Senior Application Security Engineer

About this role:

Wells Fargo is seeking a Senior Application Security Engineer to join the Application Security team. This role is responsible for developing, managing, and delivering secure code requirements and designs for application teams to follow as they develop secure code for Wells Fargo.  The Senior Application Security Engineer will analyze and recommend improvements for vulnerability remediation for impacted applications.  Additionally will work with application development and software engineering teams to build consensus in resolution of issues and optimize performance.
  
In this role, you will:
•    Develop and maintain secure coding standards and guidance
•    Lead vulnerability remediation prioritization efforts 
•    Optimize methods for delivering security-by-design to reduce risk, while improving code delivery velocity.
•    Provide security consulting on medium projects for internal clients to ensure conformity with corporate information, security policy, and standards 
•    Support control design and execution
•    Identify security vulnerabilities and issues and evaluate remediation alternatives
•    Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals

Required Qualifications:
•    4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
•    4+ years of experience with cybersecurity frameworks such as NIST Secure Software Development Framework (SSDF) or OWASP Application Security Verification Standards (ASVS)
•    4+ years of Application Security experience

Desired Qualifications:

• Experience with SD Elements
• Experience with vulnerability management / vulnerability operations, specifically in Static Application Security Testing (SAST) , Dynamic Application Security Testing (DAST), Software Composition Analysis (SCA) and Penetration Testing
• Experience with DevSecOps
• Experience with Azure Cloud and Google Cloud platforms
• Experience with Artificial Intelligence applications
• Experience executing controls and responding to tests or audits of controls
• Coding/Scripting experience with Python, Excel VBA, PowerShell, Javascript,
• Experience with Tableau or PowerBI dashboards
• Excellent data engineering skills, ETL, statistical analysis, business intelligence / reporting skills
• Cybersecurity Certifications: CISSP, CompTIA Security+, CISM, GIAC, SDDLP, GSEC, or CCSP 

Job Expectations:
•    Ability to work in a hybrid model. Expected to be in office three days a week.
•    100% remote work option is not available
•    This position is not eligible for Visa sponsorship
•    No travel is expected in this position

Locations:

• Charlotte, NC
• Westlake, TX
• Chandler, AZ
• Minneapolis, MN

Pay Range
 

Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to achievements, skills, experience, or work location. The range listed is just one component of the compensation package offered to candidates.

Benefits

Wells Fargo provides eligible employees with a comprehensive set of benefits, many of which are listed below. Visit Benefits - Wells Fargo Jobs for an overview of the following benefit plans and programs offered to employees.

• Health benefits
• 401(k) Plan
• Paid time off
• Disability benefits
• Life insurance, critical illness insurance, and accident insurance
• Parental leave
• Critical caregiving leave
• Discounts and savings
• Commuter benefits
• Tuition reimbursement
• Scholarships for dependent children
• Adoption reimbursement

Posting End Date:

*Job posting may come down early due to volume of applicants.

We Value Equal Opportunity

Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic.

Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit’s risk appetite and all risk and compliance program requirements.

Applicants with Disabilities

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo.

Drug and Alcohol Policy

Wells Fargo maintains a drug free workplace.  Please see our Drug and Alcohol Policy to learn more.

Wells Fargo Recruitment and Hiring Requirements:

a. Third-Party recordings are prohibited unless authorized by Wells Fargo.

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.