teams to bring the work back on track through appropriately urgent actions. Working with other members of our team with these specialized skills, craft communications and reports which provide transparency into progress and insight into problems or actions needed by leaders. Success is based on on-time delivery of the work, ability to drive resolution of challenges, and proactive escalation and visibility into items at risk or experiencing active issues. Preferred candidates have Agile experience doing all of the above successfully. The successful candidate: (1) will manage pressure well. This is not a constantly high pressure job, but there are deadlines, and we must remain on track. (2) will take ownership of assigned work and execute in line with documented procedure, (3) will communicate extremely clearly in writing and on the phone; virtually 100% of the job is via phone or email with people in other locations. Communication is critical. (4) will maintain a professional and friendly demeanor at all times, (5) will see this role as an opportunity to demonstrate servant leadership in action, (6) will be self-motivated and will look for ways to add value beyond the letter of the assignment, (7) will find a way to clarify and simplify complicated scenarios for leadership decision and quick understanding.
Key points:
- Extremely skilled at ad hoc analytics using Excel – heavy pivot tables, complex formulas, cross-referencing related data files, and possibly light macros. The successful candidate defaults to Excel for analyzing most data problems and basically lives in Excel.
- This job is not limited to Excel skills, though. Read on.
- Ability to take data from many different sources and assemble it into a coherent package for affected teams to quickly digest the actions needed
- Confident and competent interactions with senior leadership.
- Strong-willed personality who will challenge a bad idea or approach and stand their ground even if their peers will not but who will take direction from leadership and execute accordingly.
- Communication:
- Ability to adjust to varying communication styles in order to increase understanding and action. Not everyone thinks or communicates the same, so instead of just continuing to repeat the same thing, ability to recognize when discussion is not working and shift to a different style of explaining, when needed.
- No fear of asking questions until process/requirements are clear. Ask the questions so our teams don’t have to.
- Works quickly and delivers results with a mindset of enough for now but always looking for better
- Able to take big picture goals/problems and break them down into actionable items
- Familiarity with technology terms
- Ability to meet hard deadlines
- Experience at a large enterprise
- Incredible attention to detail; our credibility and compliance is contingent on the quality and clarity of our information.
- Highly skilled end user of Tableau, SharePoint.
- Term 1 year to start
- Locations – St. Louis MO, Charlotte NC, Dallas TX, Des Moines IA (preferred)
Other:
- Self-motivated personality with big-picture awareness and a focus on making the team successful.
- Willingness to put team before self and to engage in healthy discussion of options but to accept and support decisions once they are made.
- Clear diction and voice easy to understand on phone calls. All of our meetings and interactions are via phone or Teams/Skype.
- Upbeat, positive approach to tasks and client/team member interactions.
- Pluses: -Agile experience , -Financial industry experience , -Compliance, governance, policy, risk management , -Jira
We Value Diversity
At Wells Fargo, we believe in diversity, equity and inclusion in the workplace; accordingly, we welcome applications for employment from all qualified candidates, regardless of race, color, gender, national origin, religion, age, sexual orientation, gender identity, gender expression, genetic information, individuals with disabilities, pregnancy, marital status, status as a protected veteran or any other status protected by applicable law.
Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit’s risk appetite and all risk and compliance program requirements.
Candidates applying to job openings posted in US: All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process.
Submit CV To All Data Science Job Consultants Across United States For Free