Lead Information Security Engineer

About this role:

As a Lead Information Security Engineer, you will spearhead efforts to secure sensitive data with a primary focus on implementing and managing encryption for data at rest and in transit. You will collaborate with vendors to integrate state-of-the-art cryptographic tools and establish self-healing security systems that minimize disruptions and improve resiliency. Additionally, you will design and monitor synthetic transactions to ensure the health and availability of critical systems. This role demands a strong background in encryption, vendor management, automation, and advanced security engineering practices.

In this role, you will:

• Lead and execute complex computer security incident response activities, including post-incident forensics, to identify root causes and recommend mitigation strategies.
• Design, implement, and manage encryption solutions for data at rest and in transit, ensuring compliance with organizational policies and regulatory standards.
• Collaborate with vendors to evaluate, procure, and deploy advanced encryption tools, including self-healing systems that automate recovery and reduce downtime.
• Develop and implement synthetic transaction monitoring to simulate user interactions, ensuring continuous performance and availability of critical applications.
• Provide security consulting on large-scale projects, emphasizing cryptographic protocols, key management practices, and vendor-driven encryption solutions.
• Architect and maintain highly secure solutions across networking, cryptography, cloud environments, authentication, directory services, and endpoint security.
• Monitor and correlate security logs to detect vulnerabilities and ensure encryption solutions remain robust against evolving threats.
• Integrate self-healing technologies into the security architecture, automating responses to incidents and reducing manual intervention.
• Conduct risk assessments to identify vulnerabilities, particularly in encryption and data protection, and recommend actionable remediation strategies.
• Collaborate with internal teams and vendors to align encryption strategies with compliance, performance, and operational requirements.
• Lead a team of security professionals, fostering innovation in self-healing systems, encryption, and synthetic monitoring practices.

Required Qualifications:

• 5+ years of Information Security Engineering experience, demonstrated through work experience, military service, education, or training.
• 5+ years of experience on Thales CipherTrust Manager, CipherTrust Transparent Encryption (CTE) or any other equivalent experience any of the Unstructured/Structured Data at Rest Cryptographic services.
• 5+ years of coding and development experience in Python, Ruby, or Ansible Automation, with expertise in automating encryption and self-healing systems.
• 5+ years of experience in CI/CD processes with tools like Jenkins, Gradle, SonarQube, and Artifactory.
• 3+ years of experience developing applications on Kubernetes/K8 platforms and deploying solutions to Microsoft Azure and Google Cloud Platform.

Desired Qualifications:

• Advanced expertise in encryption technologies, including symmetric and asymmetric cryptography, and implementing data-at-rest encryption solutions.
• Experience in designing and implementing self-healing systems, including automated recovery and fault-tolerant solutions.
• Knowledge of synthetic transaction monitoring tools to ensure the reliability and availability of critical systems.
• Strong vendor management skills, including evaluating, onboarding, and collaborating with vendors for encryption tools and automated recovery solutions.
• Knowledge of Directory Servers, such as Ping Directory or Oracle Unified Directory.
• Proficiency with monitoring and data analysis tools like Splunk and Elasticsearch for encryption-related security event detection and performance tracking.
• Advanced knowledge of Linux and network troubleshooting commands, with a focus on securing encrypted data flows and automated recovery.
• Deep knowledge of information security frameworks, standards, and best practices, including NIST and ISO guidelines for encryption and automated resilience.
• Exceptional ability to communicate complex technical concepts to a wide range of audiences, including executives.

Job Expectations:

• Availability to support production issues during evenings and weekends as needed.
• Onsite presence required, with a hybrid work schedule.

Posting End Date: 

*Job posting may come down early due to volume of applicants.

We Value Equal Opportunity

Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic.

Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit’s risk appetite and all risk and compliance program requirements.

Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process.

Applicants with Disabilities

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo.

Drug and Alcohol Policy

Wells Fargo maintains a drug free workplace.  Please see our Drug and Alcohol Policy to learn more.

Wells Fargo Recruitment and Hiring Requirements:

a. Third-Party recordings are prohibited unless authorized by Wells Fargo.

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.