DLP Senior Information Security Analyst

About The Position

Requirements

• 4+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• Demonstrated experience analyzing and responding to security incidents

Nice To Haves

• 3+ years of Data Loss Prevention Operations experience including event triage and response, assessing and quantifying emerging risks, etc.
• 3+ years working in an Agile-based environment leveraging Jira or other industry-standard tools
• 3+ years of Security Operations Center/Cyber Threat Fusion Center experience
• 3+ years working with Symantec DLP or other DLP solutions
• 2+ years of Splunk or other SIEM tool experience
• 1+ year of Security Orchestration Automation and Response (SOAR) experience
• CISSP, CCSP or other applicable InfoSec certification

Responsibilities

• Perform triage, remediation and escalation of DLP incidents
• Compile ad hoc data and reporting to support information security risk management
• Assist with quality assurance routines ensuring consistent, timely execution and documentation of DLP events and incidents
• Provide internal customer support to enable the business
• Update and maintain processes and procedures
• Assist with inquiries from risk partners, Internal Audit and regulatory bodies on EDLP controls and procedures
• Provide information security consultation to improve awareness and compliance with Enterprise Information Security policy, processes and standards
• Perform remediation of security assessment review issues, complex ad hoc data, and reporting to support information security risk management
• Provide guidance and direction in reviewing assessment findings and mitigating controls to optimize information security
• Identify and direct information asset portfolio reconciliations and certifications
• Provide advanced data aggregation and data of information security risk exposure
• Develop and deliver Information Security Education Awareness and Training in accordance with the Enterprise Information Security Program standards
• Review draft and proposed control standards for business impact and recommend modifications or clarifications as required
• Conduct security control testing and consultation with stakeholders
• Evaluate and interpret internal and Enterprise Information Security policies, processes and standards, and provide recommendations to improve them
• Collaborate and consult with peers, colleagues, and managers to resolve issues and achieve goals
• Interact with internal customers
• Serve as a mentor to less experienced staff

Benefits

• Wells Fargo is an equal opportunity employer.
• Accommodation for applicants with disabilities is available upon request in connection with the recruitment process.