Young, Black, and Gifted Journalists
Home Invites Chat
Home > Career Center > Job Seekers > Job Search
Job Title: Lead Cyber Security Research Consultant
Company Name: WELLS FARGO BANK
Location: San Antonio, TX
Position Type: Full Time
Post Date: 05/21/2022
Expire Date: 08/03/2022
Job Categories: Computers, Software, Engineering, Finance/Economics, Information Technology, Internet/E-Commerce, Law Enforcement, and Security, Military, Executive Management, Quality Control, Research & Development, Web Technology, Energy / Utilities
Job Description
Lead Cyber Security Research Consultant

About this role:

Wells Fargo is seeking a Lead Cyber Security Research Consultant. Information Cyber Security's (ICS) vision is to provide Wells Fargo world leading cyber security risk management. Through a framework that addresses policy, process, operations, people, and technology, ICS protects Wells Fargo's infrastructure, corporate data, and customer assets, and ensures alignment with applicable regulations and laws.  ICS is part of Wells Fargo's Technology organization and is led by the Chief Information Security Officer.

The Enterprise Information Security team is looking for a strong cyber security professional to join the Offensive Security Research Team (Red Team). This role will assess cloud based deployments for security gaps in configuration and implementation. Candidates should have a deep understanding of how data is stored, accessed, and managed in the cloud. This position is a senior role responsible for leading and executing security assessments from end to end. Opportunities will exist for contributing and collaborating on assessments of mission critical cloud deployments for enabling the day to day activities of a large enterprise at scale. The outputs of this role will directly impact the security posture of the enterprise cloud transition. This position reports to the Offensive Security Research Team and works closely with our defense partners in a purple team capacity.

Responsibilities:
• Assess security posture of cloud based deployments
• Clear and concise documentation of findings with ability to effectively communicate risks to business partners
• Research innovative ways to identify control gaps at scale
• Ability to emulate tactics, techniques and procedures utilized by real world threat actors
• Collaborate with other teams to identify problems and gaps that require new and unique solutions
• Ability to lead and mentor junior testers
• Share the knowledge you learn with other team members and partners
• Be an evangelist for the Offensive Security Research Team


In this role, you will:

  • Lead initiatives including the research, analysis, design, testing and implementation of the most complex computer network security and protection technologies for company information and network systems and applications

  • Act as professional ethical penetration tester utilizing hacking tools to modify or create proof of concept exploits that mimic techniques of the most sophisticated attackers

  • Review and analyze complex advanced computer security incident response activities and technical investigations of information security related incidents

  • Identify vulnerabilities and associate those to a severity rating by deriving impact and ease of exploit

  • Conduct security risk assessments to ensure compliance with corporate information security policies and adherence to best practices

  • Communicate to the line of business on the inherent risks, providing meaningful mitigation strategies

  • Provide leadership to principal engineers and supports special projects

  • Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals


Required Qualifications, US:

  • 5+ years of information security experience in converged testing (red teaming) demonstrated through work or military experience

  • 1+ year of experience in network, social, and physical domains demonstrated through work or military experience 

  • 3+ years of experience in one or a combination of the following: creating proof of concepts, creating exploits, or reverse engineering demonstrated through work or military experience 


Desired Qualifications:

  • 5+ years of Cyber Security Research experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  • 1+ years of cloud computing experience

  • 1+ years of experience with scripting languages such as Bash, PowerShell, Python, Shell, VBScript, or JavaScript 

  • Knowledge or experience of containerization related management stacks with Docker, Swarm or Kubernetes 

  • Experience with RESTful API calls

  • Experience working with cloud security management or governance tools

  • Experience working with cloud access security brokers 

  • Certifications in one or more of the following: Global Information Assurance Certification (GIAC/SANS), Offensive Security Certified Professional (OSCP), Offensive Security Wireless Professional (OSWP), Offensive Security Certified Expert (OSCE), Offensive Security Exploitation Expert (OSEE), or Offensive Security Web Expert (OSWE), Cloud Provider Certifications (AWS, GCP, Azure).


Job Expectations:

  • Ability to travel up to 15% of the time

Pay Range

$111,100.00 - $197,500.00 Annual

We Value Diversity

At Wells Fargo, we believe in diversity, equity and inclusion in the workplace; accordingly, we welcome applications for employment from all qualified candidates, regardless of race, color, gender, national origin, religion, age, sexual orientation, gender identity, gender expression, genetic information, individuals with disabilities, pregnancy, marital status, status as a protected veteran or any other status protected by applicable law.

Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements.

Candidates applying to job openings posted in US: All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Share |
Contact Information
Company Name: WELLS FARGO BANK
Website:https://ad.doubleclick.net/ddm/clk/418092397;252059082;l?https://www.wellsfargojobs.com/job/-/-/1251/30574118352?utm_source=hbcuconnect.com&utm_campaign=enterprise_media&utm_medium=niche_site&utm_content=job_posting&ss=paid
Apply Now | Forward Job to a Friend | More Jobs From This Employer

(Advertise Here)
Latest Member Activity
edc creations just posted a blog entitled 'sneak peek: passing love by jacqueline e. luckett '. 05:47AM
edc creations just posted a blog entitled 'prologue: drunk for 27 years by cynthia banks'. 05:20PM
edc creations just posted a blog entitled 'meet historical fiction author dwight fryer '. 05:18PM
edc creations just posted a blog entitled 'meet author loretta "faith" harris, m.ed.'. 04:42PM
edc creations just posted a blog entitled 'in the land of cotton by martha a. taylor '. 07:33PM
edc creations just posted a blog entitled 'how i made the angels cry by meleisa betts'. 11:31AM
edc creations just posted a blog entitled 'largo md capital bookfest october 3, 2009'. 09:38AM
edc creations just posted a blog entitled 'capital bookfest october 3, 2009'. 09:33AM
edc creations just posted a blog entitled 'join author monique d. mensah on a virtual tourů'. 10:42PM
edc creations just edited her profile. 08:50PM
>> more | invite friends