Information Security Engineer jobs at First Citizens Bank - 20 jobs

Overview This is a remote role that may be hired in several markets across the United States. Remote with ability to travel to Raleigh, North Carolina, Phoenix, Arizona or Morristown, New Jersey, on an as needed basis. This position is responsible for delivering architecture intent to enterprise stakeholders and the Information Security organization at-large, that ensures the secure realization of business initiatives in a manner consistent with the Bank's current and future risk appetite. Responsibilities * Security Strategy: assists in designing and implementing security strategies for assigned subject matter domain (e.g., Identity and Access Management, Compute) and Information Security, at-large based on knowledge of the assigned-domain; bank policies and standards; current, and anticipated, regulatory requirements; and expected threats and associated risks. * Security Architecture: review existing and proposed architectures, identify security gaps - through threat modeling and/or technical risk assessment, and recommend changes and/or enhancements. Continuously enhance process(es) to drive scale, consistency, repeatability, to this end. * Solutions Architecture: as required, function as a solutions architect for security solutions; provide the initial solutions architecture, assist with foundational integrations, and lead the initial implementation of solutions * Business Support: serve as an Information Security subject matter expert, providing advisory and consulting services to stakeholders, as required. To this end, effectively communicate to technical and nontechnical audiences alike in both oral and written form. * Continuous Education: maintains a strong knowledge of developments in information technology, developments in security technology, and emerging security threats. Utilizes knowledge to influence security strategy - e.g., identity technology capabilities needed to address threats; establish secure design patterns for emergent technologies Qualifications Bachelor's Degree and 8 years of experience in Information Technology including Information Security OR High School Diploma or GED and 12 years of experience in Information Technology including Information Security Preferred Qualifications: * 4+ years of providing architecture and/or security architecture subject matter expertise in a large-scale enterprise environment * Demonstrable experience with threat modelling (e.g., PASTA, STRIDE, DREAD) and technical risk assessment in an enterprise environment * Familiarity with one of more Industry-standard security framework - e.g., NIST RMF, NIST CSF, COBIT, ISO, CIS, CSA CCM * Familiarity with one of more Industry-standard architectural framework - e.g., TOGAF, DODAF, Zachman * Familiarity with one of more cyber-attack taxonomy (e.g., CAPEC, ATT&CK) * Advanced Security Certifications, such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) are highly desirable. * Experience with scripting and/or programming * Effective communicator, capable of effectively translating and presenting complex technical concepts to both technical and non-technical management and customers, through oral presentations and written media (white papers and demonstrations) * Exceptional interpersonal skills and a collaborative spirit that enables you to work effectively with stakeholders at all levels, agnostic of background * Strategic planning and execution, with a talent for turning complex challenges into actionable solutions. * Strong analytical skills with high attention to detail and accuracy with the ability to use data-driven metrics to communicate change and risk reduction. * Large Financial Institution (LFI) experience This job posting is expected to remain active for 14 days from the initial posting date listed above. If it is necessary to extend this deadline, the posting will remain active as appropriate. Job postings may come down early due to business need or a high volume of applicants. The base pay for this position is generally between $143,000 and $185,000. Actual starting base pay will be determined based on skills, experience, location, and other non-discriminatory factors permitted by law. For some roles, total compensation may also include variable incentives, bonuses, benefits, and/or other awards as outlined in the offer of employment. Benefits are an integral part of total rewards and First Citizens Bank is committed to providing a competitive, thoughtfully designed and quality benefits program to meet the needs of our associates. More information can be found at ****************************************

**About this role:** Wells Fargo is seeking a motivated Lead Information Security Engineer to join an exciting, fast paced team working on cutting edge encryption, tokenization and key management technologies that are leveraged to protect information companywide. This role will provide technical leadership, and be an individual contributor, to teams that design, deploy, and operationally maintain cryptographic products and services including Hardware Security Modules (HSMs) and security appliances. The ideal candidate will have demonstrated experience in the design and deployment of cryptographic products in physical, virtual, and containerized environments. The ideal candidate will also have demonstrated experience in automating processes including product builds, operational maintenance, and customer integration and onboarding. This role reports directly to the Senior Manager for the Encryption, Tokenization and Key Management team. **In this role, you will:** + Drive design, deployment and automation strategies for encryption, tokenization and key management products and services including Hardware Security Modules, security appliances and security applications deploying in physical, virtual, and containerized environments. + Provide technical guidance and oversight to teams and team members responsible for product delivery and operational maintenance. + Develop and maintain documentation including design and build guides, deployment strategies, automation guides and operational processes. + Participate in research, analysis and evaluation of new cryptographic products and services. + Participate in Proof of Concept (POC) testing and demonstrations for new cryptographic products and services. + Support company driven audits, gather evidence of compliance to company policies, and drive product enhancements, when needed, to remediate findings. + Conduct technical investigation of incidents to identify causes and recommend future mitigation strategies. + Collaborate across Wells Fargo teams, including compliance, security architecture and security evaluation teams to ensure cryptographic products are compliant to company policies. + Work with vendors to understand the technology vendor's roadmap, help to influence that roadmap, and ensure requests for technology/product enhancements are meeting the needs of Wells Fargo. + Work with partner engineering teams on identification and remediation of security vulnerabilities and may also conduct risk assessments of infrastructure to ensure compliance with corporate security policies and adherence to best practices. + Support incident response, root cause analysis and corrective action activities. + Oversee team of engineers and influence design/architecture decisions regarding encryption infrastructure to support our line of business customers. + Ensure design decisions consider blast radius and business resiliency requirements to reduce / eliminate impact during service changes or DDOS type events, among others. **Required Qualifications:** + 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education. + 4+ years of intermediate to advanced level experience with scripting/automation using tools such as: Bash, PowerShell, Python, Ansible, VBScript, or JavaScript, UI path, etc. + 4+ years of Linux and Windows server experience **Desired Qualifications:** + Experience with encryption or tokenization and key management technologies. + Advanced Knowledge of Cryptographic protocols & algorithms. + Subject Matter Expert experience designing solutions using Hardware Security Modules (HSMs) or security appliance devices + Experience with DevOps and CI/CD automated build and deployment processes. + Advanced scripting skills specifically around log rotation, data collection, error collection and alerting. + Experience designing, developing, and implementing synthetic transactions for the monitoring of applications and/or infrastructure. + Experience with Puppet/Chef/Ansible or similar automation tools. + Experience with Agile Scrum or Kanban methodologies. + Application development experience. + Experience with application support in Linux and Windows server environments. + Experience performing technical product assessments, including development of implementation plans, in a large enterprise. + Experience mentoring/guiding less experienced staff. + Strong analytical skills with high attention to detail and accuracy. + Advanced critical thinking, problem solving and technical troubleshooting abilities. + Knowledge and understanding of implementing infrastructure upgrades, security patches, or version upgrades. + Knowledge and understanding of monitoring and reporting tools. + Experience with and the ability to thrive in a complex and fast-paced technology and/or information security organization, within a large enterprise environment. + Strong verbal, written, and interpersonal communication skills. + Knowledge and understanding of implementing infrastructure upgrades, security patches, version upgrades for systems, appliances and HSM's + Proven experience with change and incident management practices in medium to large enterprise environments. + Knowledge and understanding of implementing infrastructure upgrades, security patches, version upgrades for systems, appliances and HSM's + Experience with coding/scripting against Cyber security tools and products **Job Expectations:** + Ability to travel up to 10% of the time. + Ability to work onsite in the office in a hybrid model, 3 days per week on-site/in-office and 2 days per week remote + Remote work is not available for this position + This position is not eligible for Visa Sponsorship. **Locations:** + 401 W Las Collinas Blvd. Bldg A, Irving, TX + 3075 Loyalty Cir, Columbus, OH + 1751 Pinnacle Drive, Arlington, VA + 300 South Brevard, Charlotte **Pay Range** 119,000.00 - 187,000.00 USD Annual **Benefits:** + Information about Wells Fargo's US employee benefits (*************************************************************** + Information about Wells Fargo's International employee benefits **Posting End Date:** 23 Jan 2026 ***** **_Job posting may come down early due to volume of applicants_** **Pay Range** Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to achievements, skills, experience, or work location. The range listed is just one component of the compensation package offered to candidates. $119,000.00 - $224,000.00 **Benefits** Wells Fargo provides eligible employees with a comprehensive set of benefits, many of which are listed below. Visit Benefits - Wells Fargo Jobs (*************************************************************** for an overview of the following benefit plans and programs offered to employees. + Health benefits + 401(k) Plan + Paid time off + Disability benefits + Life insurance, critical illness insurance, and accident insurance + Parental leave + Critical caregiving leave + Discounts and savings + Commuter benefits + Tuition reimbursement + Scholarships for dependent children + Adoption reimbursement **Posting End Date:** 22 Jan 2026 ***** **_Job posting may come down early due to volume of applicants._** **We Value Equal Opportunity** Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. **Applicants with Disabilities** To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo (****************************************************************** . **Drug and Alcohol Policy** Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy (********************************************************************** to learn more. **Wells Fargo Recruitment and Hiring Requirements:** a. Third-Party recordings are prohibited unless authorized by Wells Fargo. b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process. **Req Number:** R-513380

