1,450 Offensive Security Certified Professional jobs in India
Information Security Professional
Posted today
Job Viewed
Job Description
**About BNP Paribas Group**:
**“BNP Paribas Group is a leading European bank with a strong global footprint across 72 markets and more than 202,000 employees.** The Group provides corporates, institutional and private investors with product and service solutions tailored to their specific needs. It offers a wide range of financial services covering corporate & institutional banking, wealth management, asset management, insurance, as well as retail banking and consumer financing through strategic partnerships”.
**About BNP Paribas India Solutions**:
Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas Group, a leading bank in Europe with an international reach. With delivery centers located in Mumbai and Chennai, we are a 24x7 global delivery center. We partner various business lines of BNP Paribas such as Corporate and Institutional Banking, Wealth Management, Retail Banking through three verticals - Information Technology, Operations and Finance Shared Services.
**About Businessline/Function**:
CIB Security & IT Risk provides information security services for the BNP Paribas Group. The IT Security Professional role is based in Mumbai and will work as part of a global team covering security risks and associated activities in multiple locations across EMEA, AMER & APAC.
**Job Title**:
Information Security Professional
**Date**:
4 June 2019
**Department**:
CIB Security & IT RISK
**Location**:
Infinity Mumbai
**Business Line / Function**:
**Reports to**:
- (Direct)_
**Grade**:
(if applicable)
- (Functional)_
**Number of Direct Reports**:
NA
**Directorship / Registration**:
NA
**Position Purpose**
- The purpose of the position is to help with the information security topics mentioned in the direct responsibilities._
**Responsibilities**
**Direct Responsibilities**
- Good Understanding of Information Security Concepts and Strategies.
- Ability to liaise with cross functional stakeholders globally.
- Knowledge of Data Classification and Data Masking Techniques and Mitigation Strategies.
- Working knowledge of Data Security tools like Delphix, DLP, Titus, AbInitio, Archer, etc.
- Well-verse in conducting Security Review, Assessments and providing recommendations.
- Experience in developing content and conducting Security awareness training.
- Experience in Process Improvement, Controls Enhancement and Reporting.
- Good understanding of data protection regulations and impact on IT landscape
- Providing advice and guidance to the Technology stakeholders on risk and control matters
- Identifying key risk trends, issues and other insights requiring further investigation and following up with Technology as appropriate.
- Engaging with Firm wide risk and control groups, including internal audit and territory control teams
- Working with Technology stakeholders (including Production Support and Development teams) to identify the top technology IT risks impacting the firm and formulating appropriate remediation strategies based on full understanding of business exposure and compensating controls.
**Contributing Responsibilities**
- Monitoring and oversight of existing IT risks, working collaboratively with stakeholders in ensuring plans are managed within timescales and escalating where appropriate.
- Managing relationships with Business and IT teams, chairing periodic meetings and being a point of contact for escalating to wider team members.
- Contribute relevant information technology risk information as required by group reporting.
- Assistance with drafting of risk acceptance statements and coordinating sign-off from business and IT stakeholders.
- SPOC for security architectures meetings.
**Technical & Behavioral Competencies**
- Excellent Inter personal and presentation skills
- Strong project and resource management
- Strong in verbal and written communication
- Security understanding or experience in cryptography, key management, ciphers
- Must be flexible, independent, self-motivated
- Good analytical skills
**Specific Qualifications **(if required)
- CISSP or CISM or CRISC mandatory
- Technical Graduate (Computer Science) Preferable.
**Skills Referential**
Behavioural Skills:
Ability to collaborate / Teamwork
Critical thinking
Communication skills - oral & written
Ability to deliver / Results driven
Transversal Skills:
Analytical Ability
Ability to manage a project
Ability to develop others & improve their skills
Ability to manage / facilitate a meeting, seminar, committee, training
Choose an item.
