Senior Information Security Engineer

The Wells Fargo Cyber Security Authentication Platform Management Team is seeking a Senior Information Security Engineer to collaborate closely with internal business partners, technology teams, and external vendors to develop solutions for the Wells Fargo Active Directory & Entra AD Infrastructure. This role involves utilizing scripting tools and automation to create real-time monitoring, metrics, certification, and quality assurance applications. The engineer will work alongside technical leads, business analysts, system analysts, DBAs, and other cross-department teams to assess business needs and deliver comprehensive technical solutions. Additionally, the engineer will be responsible for production monitoring and establishing disaster recovery standard operating procedures (SOPs). On-call support for the Active Directory & Entra environment and its infrastructure components will also be required. As a Senior Information Security Engineer, you will serve as a second/third level Subject Matter Expert (SME) support, implementing necessary changes and providing incident and problem ticket support when technical issues arise. You will act as an escalation point for application support and troubleshooting, guiding less experienced staff in resolving escalated issues and complex production, application, or system problems. Furthermore, you will lead the Active Directory & Entra Business Continuity Planning (BCP), Security Planning, and Audit Support, ensuring that all technology process documentation is maintained, BCP exercises are performed, and audit evidence is provided as needed. Your role will also involve ensuring that quality, security, and compliance requirements are met for the supported area, overseeing the creation or updates to the business continuation plan, and testing it accordingly. In this position, you will lead or participate in computer security incident response activities for moderately complex events, conduct technical investigations of security-related incidents, and perform post-incident digital forensics to identify causes and recommend future mitigation strategies. You will provide security consulting on medium projects for internal clients to ensure conformity with corporate information security policies and standards. Your responsibilities will include designing, documenting, testing, maintaining, and providing issue resolution recommendations for moderately complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security. You will also review and correlate security logs, utilize subject matter knowledge in industry-leading security solutions and best practices, and implement components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity. Identifying security vulnerabilities and issues, performing risk assessments, and evaluating remediation alternatives will also be part of your duties. Collaboration and consultation with peers, colleagues, and managers will be essential to resolve issues and achieve goals.