About this role: Wells Fargo is seeking a motivated Lead Information Security Engineer to join an exciting, fast paced team working on cutting edge encryption, tokenization and key management technologies that are leveraged to protect information companywide. This role will provide technical leadership, and be an individual contributor, to teams that design, deploy, and operationally maintain cryptographic products and services including Hardware Security Modules (HSMs) and security appliances. The ideal candidate will have demonstrated experience in the design and deployment of cryptographic products in physical, virtual, and containerized environments. The ideal candidate will also have demonstrated experience in automating processes including product builds, operational maintenance, and customer integration and onboarding. This role reports directly to the Senior Manager for the Encryption, Tokenization and Key Management team. In this role, you will: * Drive design, deployment and automation strategies for encryption, tokenization and key management products and services including Hardware Security Modules, security appliances and security applications deploying in physical, virtual, and containerized environments. * Provide technical guidance and oversight to teams and team members responsible for product delivery and operational maintenance. * Develop and maintain documentation including design and build guides, deployment strategies, automation guides and operational processes. * Participate in research, analysis and evaluation of new cryptographic products and services. * Participate in Proof of Concept (POC) testing and demonstrations for new cryptographic products and services. * Support company driven audits, gather evidence of compliance to company policies, and drive product enhancements, when needed, to remediate findings. * Conduct technical investigation of incidents to identify causes and recommend future mitigation strategies. * Collaborate across Wells Fargo teams, including compliance, security architecture and security evaluation teams to ensure cryptographic products are compliant to company policies. * Work with vendors to understand the technology vendor's roadmap, help to influence that roadmap, and ensure requests for technology/product enhancements are meeting the needs of Wells Fargo. * Work with partner engineering teams on identification and remediation of security vulnerabilities and may also conduct risk assessments of infrastructure to ensure compliance with corporate security policies and adherence to best practices. * Support incident response, root cause analysis and corrective action activities. * Oversee team of engineers and influence design/architecture decisions regarding encryption infrastructure to support our line of business customers. * Ensure design decisions consider blast radius and business resiliency requirements to reduce / eliminate impact during service changes or DDOS type events, among others. Required Qualifications: * 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education. * 4+ years of intermediate to advanced level experience with scripting/automation using tools such as: Bash, PowerShell, Python, Ansible, VBScript, or JavaScript, UI path, etc. * 4+ years of Linux and Windows server experience Desired Qualifications: * Experience with encryption or tokenization and key management technologies. * Advanced Knowledge of Cryptographic protocols & algorithms. * Subject Matter Expert experience designing solutions using Hardware Security Modules (HSMs) or security appliance devices * Experience with DevOps and CI/CD automated build and deployment processes. * Advanced scripting skills specifically around log rotation, data collection, error collection and alerting. * Experience designing, developing, and implementing synthetic transactions for the monitoring of applications and/or infrastructure. * Experience with Puppet/Chef/Ansible or similar automation tools. * Experience with Agile Scrum or Kanban methodologies. * Application development experience. * Experience with application support in Linux and Windows server environments. * Experience performing technical product assessments, including development of implementation plans, in a large enterprise. * Experience mentoring/guiding less experienced staff. * Strong analytical skills with high attention to detail and accuracy. * Advanced critical thinking, problem solving and technical troubleshooting abilities. * Knowledge and understanding of implementing infrastructure upgrades, security patches, or version upgrades. * Knowledge and understanding of monitoring and reporting tools. * Experience with and the ability to thrive in a complex and fast-paced technology and/or information security organization, within a large enterprise environment. * Strong verbal, written, and interpersonal communication skills. * Knowledge and understanding of implementing infrastructure upgrades, security patches, version upgrades for systems, appliances and HSM's * Proven experience with change and incident management practices in medium to large enterprise environments. * Knowledge and understanding of implementing infrastructure upgrades, security patches, version upgrades for systems, appliances and HSM's * Experience with coding/scripting against Cyber security tools and products Job Expectations: * Ability to travel up to 10% of the time. * Ability to work onsite in the office in a hybrid model, 3 days per week on-site/in-office and 2 days per week remote * Remote work is not available for this position * This position is not eligible for Visa Sponsorship. Locations: * 401 W Las Collinas Blvd. Bldg A, Irving, TX * 3075 Loyalty Cir, Columbus, OH * 1751 Pinnacle Drive, Arlington, VA * 300 South Brevard, Charlotte Pay Range 119,000.00 - 187,000.00 USD Annual Benefits: * Information about Wells Fargo's US employee benefits * Information about Wells Fargo's International employee benefits Posting End Date: 23 Jan 2026 * Job posting may come down early due to volume of applicants Pay Range Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to achievements, skills, experience, or work location. The range listed is just one component of the compensation package offered to candidates. $119,000.00 - $224,000.00 Benefits Wells Fargo provides eligible employees with a comprehensive set of benefits, many of which are listed below. Visit Benefits - Wells Fargo Jobs for an overview of the following benefit plans and programs offered to employees. * Health benefits * 401(k) Plan * Paid time off * Disability benefits * Life insurance, critical illness insurance, and accident insurance * Parental leave * Critical caregiving leave * Discounts and savings * Commuter benefits * Tuition reimbursement * Scholarships for dependent children * Adoption reimbursement Posting End Date: 22 Jan 2026 * Job posting may come down early due to volume of applicants. We Value Equal Opportunity Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. Applicants with Disabilities To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo. Drug and Alcohol Policy Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more. Wells Fargo Recruitment and Hiring Requirements: a. Third-Party recordings are prohibited unless authorized by Wells Fargo. b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