Education Level:
Bachelor Degree or equivalent
Experience Level
At least 7 years
**Other/Specific Qualifications **(if required)
**Primary Location**: IN-MH-Mumbai
**Job Type**: Standard / Permanent
**Job**: SECURITY OR FACILITIES MANAGEMENT
**Education Level***: Bachelor Degree or equivalent (>= 3 years)
**Experience Level***: At least 5 years
**Schedule**: Full-time
Information Security Professional
Posted today
Job Viewed
Job Description
**“BNP Paribas Group is a leading European bank with a strong global footprint across 72 markets and more than 202,000 employees.** The Group provides corporates, institutional and private investors with product and service solutions tailored to their specific needs. It offers a wide range of financial services covering corporate & institutional banking, wealth management, asset management, insurance, as well as retail banking and consumer financing through strategic partnerships”.
**About BNP Paribas India Solutions**:
Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas Group, a leading bank in Europe with an international reach. With delivery centers located in Mumbai and Chennai, we are a 24x7 global delivery center. We partner various business lines of BNP Paribas such as Corporate and Institutional Banking, Wealth Management, Retail Banking through three verticals - Information Technology, Operations and Finance Shared Services.
**About Businessline/Function**:
CIB Security & IT Risk provides information security services for the BNP Paribas Group. The IT Security Professional role is based in Mumbai and will work as part of a global team covering security risks and associated activities in multiple locations across EMEA, AMER & APAC.
**Job Title**:
Information Security Professional
**Date**:
4 June 2019
**Department**:
CIB Security & IT RISK
**Location**:
Infinity Mumbai
**Business Line / Function**:
**Reports to**:
(Direct)
**Grade**:
(if applicable)
(Functional)
**Number of Direct Reports**:
NA
**Directorship / Registration**:
NA
**Position Purpose**:
The purpose of the position is to help with the information security topics mentioned in the direct responsibilities.
**Responsibilities**
**Direct Responsibilities**:
- Good Understanding of Information Security Concepts and Strategies.
- Ability to liaise with cross functional stakeholders globally.
- Knowledge of Data Classification and Data Masking Techniques and Mitigation Strategies.
- Working knowledge of Data Security tools like Delphix, DLP, Titus, AbInitio, Archer, etc.
- Well-verse in conducting Security Review, Assessments and providing recommendations.
- Experience in developing content and conducting Security awareness training.
- Experience in Process Improvement, Controls Enhancement and Reporting.
- Good understanding of data protection regulations and impact on IT landscape
- Providing advice and guidance to the Technology stakeholders on risk and control matters
- Identifying key risk trends, issues and other insights requiring further investigation and following up with Technology as appropriate.
- Engaging with Firm wide risk and control groups, including internal audit and territory control teams
- Working with Technology stakeholders (including Production Support and Development teams) to identify the top technology IT risks impacting the firm and formulating appropriate remediation strategies based on full understanding of business exposure and compensating controls.
**Contributing Responsibilities**:
- Monitoring and oversight of existing IT risks, working collaboratively with stakeholders in ensuring plans are managed within timescales and escalating where appropriate.
- Managing relationships with Business and IT teams, chairing periodic meetings and being a point of contact for escalating to wider team members.
- Contribute relevant information technology risk information as required by group reporting.
- Assistance with drafting of risk acceptance statements and coordinating sign-off from business and IT stakeholders.
- SPOC for security architectures meetings.
**Technical & Behavioral Competencies**:
- Excellent Inter personal and presentation skills
- Strong project and resource management
- Strong in verbal and written communication
- Security understanding or experience in cryptography, key management, ciphers
- Must be flexible, independent, self-motivated
- Good analytical skills
**Specific Qualifications (if required)**:
- CISSP or CISM or CRISC mandatory
- Technical Graduate (Computer Science) Preferable.
**Skills Referential**
Behavioural Skills:
Ability to collaborate / Teamwork
Critical thinking
Communication skills - oral & written
Ability to deliver / Results driven
Transversal Skills:
Analytical Ability
Ability to manage a project
Ability to develop others & improve their skills
Ability to manage / facilitate a meeting, seminar, committee, training
Choose an item.
Education Level:
Bachelor Degree or equivalent
Experience Level
At least 7 years
**Other/Specific Qualifications **(if required)
Information Security Professional
Posted today
Job Viewed
Job Description
**You are responsible to**:
- Develop and maintain robust security controls to protect Philips's business from security breaches/ incidents.
- Deliver Security demand from the business for security controls.
- Ensure operational performance to deliver security controls at optimum cost.
