Wells Fargo

Job Category:

Technology and Risk, Technology, Information Technology, Corporate Functions

Location:

Saint Louis, Missouri

Country:

United States

Postal Code:

63101

Approximate Salary:

Not Specified

Position Type:

Full Time

Phone:

415) 820-7800

This job has expired and you can't apply for it anymore. Start a new search.

Info Security Analyst 4 - Policy Violations

Wells Fargo - Saint Louis, Missouri

Posted: 08/4/2018

Job Description

At Wells Fargo, we have one goal: to satisfy our customers’ financial needs and help them achieve their dreams. We’re looking for talented people who will put our customers at the center of everything we do. Join our diverse and inclusive team where you’ll feel valued and inspired to contribute your unique skills and experience.

Help us build a better Wells Fargo. It all begins with outstanding talent. It all begins with you.

Corporate Risk helps all Wells Fargo businesses identify and manage risk. We focus on three key risk areas: credit risk, operational risk and market risk. We help our management and Board of Directors identify and monitor risks that may affect multiple lines of business, and take appropriate action when business activities exceed the risk tolerance of the company.

Note: Charlotte, NC or Chandler, AZ is the preferred work location but will consider other core Wells Fargo locations and telecommute

The Info Security Analyst 4 (ISA4) participates in the monitoring, identification, analysis, case management and response actions of a global, complex information infrastructure supporting the business needs of one of the world’s largest financial institutions. The Analyst plays a pivotal role in proactively monitoring, investigating, and analyzing potential information security policy violations incidents. An Information Security Analyst 4 will be able to rapidly assess security information, identify false positives, and conduct correlation analysis across numerous internal and external data sources, identify information security incidents, and support cyber security incident response team (CSIRT) activities. Security Analysts may support hygiene incidents, security audits, or risk assessments and provide feedback to ensure compliance with corporate security policies and adherence to industry best practices.

This role will review security incidents to assess if they are in violations of Wells Fargo’s information security policies and escalate based on their findings. This role will also involve frequent interaction with line of business partners and information security professionals within Wells Fargo Enterprise Information Security (EIS).

Required Qualifications

  • 5+ years of information security administration experience
Desired Qualifications

  • Advanced Information Security technical skills and solid knowledge and understanding of information security practices and policies
  • Ability to manage complex issues and develop solutions
  • Excellent verbal and written communication skills
  • Knowledge and understanding of information security operations
  • 3+ years of information security experience including experience in one or more of the following security disciplines: information security monitoring, incident response, vulnerability management, host/network forensics, cyber-crime investigation, penetration testing, business continuity, or cyber threat intelligence
  • Knowledge and understanding of security configuration management including: linking security policy with security configuration
Other Desired Qualifications
  • Experience with the policy framework identified in NIST 800-53 in desired.
  • Experience proactively searching through network infrastructures to detect and mitigate possible threats that evade existing security controls
  • Demonstrated knowledge of network and security fundamentals, protocols, and technologies
  • Knowledge and understanding of cyber threat vectors, how they are used to exploit an information system and techniques and tools used by malicious actors to violate the confidentiality, integrity and availability of information systems
  • Demonstrated experience researching and analyzing policy violation escalations
  • Experience in conducting analysis of information security data from network and applications security logs and tools such as firewalls, proxies, application vulnerability scanners, network flow data, external data sources and cyber threat intelligence to identify potential compromises
  • Ability to manage complex issues and develop solutions
  • Experience in a 24 x 7 x 365 global security operations center environment
  • Knowledge and understanding of software development and network engineering
  • Penetration testing, malware analysis or forensics experience
  • Experience in cybercrime investigation or fraud identification
  • Scripting language experience (e.g., Python, Perl, JavaScript)
  • Hands-on experience as a system administrator, network administrator, or security appliance administrator (e.g., firewalls, proxies, IDS, IPS, etc.)
  • Hands-on experience with data analysis tools
  • Industry certification in Intrusion Analysis, incident handling, security operations, or malware analysis
  • Wells Fargo Line of Business Experience
Job Expectations

  • Ability to work nights, weekends, and/or holidays as needed or scheduled
  • Flexibility to work in a 24/7 environment, including weekends and holidays
  • Flexibility to address incidents as needed 24 hours a day
Disclaimer

  • All offers for employment with Wells Fargo are contingent upon the candidate having successfully completed a criminal background check. Wells Fargo will consider qualified candidates with criminal histories in a manner consistent with the requirements of applicable local, state and Federal law, including Section 19 of the Federal Deposit Insurance Act.

    Relevant military experience is considered for veterans and transitioning service men and women.
    Wells Fargo is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation.

Apply Now
This job has expired and you can't apply for it anymore