About this role: Wells Fargo is seeking an Information Security Engineer in Technology as part of Cybersecurity. Learn more about the career areas and lines of business at wellsfargojobs.com. Wells Fargo is seeking a Senior Information Security Engineer to support the Cyber Threat Fusion Center. In this role, you will: Provide information security consultation to improve awareness and compliance with Enterprise Information Security policy, processes and standards Perform remediation of security assessment review issues, complex ad hoc data, and reporting to support information security risk management Provide guidance and direction in reviewing assessment findings and mitigating controls to optimize information security Identify and direct information asset portfolio reconciliations and certifications Provide advanced data aggregation and data of information security risk exposure Develop and deliver Information Security Education Awareness and Training in accordance with the Enterprise Information Security Program standards Review draft and proposed control standards for business impact and recommend modifications or clarifications as required Conduct security control testing and consultation with stakeholders Evaluate and interpret internal and Enterprise Information Security policies, processes and standards, and provide recommendations to improve them Collaborate and consult with peers, colleagues, and managers to resolve issues and achieve goals Interact with internal customers Serve as a mentor to less experienced staff Required Qualifications: 2+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education 1+ years of Incident Response Protocols and Tools experience 1+ years experience with Security Information and Event Management (SIEM) and Security Orchestration, Automation and Response (SOAR) products(s) 1+ years of Azure, Office 365 or Cloud technologies Required Qualifications for Europe, Middle East & Africa only: Experience in Information Security Engineering, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education Desired Qualifications: 2+ years experience with Endpoint Detection and Response(EDR)product(s) Knowledge and understanding of security analytics including: incident response and a digital forensics discipline Knowledge and understanding of data security controls including malware protection, firewalls, intrusion detection systems, content filtering, Internet proxies, encryption controls, endpoint detection response, and log management solutions Knowledge and understanding of banking or financial services industry Experience with host and/or network log analysis as applied to incident response / threat hunting Knowledge of offensive security, with the ability to think like an adversary when hunting and responding to incidents Knowledge and understanding of security analytics including: incident response and Identity Access Management Certifications in one or more of the following: Global Information Assurance Certification (GIAC), Offensive Security Certified Professional (OSCP), Offensive Security Wireless Professional (OSWP), Offensive Security Certified Expert (OSCE), Offensive Security Exploitation Expert (OSEE), or Offensive Security Web Expert (OSWE) Cloud Certifications such as GCP, AWS Experience in a 24 x 7 x 365 global security operations center environment Job Expectations: Ability to work nights, weekends, and/or holidays as needed or scheduled Flexibility to work in a 24/7 environment, including weekends and holidays Hybrid work schedule 3 days in office required weekly Posting End Date: 22 Jan 2026 *Job posting may come down early due to volume of applicants. We Value Equal Opportunity Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process. Applicants with Disabilities To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo. Drug and Alcohol Policy Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more. Wells Fargo Recruitment and Hiring Requirements: a. Third-Party recordings are prohibited unless authorized by Wells Fargo. b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

At Wells Fargo, we are looking for talented individuals who put our customers at the center of everything we do. Help us build a better Wells Fargo. It all begins with outstanding talent. It all begins with you. Learn more about the career areas and lines of business at wellsfargojobs.com . **About this role:** We are seeking a **Lead Information Security Engineer - Network Security** to join the **Cyber Security Innovation and Transformation team** . In this role, you will lead the evolution of Wells Fargo's network security ecosystem, driving innovation, automation, and resilience across on-premises and cloud environments. **Key Responsibilities** + **Strategy & Roadmap:** Contribute to defining a multi-year strategy for network security systems. + **Architecture:** Design and enhance the network security stack, selecting scalable tools and technologies for on-prem, cloud, and branch environments. + **Delivery Leadership:** Oversee implementation of strategic initiatives to strengthen the bank's resilience against emerging threats. + **Cross-Functional Collaboration:** Partner with NetOps, SRE, SecOps, Cloud teams, and Lines of Business to translate requirements into architecture and measurable outcomes. + **Blueprints & Standards:** Develop and maintain security blueprints and enterprise standards. + **Enterprise Impact:** + Resolve complex challenges requiring deep evaluation across multiple domains. + Translate strategic business objectives into engineering solutions aligned with the enterprise technology landscape. + Provide vision and technical direction for innovative, large-scale solutions. + **Operational Excellence:** + Optimize processes and drive automation. + Identify inefficiencies and champion continuous improvement. + **Leadership & Mentorship:** + Align stakeholders through clear technical communication. + Mentor teams and deliver knowledge transfers to upskill SMEs. + Present technical concepts to senior leaders. **Required Qualifications** + 5+ years of engineering experience, or equivalent demonstrated through work experience, training, military service, or education. + 5+ years of network security engineering experience **Desired Qualifications** + 5+ years of network security design experience. + 3+ years working in a large enterprise network environment. + 2+ years designing network security components in public cloud. + Advanced knowledge of Zero Trust principles and technologies, with the ability to align business requirements to security solutions. + Experience with one or more Zero Trust Network Access (ZTNA) solutions from leading vendors. + Experience with Internet proxy solutions and firewall platforms from major vendors. + Familiarity with network segmentation solutions (e.g., Illumio). + Experience with remote access solutions. + Strong understanding of end-to-end network architecture and protocols. + Excellent verbal, written, and presentation skills, including technical writing for design and architecture. + Ability to research, design, implement, and test industry best practices. + Ability to define business requirements and align them with technology direction. + Ability to translate complex technical needs into clear, actionable requests for collaboration. + Proven leadership skills, including the ability to train and mentor others and present technical concepts to senior leaders. **Job Expectations** + Ability to travel up to 20% of the time + Work from the office in a hybrid environment This position is not available for Visa Sponsorship. **Posting End Date:** 19 Jan 2026 **_*Job posting may come down early due to volume of applicants._** **We Value Equal Opportunity** Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process. **Applicants with Disabilities** To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo (****************************************************************** . **Drug and Alcohol Policy** Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy (********************************************************************** to learn more. **Wells Fargo Recruitment and Hiring Requirements:** a. Third-Party recordings are prohibited unless authorized by Wells Fargo. b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process. **Req Number:** R-510143

**About this role:** Wells Fargo is seeking a Senior Information Security Engineer on Advanced Research Engineering (ARE). Advanced Research Engineering accelerates cyber research and response by delivering secure, tailored environments that remove operational barriers and foster innovation. As a Senior Information Security Engineer on ARE, you will be a hands‑on builder and operator of these environments-designing, automating, and sustaining resilient research platforms that enable rapid proof‑of‑concept (POC) development and high‑fidelity experimentation, while upholding strong OPSEC guardrails and governance. Your work directly strengthens the enterprise's security posture against evolving threats by turning ideas into tested capabilities in hours, not weeks, and by partnering across Cyber Threat Management (CTM) and adjacent teams to push innovation into repeatable, supportable service offerings. **In this role, you will:** + Provide Advanced Solution Support, tooling Development and Automation, and Commercial Tool Support to enable cyber security. + Lead or participate in computer security incident response activities for moderately complex events + Provide security consulting on medium projects for internal clients to ensure conformity with corporate information, security policy, and standards + Design, document, test, maintain, and provide issue resolution recommendations for moderately complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security + Review and correlate security logs + Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity + Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals **Required Qualifications:** + 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education **Desired Qualifications:** + Automation & Infrastructure as Code (IaC): Proficiency with Ansible, Terraform, and related automation frameworks to build repeatable, scalable, and secure environments. + Containerization & Orchestration: Hands‑on experience deploying and operating containerized workloads (e.g., Docker, Kubernetes, or enterprise container platforms) in secure, large‑scale environments. + Cloud Platforms: Experience engineering and operating research or security workloads across cloud environments (public, private, or hybrid). + CI/CD: Working knowledge of GitHub‑based source control, pipelines, and automated build/deployment workflows. + Observability, Data, & Analytics: Familiarity with Elasticsearch, Kibana, and Grafana for telemetry, monitoring, troubleshooting, and analytics use cases. + Scripting & Tooling: Proficiency in Python or similar scripting languages to automate tasks, build utilities, and integrate systems. **Job Expectations:** + This position offers a hybrid work schedule + This position is not eligible for Visa sponsorship + Possible up to 10% travel **Locations:** + 1525 WT Harris Blvd, Charlotte, North Carolina 28262 + 401 Las Colinas Blvd W Bldg A, Irving, TX75039 + 2600 S Price Rd, Chandler, Arizona 85286 + 1100 Corporate Center Dr, Raleigh, NC 27607 **Posting End Date:** 29 Jan 2026 **_*Job posting may come down early due to volume of applicants._** **We Value Equal Opportunity** Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process. **Applicants with Disabilities** To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo (****************************************************************** . **Drug and Alcohol Policy** Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy (********************************************************************** to learn more. **Wells Fargo Recruitment and Hiring Requirements:** a. Third-Party recordings are prohibited unless authorized by Wells Fargo. b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process. **Req Number:** R-514103

