Job Description

About Wells Fargo I&P

enables global talent capabilities for Wells Fargo Bank NA., by supporting business lines and staff functions across Technology, Operations, Risk, Audit, Process Excellence, Automation and Product, Analytics and Modeling. We are operating in Hyderabad, Bengaluru and Chennai locations.

Department Overview:

Wells Fargo views information security as enabling lines of business to mitigate information security risk in accordance with our risk appetite. Through a framework that addresses policy, process, operations, people, and technology, ICS protects our infrastructure, company data, and customer assets while ensuring alignment with applicable regulations and laws. Our vision is to provide Wells Fargo with world-leading Cyber security risk management.

About the Role

Wells Fargo is seeking a Senior Information Security Analyst in the area of Information and Cyber Security for the Technology Third Party Governance function. The role activities includes Identifying, Analyzing and responding to Incidents related to third party service providers.

Key Responsibilities

• Lead the continued evolution of Third-Party Incident management and rapid response capabilities and processes.
• Record, monitor, report, escalate and track remediation of Incidents and drive them towards closure.
• Work with cross-functional teams in managing Incidents to ensure that IT systems are operating as designed and that they contain adequate controls.
• Responsible for attending and leading calls with Cyber security teams and other key stakeholders to assess the incident.
• Responsible for participating in requirements gathering, UAT for any new tools/Applications used by the team
• Advises IT and business executives on the status of Cyber Security Incidents and compliance issues based on assessment results and information from various discovery sources, monitoring, and control systems.
• Manage the remediation of gaps through oversight, follow-up and escalation and validate the remediation performed to ensure the gaps are closed.
• Provide subject matter expertise in the Third-Party Incidents Management program and provide timely solutions to identified problems
• Develop Operational metrics reports on a weekly/monthly frequency.
• Evaluate the existing process and generate ideas to enhance effectiveness and efficiency of the process
• Analyze the data related to incident findings and present meaningful views to relevant stakeholders on the trends and patterns of control gaps.

Required Qualifications

• 8+ years of experience working in Information Security
• 4+ Years of experience in Incident management/Third Party Risk Management
• Bachelor or Masters degree in IT (Computer Science)/ Engineering or respective knowledge through experience.
• Extensive experience within an enterprise scale organization including hands on experience in Information Security Risk analysis
• Experience in communicating technical issues to diverse audience.
• Good Knowledge and demonstrated experience in analysis and dissection of advanced attacker tactics, techniques, and procedures.
• Industry recognized Certifications in Cybersecurity like COMPTIA+, CISSP or other specialized security certifications would be added advantage.
• Demonstrate broad security knowledge across common industry security policy bodies. These may include ISO, NIST, COSO, COBIT, PCI, FFIEC, SOX, SSAE16, and others
• Excellent writing and verbal communication skills, interpersonal and presentation skills, and the proven ability to influence and communicate effectively.

Desired Qualifications

• Demonstrated experience in stakeholder management
• Demonstrated experience of conflict resolution, negotiation and problem identification and solving skills.
• Demonstrated experience in managing complex projects related to information security.

We Value Diversity

At Wells Fargo, we believe in diversity, equity and inclusion in the workplace; accordingly, we welcome applications for employment from all qualified candidates, regardless of race, color, gender, national origin, religion, age, sexual orientation, gender identity, gender expression, genetic information, individuals with disabilities, pregnancy, marital status, status as a protected veteran or any other status protected by applicable law.

Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements.

Candidates applying to job openings posted in US: All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process.