Lead Cyber Security Research Consultant @ WELLS FARGO BANK - San Francisco, CA

Job Overview

a month ago

Lead Cyber Security Research Consultant

WELLS FARGO BANK - San Francisco, CA

About this role:

Wells Fargo is seeking a Lead Cyber Security Research Consultant. Information Cyber Security's (ICS) vision is to provide Wells Fargo world leading cyber security risk management. Through a framework that addresses policy, process, operations, people, and technology, ICS protects Wells Fargo's infrastructure, corporate data, and customer assets, and ensures alignment with applicable regulations and laws. ICS is part of Wells Fargo's Technology organization and is led by the Chief Information Security Officer.

The Enterprise Information Security team is looking for a strong cyber security professional to join the Offensive Security Research Team (Red Team). This role will assess cloud based deployments for security gaps in configuration and implementation. Candidates should have a deep understanding of how data is stored, accessed, and managed in the cloud. This position is a senior role responsible for leading and executing security assessments from end to end. Opportunities will exist for contributing and collaborating on assessments of mission critical cloud deployments for enabling the day to day activities of a large enterprise at scale. The outputs of this role will directly impact the security posture of the enterprise cloud transition. This position reports to the Offensive Security Research Team and works closely with our defense partners in a purple team capacity.

Responsibilities:
  • Assess security posture of cloud based deployments
  • Clear and concise documentation of findings with ability to effectively communicate risks to business partners
  • Research innovative ways to identify control gaps at scale
  • Ability to emulate tactics, techniques and procedures utilized by real world threat actors
  • Collaborate with other teams to identify problems and gaps that require new and unique solutions
  • Ability to lead and mentor junior testers
  • Share the knowledge you learn with other team members and partners
  • Be an evangelist for the Offensive Security Research Team

In this role, you will:
  • Lead initiatives including the research, analysis, design, testing and implementation of the most complex computer network security and protection technologies for company information and network systems and applications
  • Act as professional ethical penetration tester utilizing hacking tools to modify or create proof of concept exploits that mimic techniques of the most sophisticated attackers
  • Review and analyze complex advanced computer security incident response activities and technical investigations of information security related incidents
  • Identify vulnerabilities and associate those to a severity rating by deriving impact and ease of exploit
  • Conduct security risk assessments to ensure compliance with corporate information security policies and adherence to best practices
  • Communicate to the line of business on the inherent risks, providing meaningful mitigation strategies
  • Provide leadership to principal engineers and supports special projects
  • Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals
Required Qualifications, US:
  • 5+ years of information security experience in converged testing (red teaming) demonstrated through work or military experience
  • 1+ year of experience in network, social, and physical domains demonstrated through work or military experience
  • 3+ years of experience in one or a combination of the following: creating proof of concepts, creating exploits, or reverse engineering demonstrated through work or military experience
Desired Qualifications:
  • 5+ years of Cyber Security Research experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  • 1+ years of cloud computing experience
  • 1+ years of experience with scripting languages such as Bash, PowerShell, Python, Shell, VBScript, or JavaScript
  • Knowledge or experience of containerization related management stacks with Docker, Swarm or Kubernetes
  • Experience with RESTful API calls
  • Experience working with cloud security management or governance tools
  • Experience working with cloud access security brokers
  • Certifications in one or more of the following: Global Information Assurance Certification (GIAC/SANS), Offensive Security Certified Professional (OSCP), Offensive Security Wireless Professional (OSWP), Offensive Security Certified Expert (OSCE), Offensive Security Exploitation Expert (OSEE), or Offensive Security Web Expert (OSWE), Cloud Provider Certifications (AWS, GCP, Azure).
Job Expectations:
  • Ability to travel up to 15% of the time
Pay Range

$111,100.00 - $197,500.00 Annual

Benefits
  • Information about Wells Fargo's employee benefits
We Value Diversity

At Wells Fargo, we believe in diversity, equity and inclusion in the workplace; accordingly, we welcome applications for employment from all qualified candidates, regardless of race, color, gender, national origin, religion, age, sexual orientation, gender identity, gender expression, genetic information, individuals with disabilities, pregnancy, marital status, status as a protected veteran or any other status protected by applicable law.

Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements.

