Senior Lead Cyber Security Research Consultant

About this role:

Wells Fargo is seeking a Senior Lead Cyber Security Research Consultant in Technology as part of Cybersecurity. Learn more about the career areas and lines of business at wellsfargojobs.com.

Wells Fargo is seeking a Senior Lead Cyber Security Research Consultant who will support the Infosec Solution Engineering Team. This will be a key senior role that will assist the leadership team in shaping the long-term vision for cyber defense capabilities by evaluating scalable, forward-looking and innovative solutions with cross functional collaboration. Primary day to day responsibilities will be focused on providing solutions for security defense tooling, automation, and enrichment of existing tooling as well as product development to ensure defense teams have the tooling/data needed to monitor, detect, respond, and remediate attacks.

In this role, you will:

• Oversee the development of planning and solutions within and across the enterprise, to include (but not limited to) the areas of business continuity, emergency management, supply chain security, information security, personnel security, operations security, and facilities security
• Build a mentoring program for the Infosec Solution Engineering and its partners to help develop the capabilities around next generation cyber capabilities
• Provide subject matter expertise on tool selection, solution design criteria, integration, and enterprise cyber strategy
• Work closely with associated team partners to determine best practices, interactions and integrations between systems, teams and processes
• A leader that demonstrates efficiency, effectiveness, and has strengths at building relationships among the differing groups
• Educate senior management regarding the strengths, weaknesses, opportunities, for the strategic development of cyber solutions
• Provide regular briefings to senior management regarding issues relevant to cyber solutions. Demonstrate flexibility and adjust team activities and agenda based on senior management input
• Work closely with existing infrastructure and security teams, both to receive input and to provide practical and actionable solutions
• Act as an adversarial counterpoint to security strategy proposals
• Work closely with the all related teams both in cyber and within the business on the development of tools and strategies to address security issues at scale.

• 7+ years of Cyber Security Engineering and Planning experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 7+ years of Cyber Security Research experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 7+ years of experience in briefing senior level executives and key stakeholders around security engineering strategy and solution activities
• 7+ years of information security reporting and analysis experience
• 5+ years of experience in one or a combination of the following: security engineering, secure by design, analytics, or modeling in an information security environment, information technology environment, or a combination of both

• 7 or more years of experience driving solutions and engineering plans for cyber security based around high-consequence systems
• Understanding of security architecture principles and best in class design principles
• Understanding of MITRE ATT&CK framework
• Experience with Burp Suite, Crowdstrike, Splunk, Chronicle, EDR solutions, IoT/OT security.
• Thorough understanding of concepts and principles related to security, strategy, and security management.
• Ability to work productively with a variety of stakeholders (and their associated, sometimes conflicting) interests within the enterprise
• Ability to work with and against internal resistance, and, as necessary, build consensus for strategic security design and planning within the enterprise
• Ability to think and act both strategically and tactically, theoretically, and pragmatically
• CISSP, CRISC certification or other similar related security certifications
• Experience with GCP and Azure environments

• This position offers a hybrid work schedule
• This position is not eligible for Visa sponsorship

• Health benefits
• 401(k) Plan
• Paid time off
• Disability benefits
• Life insurance, critical illness insurance, and accident insurance
• Parental leave
• Critical caregiving leave
• Discounts and savings
• Commuter benefits
• Tuition reimbursement
• Scholarships for dependent children
• Adoption reimbursement