About this role: Wells Fargo is seeking a Senior Information Security Engineer on Advanced Research Engineering (ARE). Advanced Research Engineering accelerates cyber research and response by delivering secure, tailored environments that remove operational barriers and foster innovation. As a Senior Information Security Engineer on ARE, you will be a hands‑on builder and operator of these environments-designing, automating, and sustaining resilient research platforms that enable rapid proof‑of‑concept (POC) development and high‑fidelity experimentation, while upholding strong OPSEC guardrails and governance. Your work directly strengthens the enterprise's security posture against evolving threats by turning ideas into tested capabilities in hours, not weeks, and by partnering across Cyber Threat Management (CTM) and adjacent teams to push innovation into repeatable, supportable service offerings. In this role, you will: * Provide Advanced Solution Support, tooling Development and Automation, and Commercial Tool Support to enable cyber security. * Lead or participate in computer security incident response activities for moderately complex events * Provide security consulting on medium projects for internal clients to ensure conformity with corporate information, security policy, and standards * Design, document, test, maintain, and provide issue resolution recommendations for moderately complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security * Review and correlate security logs * Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity * Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals Required Qualifications: * 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education Desired Qualifications: * Automation & Infrastructure as Code (IaC): Proficiency with Ansible, Terraform, and related automation frameworks to build repeatable, scalable, and secure environments. * Containerization & Orchestration: Hands‑on experience deploying and operating containerized workloads (e.g., Docker, Kubernetes, or enterprise container platforms) in secure, large‑scale environments. * Cloud Platforms: Experience engineering and operating research or security workloads across cloud environments (public, private, or hybrid). * CI/CD: Working knowledge of GitHub‑based source control, pipelines, and automated build/deployment workflows. * Observability, Data, & Analytics: Familiarity with Elasticsearch, Kibana, and Grafana for telemetry, monitoring, troubleshooting, and analytics use cases. * Scripting & Tooling: Proficiency in Python or similar scripting languages to automate tasks, build utilities, and integrate systems. Job Expectations: * This position offers a hybrid work schedule * This position is not eligible for Visa sponsorship * Possible up to 10% travel Locations: * 1525 WT Harris Blvd, Charlotte, North Carolina 28262 * 401 Las Colinas Blvd W Bldg A, Irving, TX 75039 * 2600 S Price Rd, Chandler, Arizona 85286 * 1100 Corporate Center Dr, Raleigh, NC 27607 Posting End Date: 29 Jan 2026 * Job posting may come down early due to volume of applicants. We Value Equal Opportunity Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process. Applicants with Disabilities To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo. Drug and Alcohol Policy Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more. Wells Fargo Recruitment and Hiring Requirements: a. Third-Party recordings are prohibited unless authorized by Wells Fargo. b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

**About this role:** Wells Fargo is seeking an Information Security Engineering Manager. The Engineering Manager will lead a team of developers responsible for securing, modernizing, and evolving enterprise applications. This role oversees vulnerability management and application hardening efforts while driving the adoption of DevSecOps, automation, and standardized engineering practices. The manager will guide the team through modernization and transformation initiative, including refactoring legacy components, improving architecture, and preparing the platform for future cloud readiness. **In this role, you will:** + Provide strategic and forward‑thinking leadership to define engineering direction, technology roadmaps, and long‑term platform evolution + Lead the team in managing vulnerabilities, applying secure coding practices, and implementing application hardening to protect critical systems + Drive modernization efforts by transforming applications through refactoring, re‑architecting, and adoption of modern engineering practices + Guide the team through DevSecOps, automation, and standardized delivery processes to improve reliability, security, and speed of delivery + Collaborate effectively across security, architecture, and product teams to deliver scalable, resilient, and compliant solutions aligned with organizational goals + Manage a team of engineers that design, document, test, maintain and provide issue resolution recommendations for highly complex security solutions related to networking, cryptography, cloud, authentication or directory services, email, internet, applications or endpoint security + Manage security consulting on large projects for internal clients to ensure conformity with corporate information security policy, and standards + Possess subject matter expertise at a mastery level in current and emerging security solutions and best practices + Conduct technical investigation of security-related incidents, and conduct post-incident digital forensics to identify causes and recommend future mitigation strategies + Manage implementation of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity + Work with more experienced technologists and team + Interface with more experienced management + Manage allocation of people and financial resources for Information Security Architecture + Mentor and guide talent development of direct reports and assist in hiring talent **Required Qualifications:** + 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education + 2+ years of Leadership experience **Desired Qualifications:** + Experience managing and developing high‑performing Agile teams of software engineers and platform developers + Strong knowledge of DevSecOps practices including secure CI/CD pipelines, automated testing, and integrated security controls + Hands‑on understanding of Kubernetes operations, container orchestration concepts, and cloud‑native deployment patterns + Proficiency with cloud‑based application architectures and modern cloud engineering practices + Ability to drive engineering excellence through automation, observability, and standardized delivery processes + Proven collaboration skills with security, architecture, and product teams to ensure resilient, compliant, and scalable solutions + Demonstrated leadership in **platform engineering** to build and operate developer platforms, pipelines, and self‑service tooling + Experience leading **application modernization** of home‑grown/legacy systems, including refactoring, re‑architecting, and reducing technical debt + Track record of **transformation leadership** and "clean‑sheet" solution design to establish new engineering patterns and operating models + Expertise in **CI/CD engineering and automation** across on‑prem and cloud environments, including policy‑as‑code and secrets management + Ability to develop a **cloud readiness** roadmap and guide teams through staged migration or hybrid adoption while maintaining uptime and compliance **Job Expectations:** + Ability to work on-site in one of the listed locations in a hybrid environment + This position is not available for visa sponsorship **Pay Range** Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to achievements, skills, experience, or work location. The range listed is just one component of the compensation package offered to candidates. $119,000.00 - $187,000.00 **Benefits** Wells Fargo provides eligible employees with a comprehensive set of benefits, many of which are listed below. Visit Benefits - Wells Fargo Jobs (*************************************************************** for an overview of the following benefit plans and programs offered to employees. + Health benefits + 401(k) Plan + Paid time off + Disability benefits + Life insurance, critical illness insurance, and accident insurance + Parental leave + Critical caregiving leave + Discounts and savings + Commuter benefits + Tuition reimbursement + Scholarships for dependent children + Adoption reimbursement **Posting End Date:** 23 Jan 2026 ***** **_Job posting may come down early due to volume of applicants._** **We Value Equal Opportunity** Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. **Applicants with Disabilities** To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo (****************************************************************** . **Drug and Alcohol Policy** Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy (********************************************************************** to learn more. **Wells Fargo Recruitment and Hiring Requirements:** a. Third-Party recordings are prohibited unless authorized by Wells Fargo. b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process. **Req Number:** R-515850

