Plano, Texas

About this role:

Wells Fargo is seeking a Lead Cyber Security Research Consultant. Information Cyber Security's (ICS) vision is to provide Wells Fargo world leading cyber security risk management. Through a framework that addresses policy, process, operations, people, and technology, ICS protects Wells Fargo's infrastructure, corporate data, and customer assets, and ensures alignment with applicable regulations and laws.  ICS is part of Wells Fargo's Technology organization and is led by the Chief Information Security Officer.

The Enterprise Information Security team is looking for a strong cyber security professional to join the Offensive Security Research Team (Red Team). This role will assess cloud based deployments for security gaps in configuration and implementation. Candidates should have a deep understanding of how data is stored, accessed, and managed in the cloud. This position is a senior role responsible for leading and executing security assessments from end to end. Opportunities will exist for contributing and collaborating on assessments of mission critical cloud deployments for enabling the day to day activities of a large enterprise at scale. The outputs of this role will directly impact the security posture of the enterprise cloud transition. This position reports to the Offensive Security Research Team and works closely with our defense partners in a purple team capacity.

Responsibilities:
• Assess security posture of cloud based deployments
• Clear and concise documentation of findings with ability to effectively communicate risks to business partners
• Research innovative ways to identify control gaps at scale
• Ability to emulate tactics, techniques and procedures utilized by real world threat actors
• Collaborate with other teams to identify problems and gaps that require new and unique solutions
• Ability to lead and mentor junior testers
• Share the knowledge you learn with other team members and partners
• Be an evangelist for the Offensive Security Research Team


In this role, you will:

  • Lead initiatives including the research, analysis, design, testing and implementation of the most complex computer network security and protection technologies for company information and network systems and applications

  • Act as professional ethical penetration tester utilizing hacking tools to modify or create proof of concept exploits that mimic techniques of the most sophisticated attackers

  • Review and analyze complex advanced computer security incident response activities and technical investigations of information security related incidents

  • Identify vulnerabilities and associate those to a severity rating by deriving impact and ease of exploit

  • Conduct security risk assessments to ensure compliance with corporate information security policies and adherence to best practices

  • Communicate to the line of business on the inherent risks, providing meaningful mitigation strategies

  • Provide leadership to principal engineers and supports special projects

  • Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals


Required Qualifications, US:

  • 5+ years of information security experience in converged testing (red teaming) demonstrated through work or military experience

  • 1+ year of experience in network, social, and physical domains demonstrated through work or military experience 

  • 3+ years of experience in one or a combination of the following: creating proof of concepts, creating exploits, or reverse engineering demonstrated through work or military experience 


Desired Qualifications:

  • 5+ years of Cyber Security Research experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  • 1+ years of cloud computing experience

  • 1+ years of experience with scripting languages such as Bash, PowerShell, Python, Shell, VBScript, or JavaScript 

  • Knowledge or experience of containerization related management stacks with Docker, Swarm or Kubernetes 

  • Experience with RESTful API calls

  • Experience working with cloud security management or governance tools

  • Experience working with cloud access security brokers 

  • Certifications in one or more of the following: Global Information Assurance Certification (GIAC/SANS), Offensive Security Certified Professional (OSCP), Offensive Security Wireless Professional (OSWP), Offensive Security Certified Expert (OSCE), Offensive Security Exploitation Expert (OSEE), or Offensive Security Web Expert (OSWE), Cloud Provider Certifications (AWS, GCP, Azure).


Job Expectations:

  • Ability to travel up to 15% of the time

Pay Range

$111,100.00 - $197,500.00 Annual

Benefits

  • Information about Wells Fargo's employee benefits

We Value Diversity

At Wells Fargo, we believe in diversity, equity and inclusion in the workplace; accordingly, we welcome applications for employment from all qualified candidates, regardless of race, color, gender, national origin, religion, age, sexual orientation, gender identity, gender expression, genetic information, individuals with disabilities, pregnancy, marital status, status as a protected veteran or any other status protected by applicable law.

Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements.

Candidates applying to job openings posted in US: All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Plano, Texas

At Wells Fargo, we’ve been proudly supporting military veterans and their families for more than 170 years.

We value the leadership, discipline, and skills you’ve gained through your service to our country and recognize the contributions our veteran team members bring to the table. We’re committed to hiring and retaining military veterans, veterans with disabilities, National Guard, Reservists, and Military Spouses.

As a Wells Fargo employee, you’ll find a work culture that is team-oriented, collaborative, structured, and challenging. We support veterans transitioning from military service with a variety of job options, confidential resources, educational information, and career guidance. You may choose to join our Veteran’s Connection Employee Resource Group, a group of thousands who share an interest in veterans’ matters, and that promotes greater awareness and job development within the veteran community. To learn more about opportunities at our company, please visit wellsfargojobs.com/military. Let’s talk about turning your military experience into a great civilian career.

Similar jobs