- Maintain a good relationship with key stakeholders including business, ISC, other IT departments & security teams to deliver on security requirements timely and effectively.
- Engage with auditors to acquire and retain certifications/ attestations
- Support audits by the timely response, escalation management, gap analysis, mitigation, etc.
- Lead internal reviews and assessments of solutions, processes, procedures, and practice.
- Conduct supplier Assessments to check their compliance with the security schedule
- Manage risk profile of IT Infrastructure
- Drive security education and awareness activities across the platform and Enterprise IT.
- Provide direction for Enterprise IT Security and Cybersecurity protection, and oversee Technology governance and policies.
- Develops Enterprise IT Security strategy, and awareness programs, and is able to define security architecture and security incident response.
- Provides strategic risk guidance for IT projects, including evaluation and recommendation of technical controls.
- Develops, maintains, and publishes up-to-date security policies, standards, and guidelines.
- Evaluates new cybersecurity threats and IT trends and develop effective security controls.
- Evaluates potential security breaches, coordinate the response, and recommend corrective actions.
- Define and report on information security KPIs.
- Provides Security Project Management and leadership to staff and external resources in support of established goals and objectives, improved efficiencies, and problem resolution.
- Maintains current knowledge of the industry and regulatory trends and developments for enterprise technology.
- Specialized in a number of Security domains such as incident response, operational assessment of security posture, manufacturing security, OT security, and general security management.
- Needs a thorough understanding of Security Management principles, Security governance principles, and Regulatory requirements
- Experience working with external stakeholders in law enforcement, audit, testing, investigations, and intelligence.
- Monitor, evaluate, and change the organization as needed to ensure success in managing Security
- Organize the preparation of the security status dashboards including presentation to executive management.
- Responsible for formulating long-term security policies for their domain
- Is responsible for the security schedules of major global contracts and the supplier integration and delivery of security services as contracted. This includes managing all service delivery components and coordinating supplier teams delivering services.
**You are a part of**
Enterprise IT Security team working closely with Enterprise IT, IT Platform Leaders, Mfg., R&D, CIO, and CISO.
**To succeed in this role, you should have the following skills and experience**
Soft Skills
- Excellent English language communication skills, both verbal and written. Cross-cultural etiquette, customer-centric and collaborative mindset.
- Works autonomously within established procedures and practices.
- Good command of stakeholder management, judgment, conflict resolution, risk & mitigations.
- Provide leadership to the global team at the strategic, tactical, and operational level
Qualification
- Bachelor’s or Master’s degree in Information Technology and or commensurate experience in delivering security solutions.
- Overall Enterprise IT Security experience of 15+ yrs or more.
- Security Certifications such as CISSP, CISM, CISA, CIPP, etc. are preferred.
- Should have a senior level in the domain of Security & operations management
- Absolutely trustworthy with high standards of personal integrity (demonstrated by an unblemished career history, lack of criminal convictions, etc.), willing to undergo vetting and/or personality assessments to verify this if necessary
- Typically a background in technical security roles or operations, with a clear and abiding interest in security
Information security
Posted today
Job Viewed
Job Description
Common accountabilities:
- Works autonomously within defined processes and procedures or methodologies, takes standard decisions and may support the development of solutions to complex problems of a recurring nature.
- Receives instruction, guidance and direction from more senior level roles or manager, with regular monitoring on the status of the assignments.
- May have specialized formal education or the equivalent work experience and has the required technical and functional skills and basic knowledge of the business.
