Job Description

About Wells Fargo India enables global talent capabilities for Wells Fargo Bank NA., by supporting business lines and staff functions across Technology, Operations, Risk, Audit, Process Excellence, Automation and Product, Analytics an

About Wells Fargo India enables global talent capabilities for Wells Fargo Bank NA., by supporting business lines and staff functions across Technology, Operations, Risk, Audit, Process Excellence, Automation and Product, Analytics and Modeling. We are operating in Hyderabad, Bengaluru and Chennai locations. Department Overview : Information and Cyber Security (ICS) is part of Wells Fargo\'s Technology organization. Through a framework that addresses policy, process, operations, people, and technology, IS protects our infrastructure, company data, and customer assets while ensuring alignment with applicable regulations and laws. About the Role: Our Information and Cyber Security team is looking for Senior Information Security Analyst to join our Data Loss Prevention Team. This role will support DLP Program within the bank to support DLP monitoring and DLP policy management across different environments and provide consultation on improvisation of the program through identification of gaps and recommend policy tuning. This role will also include monitor, analyze, review, reporting and readiness of DLP key controls, will also closely work with the team on development, analysis, and review of leadership reports. Responsibilities: Identifies security risks to the organization and ensures that appropriate data security procedures and products are implemented. Maintains an awareness of bank security policies and government regulations pertaining to information security. Analyze event/alert patterns to properly interpret and prioritize threats with available DLP tools and other devices Identify trends and derive requirements aimed at improving and enhancing existing data loss prevention and detection policies Provide support to projects that enhance reporting, workflow, change or problem management Ability to create quality metrics to accurately display the true posture of the environment Investigates and recommends appropriate corrective actions for data security incidents. Ability to integrate industry standard frameworks on cyber security platform services catering to Infrastructure security (e.g. NIST), security architecture configuration into the organization\'s processes Present/Document key findings, progress and hurdles to leadership on regular basis Influence stakeholders to prioritize and execute risk management initiatives and drive remediation of process and technology gaps. Communicating security issues to a wide variety of internal key stakeholders to include technical teams, executives, risk groups Foster and maintain relationships with key stakeholders and business partners both regionally and globally Essential Qualifications A Bachelor\'s Degree in Information Systems, Computer Science, Engineering and/or other related discipline or equivalent experience 6+ years of progressive experience in implementation of Data Loss Prevention solution 3+ years\' experience in Data Loss Prevention in policy creation, tuning and testing 1+ years\' experience in any one of SIEM tools (e.g. QRadar, ArcSight, LogRhythm, SPLUNK) Experience in Creating new DLP/Cloud Policies as per use case. Strong experience in policy management like fine tuning of policies and false positives and creating new policies based on requirements and business demands. Review and analyze DLP alerts on daily basis and notify the business as per the defined DLP Incident management process. Experience working with cloud security and cloud access security broker (CASB). Experience working on Microsoft Compliance Center and Symantec CloudSoc. Proven experience in internal audits, evidence preparation and gathering Knowledge and understanding of cloud computing and Office 365 Ability to prioritize work, meet deadlines, achieve goals, and work under pressure in a dynamic and complex environment Knowledge on industry cybersecurity standard frameworks (e.g. NIST) Ability to present reports to and interact with senior leaders Strong hands-on skill with MS Excel, Power point Excellent communication and documentation skills with good attention to detail Desired Qualifications Industry recognized certifications like CISM, CISSP, ITIL or any other Security related certifications Knowledge of Security Configuration for various platforms/servers Good understanding of networking concepts like ICMP, DNS, TCP/IP, DHCP, traceroute. Good understanding of threat, vulnerabilities, attacks and countermeasures Understanding of OWASP and Vulnerability management We Value Diversity At Wells Fargo, we believe in diversity, equity and inclusion in the workplace accordingly, we welcome applications for employment from all qualified candidates, regardless of race, color, gender, national origin, religion, age, sexual orientation, gender identity, gender expression, genetic information, individuals with disabilities, pregnancy, marital status, status as a protected veteran or any other status protected by applicable law. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit\'s risk appetite and all risk and compliance program requirements. Candidates applying to job openings posted in US:All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process.

Monster