Information Security Associate Manager Enterprise Data Loss Prevention

Wells Fargo•Chandler, AZ

22h•Hybrid

About The Position

Wells Fargo is seeking an Information Security Associate Manager to serve as a key leader within the Enterprise Data Loss Prevention (EDLP) organization. EDLP is a critical component of Wells Fargo’s broader information security program, responsible for protecting sensitive business information across its lifecycle—data in motion, data in use, and data at rest. The team monitors, detects, and responds to EDLP policy violations by generating alerts and conditionally blocking data transfers when necessary. EDLP also oversees and manages enterprise‑wide filtering policies that allow, block, or isolate specific internet resources, as well as governance processes for temporary or exception‑based access to websites or online services. The Associate Manager will support EDLP leadership, drive operational excellence, and ensure ongoing effectiveness of data protection controls and governance processes. Additionally, you will: Establish execution of programs including risk management, vulnerability management, secure software development, and vendor management Maintain an awareness of the threat landscape companywide and provide security consultation in support of strategic planning and business development Lead implementation of complex projects and initiatives impacting one or more lines of business Develop and lead operational support for the information security programs including identity and access management, incident response and investigations, and disaster recovery and business continuity Make decisions that move significant opportunity to create advances in information security and efficiency and potential risk companywide Ensure compliance and risk management requirements for supported area are met and work with other stakeholders to implement key risk initiatives Manage a technical operations team Collaborate and consult with peers, colleagues, and managers Lead team to achieve objectives Interact with board, operating committee, management committee, executive management, and the Operational Risk Committee Manage allocation of people and financial resources for Information Security Analysis Mentor and guide talent development of direct reports and assist in hiring talent

Requirements

2+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
1+ years of Leadership experience

Nice To Haves

Previous experience with enterprise DLP platforms or endpoint/network security technologies.
Experience in highly regulated industries (e.g., financial services).
Familiarity with information security frameworks such as NIST, ISO 27001, or COBIT.
Ability to manage multiple priorities in a fast-paced environment.
Demonstrated leadership or people direct reporting management experience.
Strong understanding of data protection concepts and DLP technologies.
Ability to analyze complex data sets and communicate insights to leadership.
Strong written and verbal communication skills.

Responsibilities

Lead, develop, and manage a team of information security professionals within EDLP.
Oversee hiring, onboarding, coaching, and performance management to maintain a high-performing organization.
Foster a culture of risk awareness, collaboration, and continuous improvement.
Manage and maintain EDLP controls, procedures, and related documentation.
Ensure alignment with enterprise security policies, industry standards, and regulatory requirements.
Oversee governance routines, including control performance reviews, audit engagements, and evidence submission.
Develop, implement, and monitor key risk indicators (KRIs), key performance indicators (KPIs), and related metrics for EDLP functions.
Produce executive-level management reporting to communicate operational health, risk posture, and program maturity.
Analyze data trends and EDLP event patterns to identify opportunities for improved policies or operational enhancements.
Support ongoing maintenance and optimization of EDLP rulesets, detection logic, and filtering policies.
Participate in evaluating, approving, and governing temporary access requests or exceptions for internet resources.
Collaborate with partner teams—including Cybersecurity Defense, Technology, and Business Controls—to ensure effective end-to-end policy enforcement and issue resolution.
Serve as a subject matter expert for data-loss prevention activities in enterprise initiatives.
Provide guidance and support for compliance assessments, audits, and regulatory exams.
Represent EDLP in enterprise information security governance forums.