Senior Information Security Engineer - Cyber Threat Fusion Center (CTFC)
About The Position
About This Role Wells Fargo is seeking a Senior Information Security Engineer in Technology as part of Cybersecurity. Learn more about the career areas and lines of business at wellsfargojobs.com. As a Senior Information Security Engineer on the CTFC Internal Cyber Operations team, you will play a critical role in investigating and mitigating insider threat incidents, strengthening our ability to protect the organization from internal cyber risks. This position involves conducting advanced analysis, developing effective response strategies, and contributing to a world-class insider threat program. We are looking for a highly motivated professional who is passionate about identifying and resolving insider threats through expert analysis and proactive incident handling. In This Role, You Will Conduct advanced investigations into insider threat incidents using SIEM analysis, user behavior analytics (UBA), and endpoint monitoring to identify suspicious activities. Handle escalated insider threat cases requiring in-depth analysis, including root cause analysis to prevent recurrence. Collaborate with cross-functional cyber teams to address gaps in insider threat detection and response capabilities, contributing to broader security strategies. Perform specialized threat hunting operations to proactively identify potential insider risks. Develop clear, concise documentation—including incident reports, processes, and procedures—for team reference and stakeholder communication.
Requirements
- 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
- 1+ years of experience in cyber defense investigation and incident response.
- 1+ years of experience in threat analysis using SIEM, EDR, and/or UBA tools.
Nice To Haves
- 1+ years of experience conducting threat hunting activities, preferably focused on insider threats.
- Certifications in one or more of the following: GIAC Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA), GIAC Certified Detection Analyst (GCDA), CompTIA CySA+, or CISSP.
- Strong professional verbal and written communication skills.
Responsibilities
- Conduct advanced investigations into insider threat incidents using SIEM analysis, user behavior analytics (UBA), and endpoint monitoring to identify suspicious activities.
- Handle escalated insider threat cases requiring in-depth analysis, including root cause analysis to prevent recurrence.
- Collaborate with cross-functional cyber teams to address gaps in insider threat detection and response capabilities, contributing to broader security strategies.
- Perform specialized threat hunting operations to proactively identify potential insider risks.
- Develop clear, concise documentation—including incident reports, processes, and procedures—for team reference and stakeholder communication.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
Number of Employees
5,001-10,000 employees
