Wells Fargo - Raleigh, NC
posted 2 months ago
Full-time - Mid Level
Onsite - Raleigh, NC
10,001+ employees
Credit Intermediation and Related Activities
About the position
Wells Fargo is seeking a Lead Information Security Engineer to join the Chief Technology Office, focusing on encryption, tokenization, and key management technologies. This role involves providing technical leadership and contributing to the design, deployment, and operational maintenance of cryptographic products and services, including Hardware Security Modules (HSMs). The ideal candidate will have extensive experience in cryptographic product deployment and automation processes.
Responsibilities
- Drive design, deployment and automation strategies for encryption, tokenization and key management products and services.
- Provide technical guidance and oversight to teams responsible for product delivery and operational maintenance.
- Develop and maintain documentation including design and build guides, deployment strategies, and operational processes.
- Participate in research, analysis, and evaluation of new cryptographic products and services.
- Support company-driven audits and drive product enhancements to remediate findings.
- Conduct technical investigations of incidents to identify causes and recommend mitigation strategies.
- Collaborate with compliance, security architecture, and evaluation teams to ensure product compliance.
- Work with vendors to understand and influence technology roadmaps and enhancements.
- Support incident response, root cause analysis, and corrective action activities.
- Oversee a team of engineers and influence design/architecture decisions regarding encryption infrastructure.
Requirements
- 5+ years of Information Security Engineering experience.
- 4+ years of scripting/automation experience using tools such as Bash, PowerShell, Python, Ansible, VBScript, or JavaScript.
- 4+ years of Linux and Windows server experience.
- 3+ years of experience with encryption or tokenization and key management technologies.
- 3+ years of experience with hardware security modules or security appliance devices.
- 3+ years of advanced knowledge of cryptographic protocols & algorithms.
- 3+ years of experience with Format Preserving Encryption (FPE), tokenization, and Transparent Data Encryption (TDE).
- 3+ years of experience designing solutions for Data at Rest encryption using Thales Vormetric DSM and CipherTrust Manager appliances.
Nice-to-haves
- Experience with DevOps and CI/CD automated build and deployment processes.
- Advanced scripting skills for log rotation, data collection, and alerting.
- Experience designing synthetic transactions for application monitoring.
- Experience with Puppet/Chef/Ansible or similar automation tools.
- Experience with Agile Scrum or Kanban methodologies.
- Public cloud engineering or support experience.
- Application development experience in Linux and Windows environments.
- Experience performing technical product assessments in a large enterprise.
- Experience mentoring less experienced staff.
- Strong analytical skills with attention to detail.
- Advanced critical thinking and problem-solving abilities.
Benefits
- Caregiver leave
- Commuter assistance
- Dependent care reimbursement
- Disability insurance
- Health insurance
- Life insurance
- Paid time off
- 401(k) Plan
- Critical illness insurance
- Accident insurance
- Parental leave
- Critical caregiving leave
- Tuition reimbursement
- Scholarships for dependent children
- Adoption reimbursement