Specific accountabilities:
Test strategy
* Attend to specification/architecture reviews (also on customer specification reviews when applicable), and provide feedback along with any potential impact, risk, issue or missed gap based on experience,
* Define test strategy and test plan containing test cases (functional and non-functional), ensure traceability with specifications and customer requirements,
* Ensure compliance of test strategy with CI/CD guidelines, Green IT guidelines and all quality guidelines (SDL, STDL), QA best practices/standards from the industry (ISTQB.),
Test expertise
* Design test cases and write test case scripts
* Prepare test environment, test data, and execute test cases
* Provide sign-off (go/no-go) on tested features based on defined exit criteria
Test automation
* Assess necessity to automate subset of (or all) test scripts
* Use test automation framework and contribute to its improvement
Defect management
* Open defects for software or documentation, assign relevant level of severity based on the importance of the issue, provide relevant investigation and information in order to fix defects
* Check defect fix, and give go/no-go for the load of production defects
Reporting
* Report and communicate on test activities to the line organization, software developers and product definitions analysts
* Provide visibility on testing campaign/milestones to all stakeholders
Quality assurance ambassador
* Show accountability for the project, product or release quality control
Technicity
* Efficiently use QA tooling stack and frameworks
* Be proactive about any issue/change that is likely to affect QA peers daily job
Continuous and sustainable improvement
* Participate to the understanding, measurement and reduction of the environmental impact of the tested applications and associated QA activities
Professional 1 Information Security
Posted today
Job Viewed
Job Description
- Audits computer systems to ensure that they are operating securely and that data is protected from both internal and external attack.
- Conducts security assessments to ensure adherence to customer specific security policy, procedures and industry standards.
- Monitors, evaluates, and maintains security systems according to industry best practices to safeguard internal information systems and databases.
- Assists with the review and definition of security requirements and reviews systems to determine if they are designed to comply with established standards.
- Investigates security violations and breaches; Prepares reports on intrusions as necessary.
- Reviews firewalls logs across the assigned area. Configures firewalls, intrusion detection systems, and other network security devices across assigned area.
**Basic Qualifications**
- Bachelor's degree or equivalent combination of education and experience
- Bachelor's degree in computer science or related field preferred
- CISSP certification preferred
- Three or more years of computer science, management information systems, or data security experience
- Experience working with information and network security practices
- Experience working with computer programming
- Experience working with computer desktop packages such as Microsoft Word, Excel, etc.
- Experience working with operating systems
- Experience working with security software packages
- Experience working with security architecture
**Other Qualifications**
- Analytical and problem solving skills for resolving security issues
- Interpersonal skills to interact with customers and team members
- Communication skills to interact with team members and support personnel
- Skilled in implementing and configuring networks and network components
- Ability to work with relational databases
- Ability to work in a team environment
**Work Environment**
- Office environment
- May require shift work
- May require weekend work
Information Security Specialist
Posted today
Job Viewed
Job Description
Entity:
Technology
Job Family Group:
Job Description:
To enable the world to reach net zero, bp are looking for the brightest digital specialists to drive innovation as it transitions from an International Oil Company (IOC) to an International Energy Company (IEC).
Are you passionate about protecting what matters most? We're seeking someone who is passionate about identifying and implementing security solutions that make bp a cyber resilient organisation! Our Business Information Security team partners with the business to help them understand cyber risk and be accountable for cyber security.
We're looking for curious minds who are driven by opportunities to build value and deliver secure products and services to advance bp's strategy.
Role SynopsisIn the digital era, where data breaches and cyber threats are not just possibilities but realities, the role of a Global Information Security Specialist has never been more critical. Working closely with bp's business areas, you will support the protection of IT systems and business data that are important to bp's operations.
You will conduct security assessments, respond to security queries, and provide security expertise. Your expertise will help ensure that business teams can operate with confidence, knowing their systems and processes are secure.
Ready to make a real impact in energy security? Join us in safeguarding the people, processes and systems that power our transition to net zero!
Key AccountabilitiesIn this role you will deliver security activities to support bp's business. This role focuses on hands-on security assessment and advisory activities with the following key accountabilities:
Security Assessments : We need someone that can conduct comprehensive assessments of systems, identifying risks and issues while recommending appropriate remediation measures.
Technical & Non-Technical Risk Advisory : You'll assess and communicate cybersecurity risks. We want our customers to understand potential impacts and mitigation strategies clearly.
Cyber Behaviour Promotion : We strive to build a strong cyber security culture. You'll assist with the development and promoting good cyber behaviours in day-to-day operations.
Incident Management Support : When security incidents happen, we need you to provide specialist security expertise. You'll support incident response activities and improvement recommendations.
Customer Support : We want you to act as the go-to point of contact for information security. You'll provide timely and accurate expertise on security matters affecting their systems or data.
Assess and Evaluate : You'll perform regular security assessments of business systems. We use established methodologies to identify potential risks, weaknesses and security gaps.
