Principal Engineer - Security Content Services

Important Note: During the application process, ensure your contact information (email and phone number) is up to date and upload your current resume when submitting your application for consideration. To participate in some selection activities you will need to respond to an invitation. The invitation can be sent by both email and text message.  In order to receive text message invitations, your profile must include a mobile phone number designated as “Personal Cell” or “Cellular” in the contact information of your application. 

At Wells Fargo, we are looking for talented people who will put our customers at the center of everything we do. We are seeking candidates who embrace diversity, equity and inclusion in a workplace where everyone feels valued and inspired.

Help us build a better Wells Fargo. It all begins with outstanding talent. It all begins with you.

Technology sets IT strategy; enhances the design, development, and operations of our systems; optimizes the Wells Fargo infrastructure; provides information security; and enables Wells Fargo global customers to have 24 hours a day, 7 days a week banking access through in-branch, online, ATMs, and other channels.

Our mission is to deliver stable, secure, scalable, and innovative services at speeds that delight and satisfy our customers and unleash the skills potential of our employees.

Wells Fargo is seeking a Principal Engineer for our Secure Content Services team to serve as the senior technical authority for cyber security content engineering.  The position is responsible for leading and setting the SIEM strategy, security logging requirements and direction for advanced threat detectionmitigation for the company.  This position will interact directly with SIEM/Logging Platform teams, Threat Detection Services, Security Content Development, Cyber Threat Fusion Center, Cyber Threat Management, and Offensive Security Research Team.  

The ideal candidate will have experience in providing oversight to critical cyber security events and consulting executive leadership with the decisions related to business process, security controls, policies and standards, regulations and investment prioritization.  The ideal candidate will have extensive experience in conducting research and identifying technologies to address capability gaps for emerging cyber threats, attack methods, and evolving Tactics, Techniques, and Procedures (TTPs).  The ideal candidate should have extensive experience in providing oversight and guidance to a team in troubleshooting and resolving the most complex cyber security problems.  The candidate should have experience with data analytic techniques, including machine learning, statistics and data mining to solve core business challenges.  Interaction with internal partners including legal, fraud, financial crimes, technology and line of business leaders and executives will be required. 

Key Duties: 

• Principal Engineer (SME/technical authority) for threat detection, security logging and SIEM platform strategy 
• Implement machine learning and automation across the above areas
• Conduct strategy planning in the above areas for ICS
• Provide guidance and oversight to multiple teams within Cyber Security Data Science
• Engage with executive leadership across the lines of business to ensure technical solutions are in alignment with established priorities
• Create efficiency where it does not exist (via Machine Learning or Automation): Be three steps ahead of the company’s needs, providing solutions that improve efficiency/scalability for years to come
• Force multiplier: Enable team through collaboration and technical solutions

• 10+ years of engineering experience; or 10+ years of experience in a technical management role
• 8+ years of Incident Response Protocols and Tools experience
• 7+ years of experience in information security risk management or information security technology

• A Masters degree or higher in computer science or finance
• Strong verbal, written, and interpersonal communication skills
• Experience working in a large enterprise environment
• Ability to communicate effectively, in both written and verbal formats, with senior executive-level leaders
• Ability to execute in a fast paced, high demand, environment while balancing multiple priorities
• Excellent verbal, written, and interpersonal communication skills
• Knowledge and understanding of banking or financial services industry
• Knowledge and understanding of threat analysis and assessment of potential and current information security risk/threats
• 5+ years of Incident Management System experience
• Experience with Security Information and Event Management (SIEM) products
• 7+ years of information security experience including experience in one or more of the following security disciplines: information security monitoring, incident response, vulnerability management, host/network forensics, cyber-crime investigation, penetration testing, business continuity, or cyber threat intelligence
• Experience articulating issues, risks, and proposed solutions to various levels of staff and management
• Certifications in one or more of the following: Global Information Assurance Certification (GIAC), Offensive Security Certified Professional (OSCP), Offensive Security Wireless Professional (OSWP), Offensive Security Certified Expert (OSCE), Offensive Security Exploitation Expert (OSEE), or Offensive Security Web Expert (OSWE)

• Hands-on experience with information security tools such as an enterprise SIEM solution, IDS/IPS, endpoint security solutions, email/web security gateways, and other security detection/mitigation devices
• Hands-on experience with writing technical security logging requirements and policies
• Experience with host and/or network log analysis as applied to incident response / threat hunting
• Knowledge of offensive security, with the ability to think like an adversary when hunting and responding to incidents
• Strong ability to identify anomalous behavior on endpoint devices and/or network communications
• Strong experience in operating system and application security hardening and best practices
• Strong investigative mindset with an attention to detail
• Experience with multiple operating systems to include Windows, Mac OS, and Unix/Linux 
• Advanced problem solving skills, ability to develop effective long-term solutions to complex problems
• Ability to manage complex security scenarios and develop innovative solutions to address the most recent cyber threats
• Expert knowledge and understanding of information security practices and policies, including Information Security Frameworks, Standards, and best practices 
• Ability to manage highly complex issues and negotiate solutions
   

• Ability to travel up to 10% of the time

CA-SF-South Of Market Area: 45 Fremont Street - San Francisco, CA
IA-West Des Moines: 7001 Westown Pkwy - West Des Moines, IA
MN-Shoreview: 1801 Parkview Dr - Shoreview, MN
AZ-Chandler: 2700 S Price Rd - Chandler, AZ
TX-Irving: 2975 Regent Blvd - Irving, TX
AZ-PHX-Northwest Phoenix: 2222 W Rose Garden Ln - Phoenix, AZ
IL-Chicago: 10 S Wacker Drive - Chicago, IL
NY-New York: 150 E 42nd St - New York, NY
MA-Boston: 125 High Street - Boston, MA
DC-Washington: 1700 K Street NorthWest - Washington, DC
CA-El Monte: 3440 Flair Dr - El Monte, CA
OR-Portland: 1300 Sw 5th Ave - Portland, OR
UT-Salt Lake City: 260 Charles Lindbergh Dr - Salt Lake City, UT
NC-Charlotte: 1525 W Wt Harris Blvd - Charlotte, NC
NC-Charlotte: 401 S Tryon St - Charlotte, NC
GA-Atlanta: 3579 Atlanta Ave - Atlanta, GA
TX-San Antonio: 4101 Wiseman Blvd - San Antonio, TX
NC-Raleigh: 1100 Corporate Center Dr - Raleigh, NC
NC-Winston Salem: 809 W 4 1/2 St - Winston Salem, NC
VA-Glen Allen: 4340 Innslake Dr - Glen Allen, VA
MO-Saint Louis: 1 N Jefferson Ave - Saint Louis, MO

• All offers for employment with Wells Fargo are contingent upon the candidate having successfully completed a criminal background check. Wells Fargo will consider qualified candidates with criminal histories in a manner consistent with the requirements of applicable local, state and Federal law, including Section 19 of the Federal Deposit Insurance Act.
  
  Relevant military experience is considered for veterans and transitioning service men and women.
  Wells Fargo is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation.

Benefits
 

Visit https://www.wellsfargo.com/about/careers/benefits for benefits information.