Senior Lead Control Management Officer- Cloud Platforms

Wells Fargo is seeking a Senior Technology Control Officer plays a critical role in assessing the institution’s critical infrastructure, platform and services. This position ensures that Wells Fargo technologies comply with stringent regulatory requirements, internal risk frameworks, and industry best practices. The role focuses on mitigating operational, cybersecurity, and compliance risks associated with core technology platforms through end to end control assurance assessments for critical platforms, products and services. In this role you will: Develop and lead the assessment strategy across the ITGC control domains to ensure risk-based methodology is designed that is defensible and scalable Lead and perform the end to end platform assurance assessments across the core ITGC domains and functionality of the platform Identify the Consumer/Prodcuer requirements, ensure those are embedded into the enabling technologies and are ratified in SOR with measurement and telemetry Act as an advisor to more experienced leaders in developing risk mitigation strategies for complex and highly integrated business specific risk across different business lines Drive issue management, thematic analysis, remediation and act an advisor to more experienced leaders in developing risk mitigation strategies, remediation efforts, and validation for complex issues Provide vision, direction, and expertise to more experienced leaders on implementing innovative and significant business solutions for highly complex risks associated with business operations Mentor and train Control Management teams, stakeholders and tech partners on assessment strategy, methodology and remediation Engage with all levels of roles across the business group, and serve as an experienced advisor in designing and implementing risk mitigation strategies, business processes, and controls that mitigate risks and address regulatory requirements Specific responsibilities include: Risk & Control Management Develop and maintain a comprehensive control framework for platform assurance (Cloud, Private cloud, IAM, CICD, Data Mgmt, PAM) aligned with financial industry standards. Identify, assess, and remediate technology risks related to platform, products and services, including operational resilience and third-party risk. Perform regular risk assessments, control testing, and ensure adherence to enterprise risk appetite. Conduct thematic analysis from assessment outputs including – platform assurance, threat models, Red team assessments, audits etc. and continuously enhance assessment frameworks Regulatory Compliance & Governance Ensure compliance with financial regulations (e.g., FFIEC, OCC, SEC, GDPR) and internal policies. Partner with internal audit, compliance, and regulatory teams to address findings and implement remediation plans. Maintain governance documentation for regulatory exams and audits. Security & Architecture Collaborate with engineering and cybersecurity teams to embed security and compliance controls in architecture and deployments. Review and approve end-to-end platform design and implementation including configurations, IAM policies, encryption standards, and data residency requirements. Monitor for vulnerabilities and ensure timely remediation in accordance with financial sector security standards. Stakeholder Engagement Act as a trusted advisor to technology teams, risk management, and business units on technology risk and compliance requirements. Provide guidance during strategic migration projects and new service implementations. Deliver training and awareness programs on risk management and regulatory compliance. Continuous Improvement Stay informed on emerging technologies, regulatory changes, and risk trends impacting financial institutions. Recommend enhancements to control processes, automation opportunities, and operational resilience strategies. Drive initiatives to strengthen control governance and reduce risk exposure.