Respond and Advise : We require someone who can offer our customers practical and tailored cyber security solutions. These solutions must align with operational requirements.
Analyze and Report : You'll evaluate risks and prepare clear, actionable recommendations, and communicate these with both business and technical audiences.
Support and Collaborate : We work closely with business teams to implement security measures. You'll help maintain robust security posture while aligning with operational needs.
Promote and Educate : We nurture positive cyber security behaviours! You'll work through targeted awareness activities, training support, and expert guidance.
Monitor and Review : We want someone who understands the security landscape affecting bp systems and stay ahead of emerging threats and industry standard methodologies.
Bachelor's degree or equivalent experience in Information or Cyber Security, Computer Science, Engineering.
Working towards professional certifications such as Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Security Professional (CISSP), or CompTIA Security+.
Knowledge of security frameworks such as ISO 27001/2, NIST, and CIS framework.
Previous track record in information security roles in Finance, HR, Trading, Retail, Supply or Oil and Gas companies.
Ability to explain security concepts to a variety of audiences.
Solid grasp of cyber risk assessment methodologies and the ability to translate technical findings into business impact assessments.
Attention to detail and ability to work independently while balancing multiple activities.
Ability to adapt security recommendations to different operating environments.
Ability to use technology, data, and insights to enable decision making.
Travel Requirement
Relocation Assistance:
Remote Type:
Skills:
Legal Disclaimer:
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, socioeconomic status, neurodiversity/neurocognitive functioning, veteran status or disability status. Individuals with an accessibility need may request an adjustment/accommodation related to bp’s recruiting process (e.g., accessing the job application, completing required assessments, participating in telephone screenings or interviews, etc.). If you would like to request an adjustment/accommodation related to the recruitment process, please contact us .
If you are selected for a position and depending upon your role, your employment may be contingent upon adherence to local policy. This may include pre-placement drug screening, medical review of physical fitness for the role, and background checks.
Information security lead
Posted today
Job Viewed
Job Description
Entity:
Technology
Job Family Group:
Job Description:
Information Security Lead
To enable the world to reach net zero, bp are looking for the brightest digital specialists to drive innovation as it transitions from an International Oil Company (IOC) to an International Energy Company (IEC).
Passionate about identifying and crafting security solutions that make bp a cyber resilient organisation, the Information Security team partner with business teams to help them understand cyber risk and take personal ownership for cyber security!
We’re looking for curious minds who are driven by opportunities to build value and deliver secure digital products and services to advance the global energy transition.
Role Synopsis
In the digital era, where data breaches and cyber threats are not just possibilities but realities, the role of an Information Security Lead has never been more critical. Our partnership with the business is essential to ensuring the confidentiality, integrity, and availability of an organisation's data and information systems.
Offering insights that influence the development and deployment of secure, resilient solutions & services. Your expertise enables teams to innovate with confidence, knowing their solutions align with the highest standards of data protection and regulatory compliance.
Key Accountabilities
In this role you will be responsible for the delivery of security activities to ensure swift business value realization. This role focuses on information security and digital security risk activities with the following key accountabilities:
Relationship and Customer management : Act as the main point of contact for all Digital Security enquiries within the relevant business portfolio. Build strong partnerships and influence positive change that serves the commercial ambitions.
Security Expertise: Provide technical expertise, implementing digital security operating processes aligned to security standards across all value stream activities.
Safety: Prioritize cyber and operational safety, improve digital security controls through architecture designs and process to maintain our cyber posture and react to new threats.
You will:
Monitor and Assess : Keep a vigilant eye on our digital domains, using innovative tools to detect and assess threats. This includes collaborating on the identification, assessment and management of risk
Strategize and Protect : Develop and implement robust security measures, crafting a secure environment for our data and systems.
Respond and Recover : Partner Customers during security incidents with a calm, calculated approach, minimising impact and guiding recovery efforts.
Educate and Advocate : Champion security awareness across the organisation, encouraging vigilance and responsibility.
Innovate and Guide : Provide strategic insights to teams, ensuring security is a cornerstone of product development and business operations.
Protect & Defend: Proactively mitigate cyber risks and coordinate the remediation of findings from vulnerability scans, supplier assurance, compliance reviews, and support the digital Delivery teams in maintaining high levels of cyber hygiene.
