Senior Lead Control Management Officer- Cybersecurity Risk & Control Management

Why Wells Fargo

Are you looking for more? Find it here. At Wells Fargo, we're more than a financial services leader - we're a global trailblazer committed to driving innovation, empowering communities, and helping our customers succeed.

We believe that a meaningful career is much more than just a job - it's about finding all of the elements to help you thrive, in one place.

Living the Well Life means you're supported in life, not just work. It means having robust benefits, competitive compensation, and programs designed to help you find work-life balance and well-being. You'll be rewarded for investing in your community, celebrated for being your authentic self, and empowered to grow. Join us!

About this Role

Wells Fargo is seeking an Executive Director - Senior Lead Control Management Officer to join our Technology Control Management organization, with a specialized focus on building out and structuring Control Management oversight over Technology & Cybersecurity domains. This role is pivotal in driving a proactive cybersecurity risk posture across the enterprise, aligning with the strategic objectives of Wells Fargo and supporting the ability to make technology risk transparent to the business processes in a way that businesses can understand.

As a senior leader, you will serve as a hybrid Cybersecurity Risk Advisor and Control Management Officer, partnering across the three lines of defense to ensure robust risk identification, assessment, and mitigation strategies through the Wells Fargo risk management lifecyle of Plan, Identify, Control, Monitor, and Validate. You will lead efforts to embed cybersecurity controls into business processes, support regulatory compliance, and provide technical oversight across critical security functions.

Key Responsibilities:

• Serve as a strategic cybersecurity risk advisor to senior leadership, driving the integration of security controls into business and technology initiatives focusing on the risk management lifecycle of plan, identify, control, monitor, and validate.
• Lead the development and execution of control strategies for complex, enterprise-wide cybersecurity risks, including threat detection, cloud governance, and data protection. Inclusive of definition of risk assessable units (RAUs) that enable the transparency of risk at the business process level.
• Oversee the lifecycle of cybersecurity controls, including RCSA execution, issue management, and control testing, ensuring alignment with regulatory expectations and industry frameworks.
• Collaborate with Cybersecurity Technology teams to assess control effectiveness and drive remediation of technical vulnerabilities.
• Provide governance and oversight for cybersecurity risk reporting, metrics, and dashboards presented to executive and board-level stakeholders.
• Mentor and lead cross-functional teams in the design and implementation of innovative control solutions that address emerging threats and regulatory changes.
• Act as a liaison between Cybersecurity and Lines of Business, translating technical risks into business impacts and ensuring alignment with enterprise risk appetite.

• 7+ years of experience in Cybersecurity Risk Management, IT Audit, or Control Management within a large financial institution or Big 4 consulting firm.
• 4+ years of experience with proven leadership in managing cybersecurity risk portfolios and control environments across complex, regulated organizations.

• Deep technical expertise in one or more of the following: Security Operations, Cloud Security, Data Protection, Vulnerability Management, and SIEM technologies.
• Strong working knowledge of cybersecurity frameworks and regulatory guidance, including NIST CSF, NIST 800-53, CIS Controls, FFIEC, COBIT, FedRAMP, and ISO 27001.
• Professional certifications such as CISSP, CISA, CISM, CCSP, CCAK, or CEH.
• Experience in process design, control automation, and data analytics for risk reporting.
• Exceptional communication skills with the ability to influence and engage stakeholders at all levels.
• Prior experience in a BISO or Control Management leadership role is highly desirable.

• Hybrid work schedule: Minimum 3 days in-office, 2 days remote.
• Ability to travel up to 10%.
• Office locations: Charlotte, NC | Iselin, NJ | Minneapolis, MN | Dallas, TX | Irving, TX

• Health benefits
• 401(k) Plan
• Paid time off
• Disability benefits
• Life insurance, critical illness insurance, and accident insurance
• Parental leave
• Critical caregiving leave
• Discounts and savings
• Commuter benefits
• Tuition reimbursement
• Scholarships for dependent children
• Adoption reimbursement