Cybersecurity Policy and AI Governance Program Lead Information Security Analyst

About this role:

Wells Fargo is seeking a Lead Information Security Analyst in Cybersecurity as part of Governance and Information Protection. Learn more about career areas and business divisions at wellsfargojobs.com.

This role will serve as the Cybersecurity Policy and AI Governance Program Lead. In this critical role, you will implement a dynamic Cybersecurity for AI governance framework, including supporting execution of governance routines such as adherence monitoring, controls, metrics, reporting, key performance indicators, and escalation.

You will also support the sustainment of this dynamic Cybersecurity for AI governance framework, including review and ingestion of regulatory changes to AI; maintenance of mapping to AI instances across the firm to ensure visibility of full scope of AI activity; and defined plans on how to pivot the program as regulatory and firm environmental changes necessitate.

You will partner across Cybersecurity to help establish AI requirements to secure AI across the firm; drive the incorporation of AI requirements into the appropriate documentation, including policy, baselines, developer design requirements; and work with engineers, cloud SMEs, data scientists, among others, to translate requirements into patterns and/or security assessments controls.

In this role, you will:

• Provide advanced information security consultation for all aspects of information security compliance policy, risk management, and remediation

• Act as more experienced lead to the organization to develop security risk awareness and mitigating actions

• Consult the organization on complex security issues and findings

• Evaluate and interpret internal and companywide information security policies, processes, standards, and participate with more experienced leaders in decision making on information security

• Collaborate and consult with peers, colleagues, and mid-level to more experienced managers to resolve issues and achieve goals

• Coordinate with vendor manager on third party assets to manage information security risks

• Serve as a mentor to less experienced staff

• Lead one or more complex Cybersecurity policy governance areas

• Align policy area scope and deliverables to strategic and transformational goals

• Drive the successful completion of programs to achieve business goals, including timely identification, escalation, and remediation of risks and issues that impact program execution and delivery

• Deliver periodic business and operating reports, including identification and remediation of execution or other risks and issues, retrospective reviews, and lessons learned

• Build strong relationships with program sponsors, business partners, and key stakeholders

• Coordinate, facilitate, negotiate, and influence cross-functional macro-level topics with key stakeholders and senior management

• Deliver clear, concise, and actionable communication to various levels of organization on a timely basis to ensure effective understanding, decision-making, and execution

Required Qualifications:

• 5+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education

• 4+ years of cross-functional, Cybersecurity domain experience (e.g., demonstrated ability to understand and mitigate Cybersecurity risk across multiple domains (IAM, AppSec, DLP, Encryption, Infrastructure, Third-Party, etc.))

• 4+ years of experience in Cybersecurity or Technology risk management, audit, or legal functions

• 3+ years of experience with core security technologies such as cryptography, certificate and key management, data loss prevention (DLP), information protection, vulnerability management, cloud governance, and incident response

• 1+ year of experience with AI/ML governance

Desired Qualifications:

• 3+ years of cyber governance is highly desired

• 4+ years' experience in the development and management of complex programs spanning multiple technology, Cybersecurity, or large banking operations

• Experience in financial services or other highly regulated industry; knowledge of the financial services regulatory environment

• Deep understanding of AI/ML governance, including:

  • Understanding key AI/ML laws, rules, regulations, and frameworks

  • Establishing guardrails/governance for defensible security around AI instances utilized across a firm via policy, procedures, and associated adherence monitoring mechanisms (e.g., controls, metrics, reporting, paths for escalation)

  • Scaling changes at pace across a large, matrixed environment to meet regulatory and firm environmental obligations, while remaining secure and defensible

• Ability to anticipate and mitigate AI/ML challenges by understanding risk frameworks and evolving regulatory/legal landscape

• Finesse in bridging the gap between AI/ML and internal customers by distilling complex concepts and making consumable to any audience

• Ability to develop and deliver message of secure AI/ML as an enabler of business and make it real for stakeholders at all levels across the enterprise

• Ability to work independently, confidently challenge assumptions, and lead by example in ensuring risks are effectively mitigated

• Excellent communication with the ability to drive initiatives and engage with stakeholders at all levels

• Advanced level leadership, communication, relationship building, negotiating, and influencing skills

• Experience with developing and presenting business management materials to senior management and governance committees

• Strong critical thinking skills, consistent attention to detail, and ability to meet deadlines amidst competing priorities

Locations:

• 1525 WT Harris Blvd, Charlotte, North Carolina 28262
• 2600 S Price Rd, Chandler, Arizona 85286
• 550 S 4th St, Minneapolis, Minnesota 55415

Posting Statements:

• Job posting may come down early due to volume of applicants. 
• Required location(s) listed above. Relocation assistance is not available for this position.
• This position offers a hybrid work schedule
• Salary range is determined by location of the job.  May be considered for a discretionary bonus, Restricted Share Rights, or other long – term incentive awards. 
• This position is not eligible for visa sponsorship 

Pay Range
 

Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to achievements, skills, experience, or work location. The range listed is just one component of the compensation package offered to candidates.

Benefits

Wells Fargo provides eligible employees with a comprehensive set of benefits, many of which are listed below. Visit Benefits - Wells Fargo Jobs for an overview of the following benefit plans and programs offered to employees.

• Health benefits
• 401(k) Plan
• Paid time off
• Disability benefits
• Life insurance, critical illness insurance, and accident insurance
• Parental leave
• Critical caregiving leave
• Discounts and savings
• Commuter benefits
• Tuition reimbursement
• Scholarships for dependent children
• Adoption reimbursement

Posting End Date:

*Job posting may come down early due to volume of applicants.

We Value Equal Opportunity

Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic.

Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit’s risk appetite and all risk and compliance program requirements.

Applicants with Disabilities

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo.

Drug and Alcohol Policy

Wells Fargo maintains a drug free workplace.  Please see our Drug and Alcohol Policy to learn more.

Wells Fargo Recruitment and Hiring Requirements:

a. Third-Party recordings are prohibited unless authorized by Wells Fargo.

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.