Education
Degree Educated, preferably BSc in Information Security or equivelent.
Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP) or working towards certification.
Knowledge of security frameworks such as ISO 27001/2, NIST, and CIS framework is highly advantageous.
Desirable Experience and Capability
Previous track record in similar roles in Finance, HR, Trading, Retail, Supply or Oil and Gas companies.
Strong influencing skills that enable you to communicate technical information to both technical and non-technical audiences, clearly and concisely.
Deep technical knowledge, and experience delivering security solutions and providing technical advice.
A track record of delivering business benefits by balancing the need to protect the organizations commercial ambitions and maintain operations of the core value streams.
Experience working within developing digital ecosystems, with multiple partners and environments, ensuring suitable digital security standards and practices delivered and maintained.
Good understanding of enterprise and operational risk management, risk governance and compliance requirements.
Excellent project management skills, with the ability to lead multiple projects simultaneously.
Able to adapt to shifting priorities, demands, and timelines and keep customers abreast of impact (potential or actual) to defined delivery timescales and/or business impact.
Ability to use technology, data, and insights to enable decision making.
Travel Requirement
Relocation Assistance:
Remote Type:
Skills:
Legal Disclaimer:
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, socioeconomic status, neurodiversity/neurocognitive functioning, veteran status or disability status. Individuals with an accessibility need may request an adjustment/accommodation related to bp’s recruiting process (e.g., accessing the job application, completing required assessments, participating in telephone screenings or interviews, etc.). If you would like to request an adjustment/accommodation related to the recruitment process, please contact us .
If you are selected for a position and depending upon your role, your employment may be contingent upon adherence to local policy. This may include pre-placement drug screening, medical review of physical fitness for the role, and background checks.
Be The First To Know
About the latest Offensive security certified professional Jobs in India !
Information Security Engineer
Posted 1 day ago
Job Viewed
Job Description
Wells Fargo is seeking an Information Security Engineer.
**In this role, you will:**
+ Participate in security consulting on small projects for internal clients to ensure uniformity with corporate information, security policy, and standards
+ Track or remediate vulnerabilities and security issues
+ Review and correlate security logs
+ Assist with the design, documentation, testing, maintenance, and troubleshooting of security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security
+ Provide technical support for security related issues
+ Utilize industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity
+ Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals
+ Interface with more experienced technologists
**Required Qualifications:**
+ 2+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
**Desired Qualifications:**
+ Must have 2+ years of Cyber Security experience specifically working in Security Operations
+ Must have 2+ years of experience with enterprise SIEM solutions (Arcsight/SPLUNK/RSA-SA/Qradar)
+ Must have basic understanding on cyber kill chain, MITRE framework and NIST framework.
+ Demonstrated experience in Security Incident Response, Mitigation and Remediation methodologies
+ Basic knowledge of networks, protocols, standards, Linux/Unix/Window OS internals, and system configuration
+ Experience with least one scripting language, such as: PowerShell, Python, Bash, PHP, etc.
+ Bachelor's and/or Master's degree in computer science or information systems
+ CompTIA Security+, CHFI and CEH or other relevant certifications highly preferred
+ Knowledge and understanding of banking or financial services industry
+ Experience working in a large enterprise environment
+ Strong analytical skills with high attention to detail and accuracy
+ Knowledge and understanding of system/application architecture and design concepts
+ Ability to work effectively, as well as independently, in a team environment
+ Excellent verbal, written, and interpersonal communication skills
**Job Expectations:**
+ The person selected will be responsible for rapidly assessing security information, identify security sensor and tool issues (e.g., case floods, false positives, sensor anomalies, etc.), and coordinate the resolution of security infrastructure issues impacting the Cyber Threat Fusion Center's ability to execute its mission.
+ Additionally, this person will effectively conduct correlation analysis across numerous internal and external data sources, identify information security incidents, and support computer security incident response team (CSIRT) activities.
+ Security engineers will also participate in network vulnerability scans, security audits or risk assessments and provide feedback to ensure compliance with corporate security policies and adherence to industry best practices.
