Application Penetration Testing Senior Manager

About this role:

Wells Fargo is seeking an Information Security Senior Manager for our Application Security Team. Application Security enhances the ability of the development organization to consistently deliver highly functional applications that are secure and resilient against attack. We develop policies, processes, controls, and tools to proactively embed security into Wells Fargo-developed applications.

The role will lead a critical application penetration testing program for the bank. It will oversee teams responsible for securing our applications and reducing the risk of data breach. The leadership role requires strong information security and offensive security foundational knowledge. The ideal candidate for this position will have demonstrated experiences leading a team, influencing, and collaborating with all levels of leadership.

In this role, you will:

• Manage and develop a geographically dispersed team of highly specialized individual contributors as they perform application penetration test assessments against a wide variety of technology systems and critical third parties

• Evolve offensive capabilities in line with threats, cyber threat intelligence and the technology strategy. Maintain an advanced awareness of current and evolving cyber threat tactics and techniques
• Make decisions and resolve issues regarding changes to information security policy, standards, and procedures as needed for systems, applications, and tools

• Set guidelines for compliance and risk management requirements for supported area and work with other stakeholders to implement key risk initiatives
• Oversee resource allocations to ensure commitments align with strategic objectives
• Advise more experienced leadership or executive management on issues with high, critical impact on the company

• Represent the organization to regulators, industry groups and governmental agencies
• Manage, hire, and develop specialized application security penetration testers across platforms.
• Develop and guide a culture of talent development to meet business objectives and strategy
• Maintain relationship with 3rd party vendors and escalate any issues.
• Managing and developing Application penetration testing assessment structure for AI and ML initiatives enterprise wide
• Demonstrate foundational AI literacy by effectively using approved AI tools to support everyday work
• Apply AI tools for activities such as research, summarization, drafting, analysis, and decision support
• Exercise sound judgment when interpreting and using AI generated outputs
• Understand basic AI limitations and appropriate use cases within daily workflows
• Adhere to data privacy, security, and data handling standards when using AI tools
• Use AI ethically and responsibly, in alignment with company policies and guidelines

Required Qualifications, US:

• 7+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 3+ years of management or leadership experience
• 3+ years of Penetration Testing Leadership experience
• 1+ years of application security experience

Desired Qualifications:

• 3 + years of hands-on penetration testing experience
• 2 + years of CI/CD integration experience
• Experience assessing AI and ML systems
• CISSP, CISM, GWAPT, GPEN, GXPN, GMOB, BSCP, or OSCP
• Knowledge and understanding of information security practices and policies, including information security frameworks, standards and best practices

Job Expectations

• Ability to travel up to 10% of the time.

• Ability to work a hybrid schedule – 3 days per week on-site/in office and 2 days per week remote

• This position is not eligible for Visa sponsorship

Locations:

• 1525 W WT Harris Blvd., Charlotte, NC
• 401 Las Colinas Blvd. W, Irving, TX

Posting End Date: 

*Job posting may come down early due to volume of applicants.

We Value Equal Opportunity

Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic.

Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit’s risk appetite and all risk and compliance program requirements.

Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process.

Applicants with Disabilities

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo.

Drug and Alcohol Policy

Wells Fargo maintains a drug free workplace.  Please see our Drug and Alcohol Policy to learn more.

Wells Fargo Recruitment and Hiring Requirements:

a. Third-Party recordings are prohibited unless authorized by Wells Fargo.

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.