Senior Information Security Engineer

About this role:

Wells Fargo is seeking a Senior Information Security Engineer

In this role, you will:

• Lead or participate in computer security incident response activities for moderately complex events
• Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies
• Provide security consulting on medium projects for internal clients to ensure conformity with corporate information, security policy, and standards
• Design, document, test, maintain, and provide issue resolution recommendations for moderately complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security
• Review and correlate security logs
• Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity
• Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives
• Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals

Required Qualifications:

• 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education

Desired Qualifications:

• 3+ years of experience working in the network security products.
• 3+ years of recent experience in implementing and supporting Micro-Segmentation tools (GuardiCore, and Illumio).
• Working experience in managing Illumio infrastructure VENs and PCEs.
• 2+ years of Intermediate to Advanced level experience with scripting/automation using tools such as: Ansible Playbook, Terraform, Flask, Flask RESTX, PowerShell, Python, etc.
• 2+ years advanced understanding of Network concepts like DNS, Firewall and Load Balancing.
• Proven experience with change and incident management practices in medium to large enterprise environments.
• Experience with VMware and VMware NSX-T in network virtualization and security configuration.
• Basic understanding of TLS, Certificates, and MTLS.
• Experience with Agile Scrum or Kanban methodologies.
• Excellent verbal, written, and interpersonal communication skills.
• Advanced Information Security technical skills and solid knowledge and understanding of information security practices and policies.
• ServiceNow, Jira and Confluence experience.
• Technical documentation experience.
• Strategic planning experience in translating leadership vision into executable strategies and initiatives.
• Technology experience in the Financial Services sector.
• Ability to coordinate completion of multiple tasks and meet aggressive time frames.
• Advanced critical thinking, problem solving and technical troubleshooting abilities.
• Strong analytical skills with high attention to detail and accuracy.
• Experience with and the ability to thrive in a complex and fast-paced technology and/or information security organization, within a large enterprise environment.
• Experience with Information Security Frameworks and standards (FFIEC, NIST, ISO).
• Ability to work off hours and occasional weekends to support change activities.
• Managed service delivery certifications like ITIL, Six Sigma will be beneficial.

Job Expectations:

• Provide endpoint and virtualization-based segmentation automation development and infrastructure engineering of two products (Illumio and Guardicore).
• Support segmentation of VDI transformation, pivotal cloud foundry, containers, and existing IaaS compute using Illumio and Guardicore, Ansible, and custom developed Python APIs.
• Support roadmaps to develop and integrate endpoint segmentation into an end-to-end automated process at provisioning time of infrastructure using Illumio and Ansible.
• Support the future development of the Enablement Platform to support overall compute-based segmentation and provide a single pane of glass for reporting, auditing, and operational support needs.
• Knowledge in maintaining, configuration, upgrades of Virtual Enforcement Node (VEN) Illumio Vens (server-side agent) as per design.
• Troubleshoot, identify and resolve Illumio/Guardicore issues and providing detailed Root cause analysis regarding the problem.
• Enhancing policies to further reduce attack vectors.
• Migrate Application servers to Selective Enforcement, confirm app functionality post migrations.
• Good knowledge of the TCP, HTTP, SSL protocol and ports, as well as packet-level protocol analysis capabilities.
• Improve security, stability, scalability, speed, and customer satisfaction of the virtualization technology platforms.
• Work on cross-technology platform initiatives.
• Strong knowledge and experience in the areas of IP routing, and advanced network automation techniques and solutions.
• Strong knowledge in the development of secure Network architectures and standards.
• Strong experience with the application of advanced network-based technical security controls in large enterprise network environments.
• Knowledge of DNS, DHCP, and Unix-based network appliances.
• Experience with large-scale enterprise security solutions spanning multiple business functions and geographic locations.
• Ability to work periodic after-hours work including participation in an on-call rotation.
• Demonstrated enterprise experience in change management process.
• Strong working knowledge of providing/understanding network security documentation.
• Maintain an awareness of bank security policies and government regulations pertaining to information security.
• Create and deliver information security presentations and reports to internal support teams, LOB s and leadership.
• Develop and maintain operational documentation and procedures.
• Participates in the research, analysis, design, testing and implementation of complex computer network security/protection technologies for company information and network systems/applications.
• Participates in computer security incident response activities and the technical investigations of security-related incidents.
• Participates in the evaluation of vendor proposals, new network segmentation technologies, new and existing security designs, and emerging security technologies and systems.
• Document monthly initiative updates to keep management abreast of progress.
• Follow Agile/DevOps processes for day-to-day activities.
• Hands-on experience on Splunk and SIEM tools.
• Collaborate and influence all levels of professionals including managers.
• Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives.
• Responsible for staging/configuration of network security products and implementations by following strict change management guidelines.
• Assist other security engineers at analysis or implementation work as needed.
• Periodic assignment to the team on-call rotation.

About this role:

Network Security team is looking for a Senior Information Security Engineer at Hyderabad/Bengaluru location to provide cyber risk and threat identification by proactively and continuously monitoring the internal and external landscape for events, risks, threats, malicious code, vulnerabilities, and attacks related to the Financial Services industry or Wells Fargo Specifically.  Candidate should be highly motivated, under Micro-Segmentation provides proactive and reactive monitoring, assessment and communication of the internal and external landscape for relevant cyber events, risks and threats related to malicious code, vulnerabilities and attacks.

The Senior Information Security Engineer will research and communicate information to the appropriate partners internal and external to Wells Fargo.  The Senior Information Security Engineer will provide actionable intelligence by enriching cyber threat intelligence from our partners, vendors, and open sources to protect external facing and internal based computing assets, data, customers and brand reputation. The Senior Information Security Engineer will gain insight into new and emerging threats by proactively researching and understanding threat actor behaviors and motives.

Job Description:

Required Qualifications:

Desired Qualifications:

Posting End Date: 

*Job posting may come down early due to volume of applicants.

Applicants with Disabilities

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo.

Drug and Alcohol Policy

Wells Fargo maintains a drug free workplace.  Please see our Drug and Alcohol Policy to learn more.

Wells Fargo Recruitment and Hiring Requirements:

a. Third-Party recordings are prohibited unless authorized by Wells Fargo.

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.