Senior Lead eCrime Defense Research Engineer
About The Position
Wells Fargo is building an exciting new cross-functional team to proactively detect and rapidly respond to emerging eCrime threats and cyber-enabled financial crimes. This multidisciplinary team will require diverse expertise across cyber security threat detection and response, offensive cybercrime security research, complex financial crime investigations (fraud, Anti-Money Laundering), fraud strategies, data science, and operations. The mission is to mitigate fraud losses and operational expenses while protecting customers and clients. Aligned to the primary attack vectors, the team will drive forward the development of cutting-edge analytics and data collection methodologies to improve the detection and prevention of financial crimes with a nexus to fraud. Responsibilities: Lead external threat Intelligence to collect external data and create actionable fraud and financial crime intelligence for enterprise control owners. Including working with Financial Industry partners (NCFTA and ISACs), cross-sector private industry critical infrastructure partners, and law enforcement/public partners. Partner on internal threat hunting and analytical research with eCrime data scientist to detect active attacks, emerging trends, shifts in financially motivated criminal behavior. Partner on control validation test to identify and remediate control and data visibility gaps by emulating financially motivated criminal tactics, techniques, procedures (TTPs). In this role, you will: Enhance the organization's ability to detect and prevent fraud, scams, and mitigate exposure to financial crimes. -- including threats from cloud native adversaries targeting commercial clients, private bank clients, supply chain exploits, APIs, and customer identity/authentication flows. Perform non-attrib research off the Wells Fargo network to develop new signals and rapid prototypes to mitigate fraud losses and cybercrime exposure Assess criminal enablement tools/services, develop new fingerprint and detection capabilities, conduct advanced threat simulations, and perform control test. Collaborate and consult with peers, colleagues, and managers to resolve issues and achieve goals. Mitigate fraud losses and operational expenses by improving mean-time-to-detect (MTD). Partner with Engineering on deploying production-ready/scalable capabilities. Detect emerging threats and active attacks linked to Crime-as-a-Service enablers and cybercriminal tactic, techniques, and procedures (TTPs). Develop a deep understanding of internal systems that could be exploited by financially motivated criminals. Lead threat actor attribution initiatives to improve prevention controls and enrich Financial Crime Investigators working complex cases. Interface with multiple lines of businesses and protect customers from emerging and active threats.
Requirements
- 7+ years of Cyber Security Research experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
- 10+ years of threat intelligence and incident response experience; specifically dealing with financially motivated criminals. Demonstrated through one or a combination of the following: work experience, training, military experience, education.
- 5+ years in protecting Enterprise systems including supply chains/3rd parties
Nice To Haves
- Current security clearance and/or ability to pass background security clearance check
- Combination of log analysis and financial transaction analysis
- Advanced in enriching data to create actionable intelligence
- Advanced operational security and handling of sensitive information
- Advanced threat intelligence and incident response lifecycle management skills
Responsibilities
- Lead external threat Intelligence to collect external data and create actionable fraud and financial crime intelligence for enterprise control owners.
- Partner on internal threat hunting and analytical research with eCrime data scientist to detect active attacks, emerging trends, shifts in financially motivated criminal behavior.
- Partner on control validation test to identify and remediate control and data visibility gaps by emulating financially motivated criminal tactics, techniques, procedures (TTPs).
- Enhance the organization's ability to detect and prevent fraud, scams, and mitigate exposure to financial crimes.
- Perform non-attrib research off the Wells Fargo network to develop new signals and rapid prototypes to mitigate fraud losses and cybercrime exposure
- Assess criminal enablement tools/services, develop new fingerprint and detection capabilities, conduct advanced threat simulations, and perform control test.
- Collaborate and consult with peers, colleagues, and managers to resolve issues and achieve goals.
- Mitigate fraud losses and operational expenses by improving mean-time-to-detect (MTD).
- Partner with Engineering on deploying production-ready/scalable capabilities.
- Detect emerging threats and active attacks linked to Crime-as-a-Service enablers and cybercriminal tactic, techniques, and procedures (TTPs).
- Develop a deep understanding of internal systems that could be exploited by financially motivated criminals.
- Lead threat actor attribution initiatives to improve prevention controls and enrich Financial Crime Investigators working complex cases.
- Interface with multiple lines of businesses and protect customers from emerging and active threats.
Benefits
- Health benefits
- 401(k) Plan
- Paid time off
- Disability benefits
- Life insurance, critical illness insurance, and accident insurance
- Parental leave
- Critical caregiving leave
- Discounts and savings
- Commuter benefits
- Tuition reimbursement
- Scholarships for dependent children
- Adoption reimbursement
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
Number of Employees
5,001-10,000 employees
