Lead Information Security Engineer

Wells Fargo•San Antonio, TX

1d•$119,000 - $187,000•Hybrid

About The Position

Wells Fargo is back in the office collaborating for fabulous outcomes. This role is in the office three days a week and a hybrid position. There is no Visa Sponsorship or Visa Transfers for this role. Join a high-impact security engineering team at the forefront of enterprise cryptography, where you’ll design, build, and scale critical encryption and key management solutions that protect some of the organization’s most sensitive data. This role is ideal for a hands-on security engineer with deep expertise in cryptographic protocols, HSMs, and modern data protection technologies, who thrives in complex, large-scale environments. You’ll work across Linux, Windows, and automation frameworks to harden systems, optimize performance, and drive secure architecture forward—while partnering with engineering and operations teams to deliver resilient, scalable solutions. If you’re passionate about encryption, key management, and solving sophisticated security challenges in a fast-paced enterprise setting, this is a role where your expertise will directly shape the organization’s security posture. This role will actively mentor and develop team members by providing technical guidance, sharing best practices, and fostering a culture of continuous learning and security excellence.

Requirements

5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education.
5+ years of intermediate to advanced level experience with scripting/automation using tools such as: Bash, PowerShell, Python, Ansible, VBScript, or JavaScript, UI path, etc.
5+ years of Unix/Linux/Windows Systems Administration experience with in-depth knowledge of troubleshooting, OS hardening and OS tuning.
5+ years of experience with encryption or tokenization technologies.
3+ years of experience performing builds, administration and/or support of hardware security modules or security appliance devices.
Advanced Knowledge of Cryptographic protocols & algorithms.
Knowledge and understanding of Cryptographic Technologies and Key Management.
Experience with Thales CipherTrust Key Manager and CipherTrust Transparent Encryption (CTE).
Understanding of (format preserving encryption) FPE, tokenization and TDE (transparent data encryption).
Knowledge and understanding of implementing infrastructure upgrades, security patches, version upgrades for systems, appliances and HSM’s.
Experience with Agile Scrum or Kanban methodologies.
Experience with application support in Linux and Windows server environments.
Proven experience with change and incident management practices in medium to large enterprise environments.
Demonstrate proficiency in using AI‑assisted development and analysis tools (e.g., GitHub Copilot and approved code‑centric agents).

Nice To Haves

Experience with and the ability to thrive in a complex and fast-paced technology and/or information security organization, within a large enterprise environment.
Experience performing technical product assessments, including development of implementation plans, in a large enterprise.
Experience mentoring/guiding less experienced staff.
Strong analytical skills with high attention to detail and accuracy.
Advanced critical thinking, problem solving and technical troubleshooting abilities.
Security certifications such as CISSP, GIAC or equivalent.
Cloud certifications such as AZ-900, MS-900 or equivalent/higher.
Knowledge and understanding of implementing infrastructure upgrades, security patches, or version upgrades.
Experience designing, developing and implementing synthetic transactions for the monitoring of applications and//or infrastructure.
Experience with Puppet/Chef/Ansible or similar automation tools.
Knowledge and understanding of banking or the financial services industry.
Ability to coordinate completion of multiple tasks and meet aggressive time frames.

Responsibilities

Design, build, and scale critical encryption and key management solutions.
Protect some of the organization’s most sensitive data.
Work across Linux, Windows, and automation frameworks to harden systems, optimize performance, and drive secure architecture forward.
Partner with engineering and operations teams to deliver resilient, scalable solutions.
Actively mentor and develop team members by providing technical guidance, sharing best practices, and fostering a culture of continuous learning and security excellence.
Perform builds, administration and/or support of hardware security modules or security appliance devices.
Implement infrastructure upgrades, security patches, version upgrades for systems, appliances and HSM’s.
Provide application support in Linux and Windows server environments.
Manage change and incident management practices in medium to large enterprise environments.
Perform technical product assessments, including development of implementation plans, in a large enterprise.
Design, develop and implement synthetic transactions for the monitoring of applications and/or infrastructure.
Leverage AI to accelerate system design, coding, testing, analysis, and troubleshooting.
Apply strong technical judgment when validating and integrating AI-assisted outputs into solutions.
Understand and account for model limitations, security risks, and operational considerations.
Apply AI responsibly in development and production environments.
Ensure AI usage aligns with security, compliance, privacy, and ethical standards.