Information Security Analyst jobs in United States, Arizona, Chandler

This job is responsible for providing moderately complex research, reporting, and analytical support for the delivery of end-to-end support for Global Markets sales, trading and underwriting business for securities, foreign exchange, fixed income, exchange traded derivatives, and over-the-counter derivatives across multiple Lines of Business. Key responsibilities include carrying out duties under general supervision and assisting teammates while following established procedures.

Line of Business Job Description:

​Responsibilities:

• Conducting client due diligence (CDD) and enhanced due diligence (ECDD) in accordance with internal policies, procedures and regulatory guidelines

• Review of refresh requirements for assigned jurisdiction in line with related Client Identification Profile (CIP)/CDD Procedures to ensure adequacy and accuracy before the requirements are sent to the client.

• Liaise with sales/ client outreach teams to obtain and validate correct documentation to fulfill refresh requirements

• Perform client refresh through the review of client documentation, vendor databases and data entered into proprietary systems to ensure all refresh requirements are met

• Ensure all jurisdictional regulatory requirements related to KYC are adhered to

• Support business with KYC related queries and requests

• Participate in remediation, internal/external Audits (where applicable)

• Maintains accuracy of client portfolio using internal and external comparison tools

• Performs research and conducts moderately complex analyses using established techniques, including transactions that require special handling and exception handling

• Explores methods to enhance processes, further reduce risks, and boost client experience

• Partners with colleagues on the trade and sales support teams, as well as external agents

• Creates reports and liaises with internal partners to ensure proper client reporting and assist with regulatory reporting

• Escalates potential risks and exposures to manager in a timely manner

• Assists with ad-hoc projects, new processes, or initiatives requiring coordination among subject matter experts representing multiple product areas or functions

Job Requirements:

• 2+ years of financial services experience

• Excellent verbal and written communications skills

• Documented experience performing in a process-oriented production environment that changes periodically

• Familiar with MS Office Suite(Excel/Word/Outlook/Access)

• Work in a team environment

• Organize work, prioritize tasks and handle multiple assignments simultaneously

• Successfully meet tight deadlines while ensuring data accuracy and integrity

• Work and execute with minimal supervision or remote management

Skills:

• Attention to Detail

• Critical Thinking

• Data Collection and Entry

• Recording/Organizing Information

• Research

• Fraud Management

• Interpret Relevant Laws, Rules, and Regulations

• Problem Solving

• Quality Assurance

• Risk Management

• Adaptability

• Customer and Client Focus

• Prioritization

• Result Orientation

• Written Communications

Key responsibilities:

• Participate in the day-to-day of operation of process controls to ensure consistent and efficient execution
• Participate in developing, monitor, and report on key process metrics to track performance, identify trends, and drive improvements
• Identify risks and issues and support mitigation, coordinating with partners as needed
• Collaborate with cross-functional teams to ensure onboarding of partners into use of the ServiceNow catalog with its request process and into use of ServiceNow knowledge management are trained on requirements and control execution
• Deliver ongoing training to refresh partner understanding and share improvements
• Participate in support for evaluations of the process by lines of defense
• Create and maintain process documentation, including procedures
• Participate in performance improvement efforts, including identifying opportunities, designing selected improvements, and ensuring comprehensive implementation
• Perform other duties as assigned

Required Experience:

• Minimum of 3 years of experience as a process manager for an IT Service Management process
• Minimum of 1 years of experience managing controls for an ITSM process
• Strong understanding of knowledge management and/or technology service request management
• Understanding of service catalog use, structure, and operation
• Understanding of ITSM portals
• ITIL v3 Foundation Certification
• Experience operating a process on the ServiceNow ITSM platform

Desired Experience:

• Strong collaboration and relationship building skills
• Strong risk, issue and control management skills
• Superb written communication skills, with a keen eye for detail
• Proven ability to quickly learn and understand complex subject matter
• Self-starter with ability to handle multiple assignments simultaneously

Skills:

• Controls Management
• Issue Management
• Monitoring, Surveillance, and Testing
• Quality Assurance
• Risk Management
• Analytical Thinking
• Attention to Detail
• Critical Thinking
• Problem Solving
• Written Communications
• Prioritization
• Recording/Organizing Information

Job Description Summary

Information Security Associates play a key role in safeguarding the organization’s systems, data, and customers. They help implement security measures to protect sensitive information from cyber threats, monitor risks, and ensure compliance with internal policies and external regulations. This includes supporting critical initiatives, addressing audit findings, and contributing to the reduction of operational risk—ultimately ensuring a secure banking experience.