+ This position interacts with management, lines-of-business representatives, and senior technical engineers across internal and external organizations.
+ This role participates in 24x7 global information security operations and will require shift watch standing at a Wells Fargo Information Security Operations Center site.
**Posting End Date:**
13 Aug 2025
**_*Job posting may come down early due to volume of applicants._**
**We Value Equal Opportunity**
Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic.
Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements.
Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process.
**Applicants with Disabilities**
To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo ( .
**Drug and Alcohol Policy**
Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy ( to learn more.
**Wells Fargo Recruitment and Hiring Requirements:**
a. Third-Party recordings are prohibited unless authorized by Wells Fargo.
b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.
**Req Number:** R-473983
INFORMATION SECURITY ENGINEER
Posted 1 day ago
Job Viewed
Job Description
Wells Fargo is seeking an Information Security Engineer
**In this role, you will:**
+ Participate in security consulting on small projects for internal clients to ensure uniformity with corporate information, security policy, and standards
+ Track or remediate vulnerabilities and security issues
+ Review and correlate security logs
+ Assist with the design, documentation, testing, maintenance, and troubleshooting of security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security
+ Provide technical support for security related issues
+ Utilize industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity
+ Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals
+ Interface with more experienced technologists
**Required Qualifications:**
+ 2+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
**Desired Qualifications:**
+ A bachelor's degree in information systems, Computer Science, Engineering and/or other related discipline or equivalent experience
+ 2+ years of information security experience or experience in working with information security products/platforms
+ Hands-on experience with identity synchronization, virtual directory services, and federation.
+ Platform familiarization with Microsoft Windows Servers, IIS, Critical services etc.
+ SQL experience (Basic administration and SQL query) , Familiarization with any of the following database platforms: MS SQL, Oracle, MySQL.
+ Knowledge and work experience with the Change Management process and tools
+ Experience supporting and troubleshooting of production and Ops Infra support.
+ Incident and Change Management Experience is a Must (Service Now Preferred) .
+ Handling Major Incidents and informing the stakeholders about the periodic updates with full ownership of incidents till closure.
+ **Desired Qualifications:**
+ Any security certification is a plus.
+ Fluent in scripting or querying languages utilizing SQL/ Powershell.
+ Strong understanding of LDAP protocols, schema, and directory services, **Radiant logic , Oracle Unified directory.**
+ Familiarity with identity federation and single sign-on (SSO) solutions.
+ Experience with scripting and automation tools (e.g., PowerShell, Python) is a plus.
+ Platform familiarization with Windows Servers (Must), Linux/Unix (good to have)
+ Experience in IAM tools, process, Privileged accounts, Monitoring etc.
**Job Expectations:**
+ The ideal candidate will have understanding of identity management systems, with a focus on **Radiant Logic (Must have), Oracle Unified directory** , Active Directory (AD) and LDAP technologies (Good to have))
+ This role requires hands-on experience in managing and troubleshooting identity environments, and the ability to work on complex integration projects. ( **Radiant Logic (Must have), Oracle Unified directory)**
+ Review and correlate security logs
+ Identity Management Solutions: implement and manage identity management solutions using **Radiant Logic's** platform.
+ **Radiant Logic /Oracle Unified directory (must know)** , Active Directory & LDAP Integration: Integrate and synchronize data from AD and LDAP directories into Radiant Logic's virtual directory.
+ Troubleshooting: Diagnose and resolve issues related to identity synchronization, data flow, and directory services.
+ System Configuration: Configure and optimize the Radiant Logic platform to meet customer-specific requirements.
+ Collaboration: Work closely with cross-functional teams, including IT, security, and business units, to deliver identity solutions that align with organizational goals
+ Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives
+ Create and maintain F5 UI in AppViewX /Or any other Load balancer management experience for individual applications and maintain access
**Posting End Date:**
13 Aug 2025
**_*Job posting may come down early due to volume of applicants._**
**We Value Equal Opportunity**
Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic.
Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements.
Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process.
**Applicants with Disabilities**
To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo ( .
**Drug and Alcohol Policy**
Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy ( to learn more.
**Wells Fargo Recruitment and Hiring Requirements:**
a. Third-Party recordings are prohibited unless authorized by Wells Fargo.
b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.
