Senior EDLP Information Security Analyst

Wells Fargo
San Francisco
14 Mar 2023
11 Apr 2023
Employer Sector
Technology, IT & Telecoms
Contract Type
Full Time
The Enterprise Data Loss Prevention (EDLP) Senior Information Security Analyst is a key role supporting the team's mission to prevent inappropriate external sharing and distribution of sensitive company, customer and employee information.

In this role, you will:
  • Provide information security consultation to improve awareness and compliance with Enterprise Information Security policy, processes and standards
  • Perform remediation of DLP incidents, compile ad hoc data, and reporting to support information security risk management.
  • Supporting EDLP Threat Detection and Management (TDM) team by applying information security risk analysis concepts and techniques within day–to–day operations.
  • Supporting and leading initiative to enhance, streamline and integrate EDLP TDM capabilities in partnership with various Information Security and other partner teams.
  • Collaborating with multiple internal partner organizations to refer certain events requiring additional investigation or preventive measures.
  • Facilitate and drive continuous improvement in EDLP capabilities by identifying root cause and potential corrective actions associated with DLP events.
  • Provide guidance and direction in reviewing DLP incidents and mitigating controls to optimize information security.
  • Provide advanced data aggregation and data of information security risk exposure.
  • Develop and deliver Information Security Education Awareness and Training in accordance with the Enterprise Information Security Program standards.
  • Review draft and proposed control standards for business impact and recommend modifications or clarifications as required.
  • Conduct security control testing and consultation with stakeholders.
  • Evaluate and interpret internal and Enterprise Information Security policies, processes and standards, and provide recommendations to improve them.
  • Collaborate and consult with peers, colleagues, and managers to resolve issues and achieve goals.
  • Interact with internal customers.
  • Serve as a mentor to less experienced staff.
Required Qualifications:
  • 4+ years of Information Security experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education.
Desired Qualifications:
  • 3+ years of Data Loss Prevention Operations experience including event triage and response, identifying tuning enhancements, etc.
  • 2+ years of Information Security Governance, Risk and Change Management (GRC) experience.
  • CISSP or other applicable InfoSec qualifications.
Job Expectations:
  • May require off hours support as needed.
  • Hybrid work model – will be expected to be onsite in one of the locations listed.
  • $100,800 – $179,200 – Salary range for New York

Pay Range
$84,000.00 – $149,400.00 Annual
  • Information about Wells Fargo's employee benefits
We Value Diversity

At Wells Fargo, we believe in diversity, equity and inclusion in the workplace; accordingly, we welcome applications for employment from all qualified candidates, regardless of race, color, gender, national origin, religion, age, sexual orientation, gender identity, gender expression, genetic information, individuals with disabilities, pregnancy, marital status, status as a protected veteran or any other status protected by applicable law.

Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance–driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements.

Candidates applying to job openings posted in US: All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.