About this role: Wells Fargo is seeking an Information Security Engineering Manager. The Engineering Manager will lead a team of developers responsible for securing, modernizing, and evolving enterprise applications. This role oversees vulnerability management and application hardening efforts while driving the adoption of DevSecOps, automation, and standardized engineering practices. The manager will guide the team through modernization and transformation initiative, including refactoring legacy components, improving architecture, and preparing the platform for future cloud readiness. In this role, you will: * Provide strategic and forward‑thinking leadership to define engineering direction, technology roadmaps, and long‑term platform evolution * Lead the team in managing vulnerabilities, applying secure coding practices, and implementing application hardening to protect critical systems * Drive modernization efforts by transforming applications through refactoring, re‑architecting, and adoption of modern engineering practices * Guide the team through DevSecOps, automation, and standardized delivery processes to improve reliability, security, and speed of delivery * Collaborate effectively across security, architecture, and product teams to deliver scalable, resilient, and compliant solutions aligned with organizational goals * Manage a team of engineers that design, document, test, maintain and provide issue resolution recommendations for highly complex security solutions related to networking, cryptography, cloud, authentication or directory services, email, internet, applications or endpoint security * Manage security consulting on large projects for internal clients to ensure conformity with corporate information security policy, and standards * Possess subject matter expertise at a mastery level in current and emerging security solutions and best practices * Conduct technical investigation of security-related incidents, and conduct post-incident digital forensics to identify causes and recommend future mitigation strategies * Manage implementation of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity * Work with more experienced technologists and team * Interface with more experienced management * Manage allocation of people and financial resources for Information Security Architecture * Mentor and guide talent development of direct reports and assist in hiring talent Required Qualifications: * 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education * 2+ years of Leadership experience Desired Qualifications: * Experience managing and developing high‑performing Agile teams of software engineers and platform developers * Strong knowledge of DevSecOps practices including secure CI/CD pipelines, automated testing, and integrated security controls * Hands‑on understanding of Kubernetes operations, container orchestration concepts, and cloud‑native deployment patterns * Proficiency with cloud‑based application architectures and modern cloud engineering practices * Ability to drive engineering excellence through automation, observability, and standardized delivery processes * Proven collaboration skills with security, architecture, and product teams to ensure resilient, compliant, and scalable solutions * Demonstrated leadership in platform engineering to build and operate developer platforms, pipelines, and self‑service tooling * Experience leading application modernization of home‑grown/legacy systems, including refactoring, re‑architecting, and reducing technical debt * Track record of transformation leadership and "clean‑sheet" solution design to establish new engineering patterns and operating models * Expertise in CI/CD engineering and automation across on‑prem and cloud environments, including policy‑as‑code and secrets management * Ability to develop a cloud readiness roadmap and guide teams through staged migration or hybrid adoption while maintaining uptime and compliance Job Expectations: * Ability to work on-site in one of the listed locations in a hybrid environment * This position is not available for visa sponsorship Pay Range Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to achievements, skills, experience, or work location. The range listed is just one component of the compensation package offered to candidates. $119,000.00 - $187,000.00 Benefits Wells Fargo provides eligible employees with a comprehensive set of benefits, many of which are listed below. Visit Benefits - Wells Fargo Jobs for an overview of the following benefit plans and programs offered to employees. * Health benefits * 401(k) Plan * Paid time off * Disability benefits * Life insurance, critical illness insurance, and accident insurance * Parental leave * Critical caregiving leave * Discounts and savings * Commuter benefits * Tuition reimbursement * Scholarships for dependent children * Adoption reimbursement Posting End Date: 23 Jan 2026 * Job posting may come down early due to volume of applicants. We Value Equal Opportunity Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. Applicants with Disabilities To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo. Drug and Alcohol Policy Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more. Wells Fargo Recruitment and Hiring Requirements: a. Third-Party recordings are prohibited unless authorized by Wells Fargo. b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

About this role: Wells Fargo is seeking a Lead Information Security Analyst to join a dynamic team dedicated to safeguarding our customers and the company's most critical assets. In this pivotal role, you will provide technical leadership in Cybersecurity Governance, Risk, and Compliance while driving projects and mentoring team members to achieve exceptional results. You're the kind of person who can lead, is coachable and enjoys partnering with others to complete projects. The position requires deep expertise in policy compliance and vulnerability management, with a strong focus on cryptography, encryption key lifecycle management, and digital certificate governance. The ideal candidate will have demonstrated experience in designing and implementing policy compliance or vulnerability management programs and leading initiatives or teams to successful completion. Most of all we need a person who can manage cyber projects, has keen organizational skills and is highly collaborative. This is a hybrid role at Wells Fargo. There is no Visa sponsorship or Visa Transfers. The position is seated in the location posted on the requisition. In this role, you will: * Provide advanced information security consultation for policy compliance, risk management, security controls and remediation monitoring * Lead projects and coordinate team efforts to ensure timely delivery of security initiatives * Direct information security risk assessment and research, and recommend remediation plans and strategies * Perform Governance, Risk, and Compliance activities to identify and prioritize key risk areas, monitor remediation, and escalate critical risks to senior management * Conduct user engagement on vulnerabilities and identified areas of policy non-adherence, report and advise on moderately complex remediation or mitigation plans * Design, document, test, maintain, and provide issue resolution recommendations for moderately complex security solutions related to networking, cryptography, encryption keys and digital certificates * Review and correlate technical data such as vulnerability or endpoint scanning reports (e.g., Qualys, Tanium), key and certificate management reports, and security logs * Analyze identified vulnerabilities, assess their potential impact, and prioritize remediation efforts based on risk levels * Develop and maintain security policies and procedures related to information protection, encryption, and certificate management * Create detailed process documentation and governance artifacts for security controls, metrics, and escalation routines Required Qualifications: * 5+ years of Information Security experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education * 4+ years in a vulnerability management or governance, risk and compliance role, identifying and prioritizing areas of policy non-adherence, report development, remediation monitoring and escalation to senior management * Strong experience with vulnerability or endpoint scanning tools (e.g., Qualys, Tanium) * Solid understanding of cryptography, encryption key management, and digital certificate lifecycle * Proven ability to lead projects and/or teams, including planning, coordination, and delivery Desired Qualifications: * IT Security certification (CISSP, CRISC, GIAC, Cloud, etc) * Demonstrated expertise of Governance, Risk and Compliance principles for monitoring adherence to Information Security policies * Experience with or strong conceptual understanding of data protection principles, frameworks and technologies * Knowledge of Cloud service providers such as Amazon Web Services (AWS), Google Cloud Platform (GCP) or MS Azure * Documentation skills including design diagrams, process flows, security controls and evidence archival * Proven ability to plan, manage, and deliver complex projects or security initiatives, including defining scope, setting timelines, coordinating resources, and ensuring successful outcomes * Knowledge of financial institution security procedures and data protection principles * Experience with Agile methodology and product delivery * Ability to communicate confidently and professionally * Ability to negotiate, influence, and collaborate to build successful relationships * Strong time management skills including the ability to handle multiple deliverables concurrently * Ability to influence across all organizational levels Job Expectations: * Work independently and lead governance routines on a regular cadence * Identify security vulnerabilities, perform product mapping, conduct trend analysis, perform risk assessments, and evaluate remediation alternatives * Engage with stakeholders to monitor remediation and escalate critical risks * Prepare executive ready * Develop and maintain documentation for security controls and metrics, governance routines, escalation events, and consequence model * Drive continuous improvement in policy adherence monitoring, vulnerability management and cryptographic security processes Posting End Date: 1 Feb 2026 * Job posting may come down early due to volume of applicants. We Value Equal Opportunity Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process. Applicants with Disabilities To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo. Drug and Alcohol Policy Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more. Wells Fargo Recruitment and Hiring Requirements: a. Third-Party recordings are prohibited unless authorized by Wells Fargo. b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

**About this role:** Wells Fargo is seeking a Senior Information Security Engineer on Advanced Research Engineering (ARE). Advanced Research Engineering accelerates cyber research and response by delivering secure, tailored environments that remove operational barriers and foster innovation. As a Senior Information Security Engineer on ARE, you will be a hands‑on builder and operator of these environments-designing, automating, and sustaining resilient research platforms that enable rapid proof‑of‑concept (POC) development and high‑fidelity experimentation, while upholding strong OPSEC guardrails and governance. Your work directly strengthens the enterprise's security posture against evolving threats by turning ideas into tested capabilities in hours, not weeks, and by partnering across Cyber Threat Management (CTM) and adjacent teams to push innovation into repeatable, supportable service offerings. **In this role, you will:** + Provide Advanced Solution Support, tooling Development and Automation, and Commercial Tool Support to enable cyber security. + Lead or participate in computer security incident response activities for moderately complex events + Provide security consulting on medium projects for internal clients to ensure conformity with corporate information, security policy, and standards + Design, document, test, maintain, and provide issue resolution recommendations for moderately complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security + Review and correlate security logs + Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity + Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals **Required Qualifications:** + 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education **Desired Qualifications:** + Automation & Infrastructure as Code (IaC): Proficiency with Ansible, Terraform, and related automation frameworks to build repeatable, scalable, and secure environments. + Containerization & Orchestration: Hands‑on experience deploying and operating containerized workloads (e.g., Docker, Kubernetes, or enterprise container platforms) in secure, large‑scale environments. + Cloud Platforms: Experience engineering and operating research or security workloads across cloud environments (public, private, or hybrid). + CI/CD: Working knowledge of GitHub‑based source control, pipelines, and automated build/deployment workflows. + Observability, Data, & Analytics: Familiarity with Elasticsearch, Kibana, and Grafana for telemetry, monitoring, troubleshooting, and analytics use cases. + Scripting & Tooling: Proficiency in Python or similar scripting languages to automate tasks, build utilities, and integrate systems. **Job Expectations:** + This position offers a hybrid work schedule + This position is not eligible for Visa sponsorship + Possible up to 10% travel **Locations:** + 1525 WT Harris Blvd, Charlotte, North Carolina 28262 + 401 Las Colinas Blvd W Bldg A, Irving, TX75039 + 2600 S Price Rd, Chandler, Arizona 85286 + 1100 Corporate Center Dr, Raleigh, NC 27607 **Posting End Date:** 29 Jan 2026 **_*Job posting may come down early due to volume of applicants._** **We Value Equal Opportunity** Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process. **Applicants with Disabilities** To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo (****************************************************************** . **Drug and Alcohol Policy** Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy (********************************************************************** to learn more. **Wells Fargo Recruitment and Hiring Requirements:** a. Third-Party recordings are prohibited unless authorized by Wells Fargo. b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process. **Req Number:** R-514103