Candidates applying to job openings posted in US: All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Similar Jobs

Endpoint Operations Systems Administrator (7304U), Berkeley IT - 37545

University of California Berkeley

Berkeley, CA

Endpoint Operations Systems Administrator (7304U), Berkeley IT - 37545 About Berkeley At the University of California, Berkeley, we are committed to creating…

Database Administrator, Berkeley IT (0597U) 37734

University of California Berkeley

Berkeley, CA

Database Administrator, Berkeley IT (0597U) 37734 About Berkeley At the University of California, Berkeley, we are committed to creating a community that…

Cloud Engineering - Director

PRICE WATERHOUSE COOPERS

San Francisco, CA

A career in our Cloud Migration practice, within Cloud Computing and Networking services, will provide you with the opportunity to focus on the joint business…

Cloud Engineering - Director

PRICE WATERHOUSE COOPERS

San Jose, CA

A career in our Cloud Migration practice, within Cloud Computing and Networking services, will provide you with the opportunity to focus on the joint business…

Cloud Engineering - Director

PRICE WATERHOUSE COOPERS

Sacramento, CA

A career in our Cloud Migration practice, within Cloud Computing and Networking services, will provide you with the opportunity to focus on the joint business…

Marketing Manager - Cybersecurity

Informa Tech

San Francisco, CA

Company Description At Informa Tech, we believe that technology innovation is key to driving positive change in our society. We believe that digital…

Lead Architect / Payment Processing Platform

JPMorgan Chase Bank, N.A.

Palo Alto, CA

As an experienced Solutions Engineer Architect, your mission is to work with our team of innovators and technologists toward creating next-level payment…

Senior Staff Engineer

Palo Alto Networks

Santa Clara, CA

Company Description At Palo Alto Networks® everything starts and ends with our mission: Being the cybersecurity partner of choice, protecting our digital…

Cybersecurity Audit Manager

ServiceNow

Santa Clara, CA

Company Description At ServiceNow, our technology makes the world work for everyone, and our people make it possible. We move fast because the world can’t…

AVP Team Lead, Financial Lines E&O/Cyber/Professional Liability

Chubb INA Holdings Inc.

San Francisco, CA

Chubb is the world’s largest publicly traded property and casualty insurer. With operations in 54 countries, Chubb provides commercial and personal property…

ICS SGE - Senior Cyber Security Research Consultant Penetration Testing

WELLS FARGO BANK

San Francisco, CA

About this role: Wells Fargo is seeking a Senior Cyber Security Research Consultant that will investigate existing types of malware, analyze their…

Integrated Campaigns Manager

Tanium

San Francisco, CA

The Basics: The Integrated Campaigns Manager is responsible for launching campaigns that build brand awareness and generate demand for Tanium. This…

Sr. Research Computer Vision Engineer

Supernal

Fremont, CA

Supernal is at the forefront of creating emerging mobility solutions that will foster the development of human-centered cities. We are designing a completely…

Associate, Sales (Cyber)

KPMG

San Francisco, CA

The KPMG Advisory practice is currently our fastest growing practice. We are seeing tremendous client demand, and looking forward we don't anticipate that…

Purple Team - Lead Strategy & Planning Consultant

WELLS FARGO BANK

San Francisco, CA

About this role: Wells Fargo is seeking a Lead Strategy & Planning Consultant to join our Threat Detection Services (TDS) Purple Team. The role will be…

Lead Cybersecurity Consultant (Manager)

West Monroe

San Francisco, CA

Are you ready to make an impact? West Monroe is searching for a Lead Cybersecurity Consultant (Manager) to focus on delivering our CAPE program –…

Account Executive, Technology Research - OMDIA

Informa Tech

San Francisco, CA

Company Description Title: Account Executive Brand/Website: OMDIA Location is US/Remote/California Pay Scheme: Salary plus commission About Informa Tech…

Cyber Security Exercise Coordinator

WELLS FARGO BANK

San Francisco, CA

About this role: Wells Fargo is seeking a Cyber Security Exercise Coordinator who will execute the full lifecycle of cybersecurity exercise activities, which…

Cyber Security Exercise Coordinator

WELLS FARGO BANK

San Leandro, CA

About this role: Wells Fargo is seeking a Cyber Security Exercise Coordinator who will execute the full lifecycle of cybersecurity exercise activities, which…

Cyber Security Exercise Coordinator

WELLS FARGO BANK

Concord, CA

About this role: Wells Fargo is seeking a Cyber Security Exercise Coordinator who will execute the full lifecycle of cybersecurity exercise activities, which…

Purple Team - Lead Strategy & Planning Consultant

WELLS FARGO BANK

San Leandro, CA

About this role: Wells Fargo is seeking a Lead Strategy & Planning Consultant to join our Threat Detection Services (TDS) Purple Team. The role will be…

Purple Team - Lead Strategy & Planning Consultant

WELLS FARGO BANK

Concord, CA

About this role: Wells Fargo is seeking a Lead Strategy & Planning Consultant to join our Threat Detection Services (TDS) Purple Team. The role will be…

Sr. Staff Cloud Security Professional - Office of the CISO

ServiceNow

Santa Clara, CA

Company Description At ServiceNow, our technology makes the world work for everyone, and our people make it possible. We move fast because the world can’t…

Regional Sales Director

UpGuard

Delhi, CA

Who are we? UpGuard’s mission is to protect the world’s data. We obsessively seek out elegant, robust ways to enable our customers to find, acknowledge, and…