This position is also part of the

In this role, you will:

• Support account provisioning and deprovisioning for applications across multiple business lines.

• Support the implementation of identity governance tools (IGA) for access certification, role management and segregation of duties (SoD).

• Provide consultation for all aspects of information security compliance policy, risk management, and remediation.

• Assist with troubleshooting access-related issues and participate in incident response efforts.

• Perform peer reviews and contribute to documentation updates and process improvements.

• Collaborate with team members and management to resolve technical questions and ensure policy compliance.

• Participate in projects related to identity and access management, including cleanup efforts and operational enhancements.

• Learn and apply internal procedures, escalation protocols, and compliance requirements.

• Provide timely and effective support for end-user access requests and project-related tasks.
  

Required Qualifications:

• 6+ months of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  

Desired Qualifications:

• 6+ months of IAM (Identity and Access Management) experience in one or more of the following: provisioning, de-provisioning, certification, authorization or authentication.

• Hands-on experience with at least one IAM tool such as SailPoint, Okta, CyberArk, Ping, Microsoft Entra ID in a production or project environment.

• Proficiency in Microsoft Office tools, including creating pivot tables in Excel, formatting documents in Word, managing email and calendars in Outlook, and building presentations in PowerPoint.

• Experience creating, updating, and managing tickets in ServiceNow, with basic workflow navigation and documentation.

• Experience communicating technical issues or access-related concerns across technical and non-technical teams.

• Demonstrated ability to manage multiple tasks simultaneously, meeting deadlines on at least three concurrent projects or operational initiatives in academic or professional settings.

• Strong customer service orientation, with examples of timely and effective issue resolution.
  

Job Expectations:

• Participate in scheduled after-hours on-call rotations to support operational needs.

• Maintain a hybrid work schedule with regular onsite presence at one of the designated office locations.

• Must reside within commuting distance of a designated office location for the duration of employment or be willing to relocate at personal expense; relocation assistance will not be provided.

• This position is not eligible for Visa sponsorship

• Must maintain employment eligibility without requiring visa sponsorship from Wells Fargo now or at any point in the future; only candidates authorized to work for any U.S. employer will be considered.

• Actively engage in the two-year CODE Program, including participation in training, mentorship, networking events, and career development activities.

Wells Fargo Recruitment and Hiring Requirements:

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

In this role, you will:

• Design, maintain, and automate cryptographic infrastructure to support secure data protection
• Lead and support incident response efforts, especially for complex or high-impact events
• Automate manual tasks using scripting languages and modern tooling
• Collaborate with teams to implement secure configurations and encryption best practices
• Contributes to the design and deployment of cryptographic solutions, including integration with CTM and Vormetric
• Work with vendors to understand product roadmaps and advocate for enhancements
• Partner with engineering teams to identify and remediate vulnerabilities
• Document and support cryptographic solutions and provide guidance on issue resolution

Required Qualifications:

• 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 3+ years of Unix/Linux Systems Administration experience with in-depth knowledge of troubleshooting, OS hardening and OS tuning
• 2+ years of experience with encryption or tokenization technologies
• 2+ years of experience performing builds, administration and/or support of hardware security modules or security appliance devices

Desired Qualifications:

• 2+ years of experience with scripting/automation using tools such as: Bash, PowerShell, Python, Ansible, VBScript, or JavaScript, UI path, etc.
• Experience with encryption technologies, whether direct or through support of OS/app teams using them
• Familiarity with CTM, Vormetric, or similar platforms is a plus
• Ability to automate tasks using scripting (e.g., Python, PowerShell)
• Solid understanding of core security principles and risk mitigation
• Strong communication and collaboration skills across technical and business teams
• Intermediate or higher knowledge of cryptographic protocols & algorithms
• Knowledge and understanding of implementing infrastructure upgrades, security patches, version upgrades for systems, appliances, and HSMs
• Experience with Agile Scrum or Kanban methodologies
• Proven experience with change and incident management practices in medium to large enterprise environments
• Intermediate to advanced skills with M365/MS Office: PowerPoint, Excel, Word, Outlook, MS Teams, MS SharePoint Online
• Experience with and the ability to thrive in a complex and fast-paced technology and/or information security organization, within a large enterprise environment
• Experience with application support in Linux and Windows server environments
• Experience performing technical product assessments, including development of implementation plans, in a large enterprise
• Experience mentoring/guiding less experienced staff
• Advanced critical thinking, problem solving and technical troubleshooting abilities
• Security certifications such as Certified Information Systems Security Professional (CISSP), Global Information Assurance Certification (GIAC), or equivalent
• Cloud certifications such as AZ-900, MS-900, or equivalent/higher
• Strong verbal, written, and interpersonal communication skills

Job Expectations:

• Ability to work on call/off-hours as assigned per the Team on-call rotation
• Ability to travel up to 10% of the time
• This role offers a hybrid in-office work schedule
• This position is not eligible for Visa sponsorship or transfer of sponsorship

Pay Range

Wells Fargo Recruitment and Hiring Requirements:

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

In this role, you will:

• Drive design, deployment and automation strategies for encryption, tokenization and key management products and services including Hardware Security Modules, security appliances and security applications deploying in physical, virtual, and containerized environments.
• Provide technical guidance and oversight to teams and team members responsible for product delivery and operational maintenance.
• Develop and maintain documentation including design and build guides, deployment strategies, automation guides and operational processes.
• Participate in research, analysis and evaluation of new cryptographic products and services.
• Participate in Proof of Concept (POC) testing and demonstrations for new cryptographic products and services.
• Support company driven audits, gather evidence of compliance to company policies, and drive product enhancements, when needed, to remediate findings.
• Conduct technical investigation of incidents to identify causes and recommend future mitigation strategies.
• Collaborate across Wells Fargo teams, including compliance, security architecture and security evaluation teams to ensure cryptographic products are compliant to company policies.
• Work with vendors to understand the technology vendor's roadmap, help to influence that roadmap, and ensure requests for technology/product enhancements are meeting the needs of Wells Fargo.
• Work with partner engineering teams on identification and remediation of security vulnerabilities and may also conduct risk assessments of infrastructure to ensure compliance with corporate security policies and adherence to best practices.
• Support incident response, root cause analysis and corrective action activities.
• Oversee team of engineers and influence design/architecture decisions regarding encryption infrastructure to support our line of business customers.
• Ensure design decisions consider blast radius and business resiliency requirements to reduce / eliminate impact during service changes or DDOS type events, among others.
• This role is not eligible for Visa sponsorship or transfer.
• Remote work is not available for this position.

Required Qualifications:

• 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education.
• 4+ years of intermediate to advanced level experience with scripting/automation using tools such as: Bash, PowerShell, Python, Ansible, VBScript, or JavaScript, UI path, etc.
• 4+ years of Linux and Windows server experience.
• 3+ years of experience with encryption or tokenization and key management technologies.
• 3+ years of experience performing builds, administration and/or support of hardware security modules or security appliance devices.
• 3 + years of Advanced Knowledge of Cryptographic protocols & algorithms.
• 3+ Years of Understanding of (format preserving encryption) FPE, tokenization and TDE (transparent data encryption) etc.
• 3 + years of Subject Matter Expert experience designing solutions using Hardware Security Modules (HSMs) or security appliance devices

Desired Qualifications:

• Experience with DevOps and CI/CD automated build and deployment processes.
• Advanced scripting skills specifically around log rotation, data collection, error collection and alerting.
• Experience designing, developing, and implementing synthetic transactions for the monitoring of applications and/or infrastructure.
• Experience with Puppet/Chef/Ansible or similar automation tools.
• Experience with Agile Scrum or Kanban methodologies.
• Public cloud engineering or support experience.
• Application development experience.
• Experience with application support in Linux and Windows server environments.
• Experience performing technical product assessments, including development of implementation plans, in a large enterprise.
• Experience mentoring/guiding less experienced staff.
• Strong analytical skills with high attention to detail and accuracy.
• Advanced critical thinking, problem solving and technical troubleshooting abilities.
• Security certifications such as CISSP, GIAC or equivalent.
• Cloud certifications such as AZ-900, MS-900 or equivalent/higher.
• Knowledge and understanding of implementing infrastructure upgrades, security patches, or version upgrades.
• Knowledge and understanding of Splunk.
• Knowledge and understanding of banking or the financial services industry.
• Experience with and the ability to thrive in a complex and fast-paced technology and/or information security organization, within a large enterprise environment.
• Strong verbal, written, and interpersonal communication skills.
• Knowledge and understanding of implementing infrastructure upgrades, security patches, version upgrades for systems, appliances and HSM’s
• Proven experience with change and incident management practices in medium to large enterprise environments.
• Knowledge and understanding of implementing infrastructure upgrades, security patches, version upgrades for systems, appliances and HSM’s
• Experience with Hardware Security Modules, such as Thales, Entrust, Futurex, Utimaco or Fortanix.

Job Expectations:

• Ability to travel up to 10% of the time.
• Ability to work onsite in the office in a hybrid model, 3 days per week on-site/in-office and 2 days per week remote
• Remote work is not available for this position
• This position is not eligible for Visa Sponsorship.

Pay Range

Wells Fargo Recruitment and Hiring Requirements:

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

In this role, you will:

• Design, document, test, maintain, and provide issue resolution recommendations for highly complex security solutions including cryptography and cybersecurity.
• Troubleshoot, debug and resolve complex vulnerabilities and issues
• Collaborate and influence all levels of professionals including managers
• Lead a team to achieve objectives
• Apply object-oriented programming principles to develop secure, scalable, and maintainable security tools and automation
• Utilize GraphDB technologies to model complex relationships in security data for advanced threat intelligence and risk analysis

Required Qualifications:

• 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 3+ years of experience in object-oriented programming languages such as Python, Java, C++, or C#
• 1+ years of experience in GraphDB or similar technologies (e.g., Neo4j, Amazon Neptune)

Desired Qualifications:

• Excellent knowledge of AI, LLMs, and Machine Learning concepts
• Experience designing, deploying, and maintaining machine learning models in production environments
• Familiarity with secure software development practices and DevSecOps principles

Job Expectations:

• This position offers a hybrid work schedule
• This position is not eligible for Visa sponsorship
• Less than 10% travel

Salary Ranges:

• $119,000 - $187,000 - Charlotte, NC
• $119,000 - $187,000 - Chandler, AZ
• $119,000 - $187,000 - Irving, TX
• $131,000 - $206,000 - Minneapolis, MN

Pay Range

Wells Fargo Recruitment and Hiring Requirements:

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

In this role, you will:

• Lead the design and implementation of web-based content filtering solutions to reduce enterprise data loss risk.
• Develop and execute a strategic roadmap for scalable and effective web security controls.
• Analyze telemetry and event data from enterprise security platforms to identify risk trends and recommend mitigation strategies.
• Engineer, document, and maintain complex security solutions with a focus on web-based data protection.
• Apply deep knowledge of security best practices to implement controls across availability, integrity, confidentiality, risk management, threat detection, incident response, and business continuity.
• Collaborate with cross-functional teams and influence stakeholders at all levels.

Required Qualifications:

• 4+years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 3+ years of hands-on experience with at least one data loss channel (e.g., Web, Email, Cloud/SaaS).

Desired Qualifications:

• Experience with enterprise-grade web security and filtering technologies (e.g., secure web gateways, cloud access security brokers).
• 2+ years of Splunk or other SIEM enterprise grade filtering solution
• 2+ years of web content/web proxy content filtering experience
• Experience administering endpoint detection and response (EDR) or endpoint protection platforms.
• Familiarity with cloud-based security controls and SaaS application protection.
• Experience evaluating and implementing data protection controls.
• Proficiency with SIEM platforms and the ability to generate actionable insights from security telemetry.
• Strong scripting or query skills (e.g., RegEx, Python, PowerShell) to support automation and data analysis.

Job Expectations:

• On-call rotation per the duties of the team
• Ability to work onsite in the office in a hybrid model.
• This position is not eligible for Visa Sponsorship

Locations:

• Chandler, AZ
• Charlotte, NC

Wells Fargo Recruitment and Hiring Requirements:

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.