About this role: Wells Fargo is seeking a Senior Information Security Engineer on Advanced Research Engineering (ARE). Advanced Research Engineering accelerates cyber research and response by delivering secure, tailored environments that remove operational barriers and foster innovation. As a Senior Information Security Engineer on ARE, you will be a hands‑on builder and operator of these environments-designing, automating, and sustaining resilient research platforms that enable rapid proof‑of‑concept (POC) development and high‑fidelity experimentation, while upholding strong OPSEC guardrails and governance. Your work directly strengthens the enterprise's security posture against evolving threats by turning ideas into tested capabilities in hours, not weeks, and by partnering across Cyber Threat Management (CTM) and adjacent teams to push innovation into repeatable, supportable service offerings. In this role, you will: * Provide Advanced Solution Support, tooling Development and Automation, and Commercial Tool Support to enable cyber security. * Lead or participate in computer security incident response activities for moderately complex events * Provide security consulting on medium projects for internal clients to ensure conformity with corporate information, security policy, and standards * Design, document, test, maintain, and provide issue resolution recommendations for moderately complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security * Review and correlate security logs * Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity * Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals Required Qualifications: * 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education Desired Qualifications: * Automation & Infrastructure as Code (IaC): Proficiency with Ansible, Terraform, and related automation frameworks to build repeatable, scalable, and secure environments. * Containerization & Orchestration: Hands‑on experience deploying and operating containerized workloads (e.g., Docker, Kubernetes, or enterprise container platforms) in secure, large‑scale environments. * Cloud Platforms: Experience engineering and operating research or security workloads across cloud environments (public, private, or hybrid). * CI/CD: Working knowledge of GitHub‑based source control, pipelines, and automated build/deployment workflows. * Observability, Data, & Analytics: Familiarity with Elasticsearch, Kibana, and Grafana for telemetry, monitoring, troubleshooting, and analytics use cases. * Scripting & Tooling: Proficiency in Python or similar scripting languages to automate tasks, build utilities, and integrate systems. Job Expectations: * This position offers a hybrid work schedule * This position is not eligible for Visa sponsorship * Possible up to 10% travel Locations: * 1525 WT Harris Blvd, Charlotte, North Carolina 28262 * 401 Las Colinas Blvd W Bldg A, Irving, TX 75039 * 2600 S Price Rd, Chandler, Arizona 85286 * 1100 Corporate Center Dr, Raleigh, NC 27607 Posting End Date: 29 Jan 2026 * Job posting may come down early due to volume of applicants. We Value Equal Opportunity Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process. Applicants with Disabilities To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo. Drug and Alcohol Policy Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more. Wells Fargo Recruitment and Hiring Requirements: a. Third-Party recordings are prohibited unless authorized by Wells Fargo. b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day. Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve. Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us! Responsibilities: The Secured Lending Revenue Horizontal Products Reporting, Analysis & Forecasting Team is part of the Regional Banking and Wealth Management (RB & WM) CFO organization. The primary purpose of the team is to provide finance support for Consumer and GWIM Secured lending products (Mortgage, Home Equity, Vehicle Lending and Wealth Management Structured Lending). The team provides reporting, forecasting and stress testing, analytics (business cases, product profitability, analytics, etc.) and business partnering support. The overall team engages with other CFO teams and multiple partners groups. Partners include Line of Business (LOB) / Business Financial Officer (BFO) / Controllers / Enterprise Stress Testing teams / Treasury teams, among many others. The Forecast tower team owns several processes and is responsible for the models and production for each product baseline forecast and stress testing scenarios. This position's responsibility includes revenue forecasting for baseline, stress testing, and month-end deliverables for First Mortgage Originations and Portfolio Forecasting. The individual will help drive operational excellence on the Forecast team. The individual will assist in model development, re-engineering and methodology improvement. The candidate will be required to work closely with Treasury, Product & Pricing, Model Risk and other partners to successfully deliver on work product. Throughout the tenure of the role the individual can expect to gain great knowledge, exposure and acumen to the Secured businesses, but will also gain exposure to all Consumer and GWIM products supported by the broader team. Generally, the work routine occurs along the corporate timeline, with ad hoc projects in between. Required Qualifications: Minimum of 5+ years of financial analysis experience Excel and Data mining /manipulation experience Familiarity with building models Strong organizational skills and be able to work independently. Able to work in a fast paced, deadline driven environment. Desired Qualifications: Familiarity with eLedger, Essbase, Emerging technologies such as Alteryx, and ForecastConnect Quantitative / statistical skills Demonstrate intellectual curiosity and be able to communicate effectively in a matrix organization. Bachelor's degree Skills: Attention to Detail Business Process Analysis Collaboration Data Quality Management Reporting Data Visualization Financial Analysis Financial Forecasting and Modeling Financial Processing Prioritization Analytical Thinking Business Acumen Business Case Analysis Critical Thinking Decision Making Shift: 1st shift (United States of America) Hours Per Week: 40 Pay Transparency details US - NJ - Pennington - 1400 American Blvd - Princeton Place At Hopewell Bldg. 4 (NJ2140) Pay and benefits information Pay range$60,100.00 - $120,000.00 annualized salary, offers to be determined based on experience, education and skill set.Discretionary incentive eligible This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.BenefitsThis role is currently benefits eligible. We provide industry-leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.

This position supports the Bank's Information Security and Cyber Threat management programs at the highest level of complexity and expertise. Leads the analysis and mitigation of threats identified within the Bank's networks and systems. Ensures that team reporting is timely, accurate, and escalated as necessary to provide actionable intelligence for cyber defense efforts. Develops process improvements and technical solutions that address the identified gaps or deficiencies. Drives the defense of the organization's information security and technological architecture through expert consultation and threat mitigation. Serves as a resource to team members and management on security threats, industry trends, and other relevant intelligence. Leads projects within the work group and resolves escalated, high-risk issues. Responsibilities The role will focus on detection engineering, leveraging advanced security tools and frameworks to enhance their threat detection capabilities. The ideal candidate will have deep expertise in SIEM log analysis and detection development, in-depth knowledge of security controls, and strong communication skills to collaborate across IT and enterprise monitoring teams. Key Responsibilities: * Perform in-depth analysis of security events and detections from SIEM and EDR platforms. * Review and recommend improvements to security policies and detection strategies across security tools. * Assist with log analysis for critical applications, ensuring proper field capture and normalization. * Collaborate with IT teams and application owners to identify gaps and implement detection enhancements. * Apply MITRE ATT&CK framework to strengthen detection coverage and threat modeling. * Document findings, recommendations, and detection logic clearly and concisely. Remote eligible. Qualifications Bachelor's Degree and 8 years of experience in Information security OR High School Diploma or GED and 12 years of experience in Information security * Proven experience in detection engineering within cybersecurity operations. * Strong proficiency in Splunk (Power User level or higher); Splunk administration experience preferred. * Hands-on experience with security tools such as CrowdStrike, UEBA, and database monitoring solutions. * Familiarity with SIEM and EDR analysis methodologies. * Working knowledge of the MITRE ATT&CK framework. * Excellent communication and organizational skills; ability to guide application owners through technical requirements. The base pay for this position is generally between $120,000 and $180,000. Actual starting base pay will be determined based on skills, experience, location, and other non-discriminatory factors permitted by law. For some roles, total compensation may also include variable incentives, bonuses, benefits, and/or other awards as outlined in the offer of employment. This job posting is expected to remain active for 45 days from the initial posting date listed above. If it is necessary to extend this deadline, the posting will remain active as appropriate. Job postings may come down early due to business need or a high volume of applicants Benefits are an integral part of total rewards and First Citizens Bank is committed to providing a competitive, thoughtfully designed and quality benefits program to meet the needs of our associates. More information can be found at ****************************************

