Skip to Main Content

COVID- 19 Notice: Wells Fargo requires all U.S employees to provide their Covid 19 vaccination status on day one of employment.

Search our jobs

Lead Control Management Officer

Apply now Go to My Saved Jobs
Location: Bengaluru, India Job ID R-152956

About Wells Fargo India
Wells Fargo India enables global talent capabilities for Wells Fargo Bank NA., by supporting business lines and staff functions across Technology, Operations, Risk, Audit, Process Excellence, Automation and Product, Analytics and Modeling. We are operating in Hyderabad, Bengaluru and Chennai locations.

Department Overview

WELLS FARGO TECHNOLOGY

Technology at Wells Fargo is at the heart of what enables us to satisfy our customers’ financial needs and help them succeed financially. The Information Technology (IT) team leads technology for one of the highest market cap financial services institutions in the world, helping 76.6 million customers conduct an average of 95 million transactions each day, helping more end-customers every day – both in the United States and across the globe – than any other division in our company.

The Technology team helps customers directly every time they do business with the company, delivering a true One Wells Fargo experience and ensuring their security, regardless of channel. Technology also helps customers by remaining trusted partners working with all lines of business to develop and deliver value-added products and services. To do this, Technology draws on the talents and motivation of thousands of technology team members across the enterprise. Altogether, the team manages world-wide technology for more than 8,700 stores and 12,500 ATMs – larger than Starbucks and The Gap combined.

About the Role

The Technology Regulatory Adherence function manages end-to-end regulatory changes for Technology. This includes major compliance requirement (ADA, GLBA, HIPAA, etc.) and operational risk authoritative sources (FFIEC, PCI DSS, COBIT, NIST, and international sources). The candidate will need to partner with Independent Risk Management, Compliance, and Legal Partners to review and determine applicability. As source applicability is confirmed, the candidate will be responsible for working with key stakeholder to map authoritative sources to policies, processes, and control for both technology and information security processes to demonstrate regulatory coverage. Additionally, this role will be responsible for supporting technology's migration of all Technology-applicable authoritative sources into a new system of record. This work will be completed in partnership with IRM and Compliance.

This role will require an understanding of Technology-applicable authoritative sources, technology business-owned controls, and technology policy requirements (IT and IS). The team member is responsible for facilitating the review of new/revised regulatory requirements, identifying potential gaps, helping to determine the appropriate course of action to close identified gaps, and monitoring and reporting of gaps through closure. The review, assessment, and gap remediation process requires strong analytical skills, and an ability to build relationships necessary to collaborate across key stakeholder groups to drive decisions.

POSITION RESPONSIBILITIES

This role will execute routines necessary to ensure a strong control environment exists for compliance with technology-applicable authoritative sources. Responsibilities may include:

  • Review of new/revised authoritative sources for applicability to technology processes
  • Execute mapping of new/revised authoritative sources to policies/standards (ITCRs and ISCRs), processes and controls (where appropriate) with key stakeholders
  • Support review and challenge sessions for completed mappings with key stakeholders and obtain appropriate approvals prior to submission to IRM partners.
  • Consolidate responses and submit completed/approved mappings to IRM for load into approved system of record
  • Escalate identified coverage gaps through reporting routines
  • Author status reporting for executive leadership on high impact authoritative sources
  • Execute monthly monitoring, reporting, and metrics for the end to end process
  • Support discussions with key stakeholders as a Subject Matter Expert for applicable regulatory changes
  • Support key initiatives to drive overall policy and regulatory adherence
  • Performance of Data Quality Reviews of all completed authoritative source mapping files prior to storage in Documentum to ensure “audit ready” - and for control testing purposes

Essential Qualifications:

  • 10+ years of experience in compliance, operational risk management (includes audit, legal, credit risk, market risk, or the management of a process or business with accountability for compliance or operational risk), or a combination of both; or 10+ years of IT systems security, business process management or financial services industry experience, of which 6+ years must include direct experience in compliance, operational risk management, or a combination of both.
  • 6+ years of experience authoring and presenting material to an executive audience related to compliance with regulations and/or policies with an ability to prepare management-level reporting
  • Must have broad knowledge of IT processes
  • Strong interpersonal skills with the ability to convey complex information in a clear, concise manner. Ability to produce high-quality reports and documentation
  • Must have demonstrated superior professional relationship building and relationship management skills
  • Detail oriented, with ability to manage time and organize competing priorities
  • Must have demonstrated strong technical writing skills including the proven ability to clearly document activities, processes and test results
  • Must have superior verbal communication skills including the proven ability to negotiate solutions in challenging situations
  • Must have strong time management skills and the demonstrated ability to manage multiple tasks and meet deadlines with minimal supervision

Desired Qualifications

  • Advanced Microsoft Office skills (Specifically Excel, Access, SharePoint, PowerPoint)
  • Strong analytical skills with high attention to detail and accuracy
  • Deep understanding of the data and ability to identify similar concepts in the different data sets
  • Ability to execute with urgency
  • Excellent verbal, written, and interpersonal communication skills
  • Ability to interact with all levels of an organization
  • Experience with Technology Policy development and /or Technology Policy Review process
  • Ability to articulate complex concepts in a clear manner
  • Demonstrated ability to effectively execute in a large, diverse, matrixed organization
  • Demonstrated knowledge of Technology and Security risk framework – COBIT, FFIEC, NIST, ITIL, COSO, BASEL, and OCC Heightened Standards
  • Comprehensive knowledge and understanding of strategic elements of financial, operational, technical and regulatory environments across a complex global services environment
  • Professional certifications such as CPA, CSCP, CRCM, CGEIT, CRISC, CITP, CISA, CISSP desired but not required

We Value Diversity

At Wells Fargo, we believe in diversity, equity and inclusion in the workplace; accordingly, we welcome applications for employment from all qualified candidates, regardless of race, color, gender, national origin, religion, age, sexual orientation, gender identity, gender expression, genetic information, individuals with disabilities, pregnancy, marital status, status as a protected veteran or any other status protected by applicable law.

Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit’s risk appetite and all risk and compliance program requirements.

Candidates applying to job openings posted in US: All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process.

Apply now