Principal Engineer - Cyber Security Operations

About this role:

Wells Fargo is seeking a Principal Engineer in Technology as part of Cybersecurity. Learn more about the career areas and lines of business at wellsfargojobs.com.

Wells Fargo is seeking a Principal Engineer for our Cyber Security Operations team to serve as the senior technical authority for security operations. The position is responsible for leading and setting the strategy and direction for advanced cyber security incident response, threat detection, phishing and cybercrime response, and advanced adversarial response and mitigation for the company. This position will interact directly with Threat Detection Services, Security Content Development, Cyber Threat Fusion Center, Cyber Threat Management, and Offensive Security Research Team.

• Principal Engineer (SME/technical authority) for incident response, cybercrime, phishing, evolving threats, automation development, and advanced adversarial response and mitigation
• Implement machine learning and automation across the above areas
• Conduct strategy planning in the above areas for ICS
• Provide guidance and oversight to multiple teams within TDS, CTFC, and SCD (Security Operations)
• Engage with executive leadership across the lines of business to ensure technical solutions are in alignment with established priorities
• Create efficiency where it does not exist (via Machine Learning or Automation): Be three steps ahead of the company's needs, providing solutions that improve efficiency/scalability for years to come
• Force multiplier: Enable team through collaboration and technical solutions

• Act as an advisor to leadership to develop or influence applications, network, information security, database, operating systems, or web technologies for highly complex business and technical needs across multiple groups
• Lead the strategy and resolution of highly complex and unique challenges requiring in-depth evaluation across multiple areas or the enterprise, delivering solutions that are long-term, large-scale and require vision, creativity, innovation, advanced analytical and inductive thinking
• Translate advanced technology experience, an in-depth knowledge of the organizations tactical and strategic business objectives, the enterprise technological environment, the organization structure, and strategic technological opportunities and requirements into technical engineering solutions
• Provide vision, direction and expertise to leadership on implementing innovative and significant business solutions
• Maintain knowledge of industry best practices and new technologies and recommends innovations that enhance operations or provide a competitive advantage to the organization
• Strategically engage with all levels of professionals and managers across the enterprise and serve as an expert advisor to leadership

• 7+ years of Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 7+ years of technical engineering experience
• 7+ years of Incident Response Protocols and Tools experience
• 7+ years of experience in information security risk management or information security technology

• 7+ years of information security experience including experience in one or more of the following security disciplines: information security monitoring, incident response, vulnerability management, host/network forensics, cyber-crime investigation, penetration testing, business continuity, or cyber threat intelligence.
• 5+ years of Incident Management System experience
• Experience articulating issues, risks, and proposed solutions to various levels of staff and management
• Knowledge and understanding of threat analysis and assessment of potential and current information security risk/threats
• Experience with Security Information and Event Management (SIEM) products
• Certifications in one or more of the following: Global Information Assurance Certification (GIAC), Offensive Security Certified Professional (OSCP), Offensive Security Wireless Professional (OSWP), Offensive Security Certified Expert (OSCE), Offensive Security Exploitation Expert (OSEE), or Offensive Security Web Expert (OSWE)
• Ability to execute in a fast paced, high demand, environment while balancing multiple priorities
• Experience working in a large enterprise environment
• Knowledge and understanding of banking or financial services industry

• Ability to travel up to 10% of the time

• Health benefits
• 401(k) Plan
• Paid time off
• Disability benefits
• Life insurance, critical illness insurance, and accident insurance
• Parental leave
• Critical caregiving leave
• Discounts and savings
• Commuter benefits
• Tuition reimbursement
• Scholarships for dependent children
• Adoption reimbursement