Chicago, Illinois;Washington, District of Columbia; Charlotte, North Carolina; Denver, Colorado **To proceed with your application, you must be at least 18 years of age.** Acknowledge Refer a friend **To proceed with your application, you must be at least 18 years of age.** Acknowledge (************************************************************************************************************ **Job Description:** At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day. Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve. Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us! The Information Security Officer will be a member of the Business Information Security Officer's (BISO) organization and work closely with the line of business Front Line Units (FLU) / CIO executives. In this role, you will be supporting a group/team to develop a deep understanding of the business in order to have specialized information security risk-based discussions. This relationship will ensure a focus on the right risk priorities. You will also provide guidance on information security topics, policies and controls. Scale/Scope - Contribute to the ongoing information security initiatives and improvements development, implementation and maintenance of information security for FLU/Ops - Serves as an Information Security subject matter expert and participates in the development, implementation and maintenance of information security for FLU/Ops - Aligned to Fraud Authentication , Financial Center, and Automated Teller Machines channel segments to drive a security strategy and to ensure appropriate security by design requirements execution - Provides guidance and advocacy regarding the prioritization of investments that impact information security - Advises management on risk issues related to information security and recommends actions in support of the bank's wider risk management and compliance programs - Monitors information security trends internal and external to the bank and keeps leadership informed - Manages quality control and reporting - Ensures compliance with policies and laws Required Skills - Information Security & Technology professional with 10+ years' experience - 7+ years of risk management experience with proven ability to effectively apply risk principles to challenging business situations - Subject matter expertise in application security, vulnerability testing and development of risk appetite - Experience evaluating cyber security controls and providing guidance for platform or distributed computing platforms (Cloud, PaaS) - Experience evaluating third party information security control and providing guidance to reduce risk on identify observations - Experience with information security for No SQL, Big Data , and unstructured data stores (Cassandra, Hadoop, and /or Teradata) - Knowledge in Windows, Midrange and Mainframe Platforms with emphasis on security application security controls - Exceptional executive presentation and communication skills - Excellent influencing and problem resolution skills - Advises LOB management on risk issues related to information security and recommends actions in support of the bank's wider risk management and compliance programs - Ability to be comfortable delivering messages across a wide spectrum of individuals having varying degrees of technical understanding - Strong leadership skills and qualities which enable you to work with peers and various levels of management Desired Skills: - Bachelors and/or Master's degree in Computer Science, Information Technology or related field - Experience working on cloud control assessment in Microsoft Azure, Amazon Web Services and Google Cloud Platform environments Risk Management - Drives GIS/FLU/Ops risk deliverables - Collaborates with risk partners on info security critical priorities - Participates in senior FLU/Ops specific Risk Management & Business Continuity Routines - Identifies and measures global information security (GIS) controls on most critical business processes or channels Leadership/Strategy - Ability to build strong Partner relationships with peer technology groups and supported FLU/Ops - Supports the triage process with the client and helps them understand the GIS support structure - Drives required risk culture and partnership with peer technology teams and supported FLU/Ops - Participates in key operating routines to drive information security risk strategy **Shift:** 1st shift (United States of America) **Hours Per Week:** 40 Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates. View your **"Know your Rights (************************************************************************************** "** poster. **View the LA County Fair Chance Ordinance (************************************************************************************************** .** Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment. Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank's required accommodation request process before your first day of work. This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.

Chicago, Illinois;Jersey City, New Jersey; Charlotte, North Carolina; Denver, Colorado **To proceed with your application, you must be at least 18 years of age.** Acknowledge Refer a friend **To proceed with your application, you must be at least 18 years of age.** Acknowledge (**************************************************************************************************************************************** **Job Description:** At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day. Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve. Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us! Sr. Information Security Officer - Gen AI will be a member of the Business Information Security Office (BISO) residing within the Global Information Security (GIS) organization. In this role you will work closely with the line of business, their Chief Operating Officer (COO) and supporting technology teams from the Chief Information Officer (CIO)/Chief Technology Officer (CTO). This job is responsible for partnering with senior leaders to balance the needs of the business while ensuring information security risk are appropriately identified and managed to mitigate risk to the organization and drive uncompromising cyber security protection. The role will also support a group/team to develop a deep understanding of the business to lead specialized information security risk-based discussions. This relationship will ensure a focus on the right risk priorities and enable you to provide guidance on information security topics, policies, and controls. Job expectations include acting as an integrated business partner with cross-functional senior leaders to provide blended security and business expertise to ensure appropriate business management of information security risks. This position will be integral to activities establishing and maintaining a strong security posture with respect to Generative Artificial Intelligence (AI) applications and workloads both internal and external to Bank of America. **Key Responsibilities in order of criticality:** - Leads cybersecurity risk assessments of Generative AI use cases, including assessment of the inherent risk and control effectiveness - Guides business leaders and technology organizations on initiatives requiring Global Information Security engagement and/or manage problem resolution on cyber security related issues - Serves as a common risk control partner to identify emerging security risks in the portfolio - Drives adherence and appropriate risk tolerance levels, operating in accordance with the information security policies defined to protect against threats to data confidentiality, integrity, and availability - Promotes awareness of current and emerging cybersecurity threats and advise on potential information security exposure - Facilitates risk reviews across logical and physical boundaries to identify gaps and recommend secure designs - Interprets the information security requirements outlined in policy, standards and procedures as well as reinforces requirements through education and awareness - Leads as a "security ambassador" to help business leaders drive strategic and innovative risk mitigation priorities and navigate the Global Information Security organization **Required Qualifications:** - 8+ years of experience in cybersecurity, with at least 2 years focused on cyber assessment of Artificial Intelligence or Machine Learning systems - A deep understanding of Generative AI/Large Language Models and assessment frameworks including MITRE ATLAS, OWASP Top 10 for LLM and GenAI, and NIST AI RMF - In-depth knowledge of cybersecurity threats, controls and technologies, with a deep understanding/experience with software developer experiences to bridge the gap between the theoretical and practical application - Ability to apply knowledge of internal and external information vulnerabilities to evaluate the degree of threat to an information system and answer tactical questions about current operations, predict future behavior or recommend appropriate mitigation countermeasures - Ability to manage and design controls that may contribute to a remediation plan developed to address policy, technology, environmental, and/or operational gaps - Ability to bring multiple stakeholders together, including senior business and technology leaders, and cut to the heart of issues to reach consensus - Ability to decompose complex issues and drive timely decisions, knowing when to engage others for additional input, and when to act independently - Bias for action and a commitment to build partnerships in a dynamic risk & threat driven environment - Strong interpersonal skills; ability to make effective presentations and communicate technical concepts to non-technical parties - Ability to identify, measure, monitor, and control risk as part of daily business activities, with a focus on specific risk types (e.g., Strategic, Credit, Market, Liquidity, Operational, Compliance, Reputational) - Ability to design, architect, analyze, support, and secure cloud-based workloads - Excellent communication, influencing and facilitation skills **Shift:** 1st shift (United States of America) **Hours Per Week:** 40 Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates. View your **"Know your Rights (************************************************************************************** "** poster. **View the LA County Fair Chance Ordinance (************************************************************************************************** .** Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment. Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank's required accommodation request process before your first day of work. This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day. Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve. Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us! The Information Security Officer will be a member of the Business Information Security Officer's (BISO) organization and work closely with the line of business Front Line Units (FLU) / CIO executives. In this role, you will be supporting a group/team to develop a deep understanding of the business in order to have specialized information security risk-based discussions. This relationship will ensure a focus on the right risk priorities. You will also provide guidance on information security topics, policies and controls. Scale/Scope * Contribute to the ongoing information security initiatives and improvements development, implementation and maintenance of information security for FLU/Ops * Serves as an Information Security subject matter expert and participates in the development, implementation and maintenance of information security for FLU/Ops * Aligned to Fraud Authentication , Financial Center, and Automated Teller Machines channel segments to drive a security strategy and to ensure appropriate security by design requirements execution * Provides guidance and advocacy regarding the prioritization of investments that impact information security * Advises management on risk issues related to information security and recommends actions in support of the bank's wider risk management and compliance programs * Monitors information security trends internal and external to the bank and keeps leadership informed * Manages quality control and reporting * Ensures compliance with policies and laws Required Skills * Information Security & Technology professional with 10+ years' experience * 7+ years of risk management experience with proven ability to effectively apply risk principles to challenging business situations * Subject matter expertise in application security, vulnerability testing and development of risk appetite * Experience evaluating cyber security controls and providing guidance for platform or distributed computing platforms (Cloud, PaaS) * Experience evaluating third party information security control and providing guidance to reduce risk on identify observations * Experience with information security for No SQL, Big Data , and unstructured data stores (Cassandra, Hadoop, and /or Teradata) * Knowledge in Windows, Midrange and Mainframe Platforms with emphasis on security application security controls * Exceptional executive presentation and communication skills * Excellent influencing and problem resolution skills * Advises LOB management on risk issues related to information security and recommends actions in support of the bank's wider risk management and compliance programs * Ability to be comfortable delivering messages across a wide spectrum of individuals having varying degrees of technical understanding * Strong leadership skills and qualities which enable you to work with peers and various levels of management Desired Skills: * Bachelors and/or Master's degree in Computer Science, Information Technology or related field * Experience working on cloud control assessment in Microsoft Azure, Amazon Web Services and Google Cloud Platform environments Risk Management * Drives GIS/FLU/Ops risk deliverables * Collaborates with risk partners on info security critical priorities * Participates in senior FLU/Ops specific Risk Management & Business Continuity Routines * Identifies and measures global information security (GIS) controls on most critical business processes or channels Leadership/Strategy * Ability to build strong Partner relationships with peer technology groups and supported FLU/Ops * Supports the triage process with the client and helps them understand the GIS support structure * Drives required risk culture and partnership with peer technology teams and supported FLU/Ops * Participates in key operating routines to drive information security risk strategy Shift: 1st shift (United States of America) Hours Per Week: 40

