Lead information Security Engineer
About The Position
Wells Fargo is seeking a Lead Information Security Engineer in Technology as part of Cybersecurity. Engineers in the CTFC are responsible for handling escalations from Tier 1 analysts and assisting with escalations to Tier 3. Acting as subject matter expert on tools, represent Tier 2 on the Shift Turnover Meeting and provide QA feedback to analysts and engineers. Represent CTFC in Enterprise Security Council meetings and collaborate in creating and updating Incident Response documentation. Engineers will begin their day with proactive monitoring in the event there are no escalations or other responsibilities awaiting completion and assist management in gathering metric reporting.
Requirements
- 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
- 3+ years of Incident Response Protocols and Tools experience
- Detection engineering experience
Nice To Haves
- Experience with Security Information and Event Management (SIEM) products
- Knowledge and understanding of security analytics including: incident response and a digital forensics discipline
- Knowledge and understanding of data security controls including malware protection, firewalls, intrusion detection systems, content filtering, Internet proxies, encryption controls, and log management solutions
- Knowledge and understanding of banking or financial services industry
- Experience with host and/or network log analysis as applied to incident response / threat hunting
- Knowledge of offensive security, with the ability to think like an adversary when hunting and responding to incidents
- Certifications in one or more of the following: Global Information Assurance Certification (GIAC), Offensive Security Certified Professional (OSCP), Offensive Security Wireless Professional (OSWP), Offensive Security Certified Expert (OSCE), Offensive Security Exploitation Expert (OSEE), or Offensive Security Web Expert (OSWE)
- Experience in a 24 x 7 x 365 global security operations center environment
Responsibilities
- Lead or participate in computer security incident response activities for moderately complex events
- Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies
- Provide security consulting on medium projects for internal clients to ensure conformity with corporate information, security policy, and standards
- Design, document, test, maintain, and provide issue resolution recommendations for moderately complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security
- Review and correlate security logs
- Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity
- Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives
- Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals
Benefits
- This role offers a hybrid work schedule
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
