About this role:

Wells Fargo is seeking an Information Security Senior Manager for our Application Security Team. Application Security enhances the ability of the development organization to consistently deliver highly functional applications that are secure and resilient against attack. We develop policies, processes, controls, and tools to proactively embed security into Wells Fargo-developed applications.

The role will lead a critical application penetration testing program for the bank. It will oversee teams responsible for securing our applications and reducing the risk of data breach. The leadership role requires strong information security and offensive security foundational knowledge. The ideal candidate for this position will have demonstrated experiences leading a team, influencing, and collaborating with all levels of leadership.

In this role, you will:

• Manage and develop a geographically dispersed team of highly specialized individual contributors as they perform application penetration test assessments against a wide variety of technology systems and critical third parties

• Evolve offensive capabilities in line with threats, cyber threat intelligence and the technology strategy. Maintain an advanced awareness of current and evolving cyber threat tactics and techniques
• Make decisions and resolve issues regarding changes to information security policy, standards, and procedures as needed for systems, applications, and tools

• Set guidelines for compliance and risk management requirements for supported area and work with other stakeholders to implement key risk initiatives
• Oversee resource allocations to ensure commitments align with strategic objectives
• Advise more experienced leadership or executive management on issues with high, critical impact on the company

• Represent the organization to regulators, industry groups and governmental agencies
• Manage, hire, and develop specialized application security penetration testers across platforms.
• Develop and guide a culture of talent development to meet business objectives and strategy
• Maintain relationship with 3rd party vendors and escalate any issues.
• Managing and developing Application penetration testing assessment structure for AI and ML initiatives enterprise wide
• Demonstrate foundational AI literacy by effectively using approved AI tools to support everyday work
• Apply AI tools for activities such as research, summarization, drafting, analysis, and decision support
• Exercise sound judgment when interpreting and using AI generated outputs
• Understand basic AI limitations and appropriate use cases within daily workflows
• Adhere to data privacy, security, and data handling standards when using AI tools
• Use AI ethically and responsibly, in alignment with company policies and guidelines

Required Qualifications, US:

• 7+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 3+ years of management or leadership experience
• 3+ years of Penetration Testing Leadership experience
• 1+ years of application security experience

Desired Qualifications:

• 3 + years of hands-on penetration testing experience
• 2 + years of CI/CD integration experience
• Experience assessing AI and ML systems
• CISSP, CISM, GWAPT, GPEN, GXPN, GMOB, BSCP, or OSCP
• Knowledge and understanding of information security practices and policies, including information security frameworks, standards and best practices

Job Expectations

• Ability to travel up to 10% of the time.

• Ability to work a hybrid schedule – 3 days per week on-site/in office and 2 days per week remote

• This position is not eligible for Visa sponsorship

Locations:

• 1525 W WT Harris Blvd., Charlotte, NC
• 401 Las Colinas Blvd. W, Irving, TX

Posting End Date:

*Job posting may come down early due to volume of applicants.