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day. Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve. Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us! Sr. Information Security Officer - Gen AI will be a member of the Business Information Security Office (BISO) residing within the Global Information Security (GIS) organization. In this role you will work closely with the line of business, their Chief Operating Officer (COO) and supporting technology teams from the Chief Information Officer (CIO)/Chief Technology Officer (CTO). This job is responsible for partnering with senior leaders to balance the needs of the business while ensuring information security risk are appropriately identified and managed to mitigate risk to the organization and drive uncompromising cyber security protection. The role will also support a group/team to develop a deep understanding of the business to lead specialized information security risk-based discussions. This relationship will ensure a focus on the right risk priorities and enable you to provide guidance on information security topics, policies, and controls. Job expectations include acting as an integrated business partner with cross-functional senior leaders to provide blended security and business expertise to ensure appropriate business management of information security risks. This position will be integral to activities establishing and maintaining a strong security posture with respect to Generative Artificial Intelligence (AI) applications and workloads both internal and external to Bank of America. Key Responsibilities in order of criticality: * Leads cybersecurity risk assessments of Generative AI use cases, including assessment of the inherent risk and control effectiveness * Guides business leaders and technology organizations on initiatives requiring Global Information Security engagement and/or manage problem resolution on cyber security related issues * Serves as a common risk control partner to identify emerging security risks in the portfolio * Drives adherence and appropriate risk tolerance levels, operating in accordance with the information security policies defined to protect against threats to data confidentiality, integrity, and availability * Promotes awareness of current and emerging cybersecurity threats and advise on potential information security exposure * Facilitates risk reviews across logical and physical boundaries to identify gaps and recommend secure designs * Interprets the information security requirements outlined in policy, standards and procedures as well as reinforces requirements through education and awareness * Leads as a "security ambassador" to help business leaders drive strategic and innovative risk mitigation priorities and navigate the Global Information Security organization Required Qualifications: * 8+ years of experience in cybersecurity, with at least 2 years focused on cyber assessment of Artificial Intelligence or Machine Learning systems * A deep understanding of Generative AI/Large Language Models and assessment frameworks including MITRE ATLAS, OWASP Top 10 for LLM and GenAI, and NIST AI RMF * In-depth knowledge of cybersecurity threats, controls and technologies, with a deep understanding/experience with software developer experiences to bridge the gap between the theoretical and practical application * Ability to apply knowledge of internal and external information vulnerabilities to evaluate the degree of threat to an information system and answer tactical questions about current operations, predict future behavior or recommend appropriate mitigation countermeasures * Ability to manage and design controls that may contribute to a remediation plan developed to address policy, technology, environmental, and/or operational gaps * Ability to bring multiple stakeholders together, including senior business and technology leaders, and cut to the heart of issues to reach consensus * Ability to decompose complex issues and drive timely decisions, knowing when to engage others for additional input, and when to act independently * Bias for action and a commitment to build partnerships in a dynamic risk & threat driven environment * Strong interpersonal skills; ability to make effective presentations and communicate technical concepts to non-technical parties * Ability to identify, measure, monitor, and control risk as part of daily business activities, with a focus on specific risk types (e.g., Strategic, Credit, Market, Liquidity, Operational, Compliance, Reputational) * Ability to design, architect, analyze, support, and secure cloud-based workloads * Excellent communication, influencing and facilitation skills Shift: 1st shift (United States of America) Hours Per Week: 40

Responsible for leading independent quality checks and the development of methods to measure the quality and performance of the functional testing processes. Leads testing and evaluation activities that identify issues, trends and gaps in existing programs. Provides and independent assessment of the programs, policies and procedures tested and provides feedback to management. Responsible for the creation of Quality Assurance (QA) testing strategy and documentation, while collaborating with the project teams to create the project test plan. Works with project and development teams on the testing timeline and schedule to ensure coordination across multiple groups. Evaluates the testing environment setup to ensure all requirements are met. Serves as a mentor to less experienced teammates and leads testing meetings and routines. Ultimately responsible for all testing activities within a project to ensure the Software Development Lifecycle (SDLC) QA activities are followed and artifacts are created to be compliant with the Bank's SDLC requirements. Responsibilities * Independent Testing & Validation - Writes test cases based on requirements and user stories provided and performs manual testing as needed. Creates testing plans and test cases and loads them into the appropriate tools. Participates in defect meetings and overall project plan routines to present analysis on current defects as well as re-tested defects. * Data Analysis - Sources, compiles and interprets data. Analyzes data for accuracy and efficiency, and effectively communicates analysis output. * Risk Management - Contributes to the mitigation of risk in the Information Technology organization by thoroughly testing and performing quality checks of existing programs, policies and procedures. * Business Strategy - Assists in leading the Quality Assurance testing teams by creating test plans, developing the testing timelines and schedules, and coordinating workstreams across multiple teams. Qualifications Bachelor's Degree and 6 years of experience in Quality Assurance experience in a Financial Services organization OR High School Diploma or GED and 10 years of experience in Quality Assurance experience in a Financial Services organization Benefits are an integral part of total rewards and First Citizens Bank is committed to providing a competitive, thoughtfully designed and quality benefits program to meet the needs of our associates. More information can be found at ****************************************