About Wells Fargo India
Wells Fargo India enables global talent capabilities for Wells Fargo Bank NA., by supporting business lines and staff functions across Technology, Operations, Risk, Audit, Process Excellence, Automation and Product, Analytics and Modeling. We are operating in Hyderabad, Bengaluru and Chennai locations.

Department Overview
Wells Fargo views Cybersecurity as enabling lines of business to mitigate information security risk in accordance with our risk appetite. Through a framework that addresses policy, process, operations, people, and technology Information Security protects our infrastructure, company data, and customer assets while ensuring alignment with applicable regulations and laws. Our vision is to provide Wells Fargo with world-leading cyber security risk management.

• Provide information security consultation to improve awareness and compliance with Enterprise Information Security policy, processes and standards
• Perform remediation of security assessment review issues, complex ad hoc data, and reporting to support information security risk management
• Provide guidance and direction in reviewing assessment findings and mitigating controls to optimize information security
• Identify and direct information asset portfolio reconciliations and certifications
• Provide advanced data aggregation and data of information security risk exposure
• Develop and deliver Information Security Education Awareness and Training in accordance with the Enterprise Information Security Program standards
• Review draft and proposed control standards for business impact and recommend modifications or clarifications as required
• Conduct security control testing and consultation with stakeholders
• Evaluate and interpret internal and Enterprise Information Security policies, processes and standards, and provide recommendations to improve them
• Collaborate and consult with peers, colleagues, and managers to resolve issues and achieve goals
• Interact with internal customers
• Serve as a mentor to less experienced staff

• 4+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education

• 4+ years of overall Information/Cyber security experience with a bachelor's degree or higher in Engineering or Computer or Information technology
• 4+ years of Information Security reporting and analysis experience
• 2+ years of experience in at least one of the following practices like Security Requirements, Application Threat Modeling, Static Analysis, Application Security Risk Assessments, Security Design requirements.
• Knowledge and experience in identifying and suggesting mitigations to OWASP top 10, CWE/SANS top 25 to development teams.
• Ability to manage multiple priorities in a fast-paced dynamic environment.
• Advanced problem solving skills, ability to develop effective long-term solutions to problems.
• Excellent verbal and written communication skills
• Excellent inter-personal skills contributing to cordial team environment.
• Knowledge and understanding of secure SDLC (System Development Life Cycle) methodologies.
• Experience in drafting application security coding standards.
• Ability to manage highly complex issues and negotiate solutions.
• Knowledge and understanding of Application security threat management and mitigation domain.
• Application security experience with banking/financial services applications.
• Certified in Industry renowned certifications like CISSP, CSSLP, CEH etc.