**Req Number:** R-476100
Information Security Manager
Posted 1 day ago
Job Viewed
Job Description
Wells Fargo is seeking an Information Security Manager
**In this role, you will:**
+ Manage and develop a team of individual contributors with low to moderate complexity and risk
+ Provide support and drive strategic initiatives for the business
+ Maintain an advanced awareness of bank security policies and government regulations pertaining to information security
+ Identify security risks and solutions for networks and virtual private network applications, security tools, public key infrastructures, authentication and directory services, and access management services
+ Address vulnerability detection, threat data, network intrusion, development, and implementation of vulnerability mitigation strategies
+ Formulate and implement information security solutions and controls
+ Make decisions and resolve issues regarding changes to information security policy, standards, and procedures as needed for systems, applications, and tools
+ Recommend compliance and risk management requirements for supported area and work with other stakeholders to implement key risk initiatives
+ Lead complex projects and initiatives impacting one or more business lines
+ Collaborate and influence all levels of professionals including more experienced managers
+ Lead team to achieve objectives
+ Manage allocation of people and financial resources for Information Security Analysis
+ Mentor and guide talent development of direct reports and assist in hiring talent
**Required Qualifications:**
+ 4+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
+ 2+ years of Leadership experience
**Desired Qualifications:**
+ Bachelor's and/or master's degree in computer science or information systems
+ Proven experience in third-party risk assessments, including evaluating IT infrastructure, applications, and security programs.
+ Strong background in incident response, threat intelligence integration, and cross-functional collaboration during security events.
+ Demonstrated ability to lead complex cybersecurity projects across multiple domains and stakeholders.
+ Experience working in regulated industries (e.g., BFSI, healthcare, tech) with knowledge of compliance frameworks (e.g., NIST, ISO 27001, GDPR, HIPAA).
+ Industry-recognized certifications such as CISSP, CISM, CRISC, CISA, or GIAC (e.g., GCIH, GCIA, GCCC).
+ Additional certifications in third-party risk management or cloud security (e.g., CCSK, CCSP, ISO 27001 Lead Auditor) are a plus.
+ Excellent stakeholder management and communication skills, with the ability to present complex security issues to non-technical audiences.
+ Experience mentoring teams, conducting training sessions, and managing onboarding processes.
+ Ability to drive alignment between business objectives and security strategies, acting as a trusted advisor to business units.
+ Ability to work with complex teams and have global experience, specifically US banks
**Job Expectations:**
This role is responsible for developing, implementing, and overseeing a function within the team and managing the daily functional activities. The role provides subject matter expertise on Information Security related projects and initiatives, prepares management reporting, and works with management to resolve issues and address any problems.
**Key Responsibilities**
+ Work and collaborate with third party service providers to assess information security risk in IT infrastructures, applications, and information security programs of varying sizes and complexities.
+ Proactively monitor and stay informed on emerging threats, vulnerabilities, and attack vectors; integrate relevant threat intelligence into incident response workflows; and collaborate with different teams on third party incidents.
+ Advocate for security initiatives within the business and ensure alignment with enterprise security strategy.
+ Provide subject matter expertise in the Third-Party information security program and provide timely solutions to identified problems
+ Analyze the data related to information security findings and present meaningful views to relevant stakeholders on the trends and patterns of control gaps.
+ Lead and manage complex cybersecurity initiatives across multiple domains, ensuring alignment with business objectives, regulatory requirements, and enterprise risk posture; oversee project planning, stakeholder engagement, resource coordination, and timely delivery of strategic security solutions.
+ Effectively manage team workload by allocating tasks, ensuring adherence to agreed timelines, and driving high-quality delivery through structured review processes; mentor team members, facilitate onboarding through new joiner training, and foster continuous development within the function.
**Posting End Date:**
14 Aug 2025
**_*Job posting may come down early due to volume of applicants._**
**We Value Equal Opportunity**
Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic.
Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements.
Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process.
**Applicants with Disabilities**
To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo ( .
**Drug and Alcohol Policy**
Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy ( to learn more.
**Wells Fargo Recruitment and Hiring Requirements:**
a. Third-Party recordings are prohibited unless authorized by Wells Fargo.
b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.
**Req Number:** R-477204