Information Security Associate jobs at Wells Fargo in United States, Chandler

Job Description Summary

Information Security Associates play a key role in safeguarding the organization’s systems, data, and customers. They help implement security measures to protect sensitive information from cyber threats, monitor risks, and ensure compliance with internal policies and external regulations. This includes supporting critical initiatives, addressing audit findings, and contributing to the reduction of operational risk—ultimately ensuring a secure banking experience.

This position is also part of the

In this role, you will:

• Support account provisioning and deprovisioning for applications across multiple business lines.

• Support the implementation of identity governance tools (IGA) for access certification, role management and segregation of duties (SoD).

• Provide consultation for all aspects of information security compliance policy, risk management, and remediation.

• Assist with troubleshooting access-related issues and participate in incident response efforts.

• Perform peer reviews and contribute to documentation updates and process improvements.

• Collaborate with team members and management to resolve technical questions and ensure policy compliance.

• Participate in projects related to identity and access management, including cleanup efforts and operational enhancements.

• Learn and apply internal procedures, escalation protocols, and compliance requirements.

• Provide timely and effective support for end-user access requests and project-related tasks.
  

Required Qualifications:

• 6+ months of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  

Desired Qualifications:

• 6+ months of IAM (Identity and Access Management) experience in one or more of the following: provisioning, de-provisioning, certification, authorization or authentication.

• Hands-on experience with at least one IAM tool such as SailPoint, Okta, CyberArk, Ping, Microsoft Entra ID in a production or project environment.

• Proficiency in Microsoft Office tools, including creating pivot tables in Excel, formatting documents in Word, managing email and calendars in Outlook, and building presentations in PowerPoint.

• Experience creating, updating, and managing tickets in ServiceNow, with basic workflow navigation and documentation.

• Experience communicating technical issues or access-related concerns across technical and non-technical teams.

• Demonstrated ability to manage multiple tasks simultaneously, meeting deadlines on at least three concurrent projects or operational initiatives in academic or professional settings.

• Strong customer service orientation, with examples of timely and effective issue resolution.
  

Job Expectations:

• Participate in scheduled after-hours on-call rotations to support operational needs.

• Maintain a hybrid work schedule with regular onsite presence at one of the designated office locations.

• Must reside within commuting distance of a designated office location for the duration of employment or be willing to relocate at personal expense; relocation assistance will not be provided.

• This position is not eligible for Visa sponsorship

• Must maintain employment eligibility without requiring visa sponsorship from Wells Fargo now or at any point in the future; only candidates authorized to work for any U.S. employer will be considered.

• Actively engage in the two-year CODE Program, including participation in training, mentorship, networking events, and career development activities.

Wells Fargo Recruitment and Hiring Requirements:

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

In this role, you will:

• Design, maintain, and automate cryptographic infrastructure to support secure data protection
• Lead and support incident response efforts, especially for complex or high-impact events
• Automate manual tasks using scripting languages and modern tooling
• Collaborate with teams to implement secure configurations and encryption best practices
• Contributes to the design and deployment of cryptographic solutions, including integration with CTM and Vormetric
• Work with vendors to understand product roadmaps and advocate for enhancements
• Partner with engineering teams to identify and remediate vulnerabilities
• Document and support cryptographic solutions and provide guidance on issue resolution

Required Qualifications:

• 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 3+ years of Unix/Linux Systems Administration experience with in-depth knowledge of troubleshooting, OS hardening and OS tuning
• 2+ years of experience with encryption or tokenization technologies
• 2+ years of experience performing builds, administration and/or support of hardware security modules or security appliance devices

Desired Qualifications:

• 2+ years of experience with scripting/automation using tools such as: Bash, PowerShell, Python, Ansible, VBScript, or JavaScript, UI path, etc.
• Experience with encryption technologies, whether direct or through support of OS/app teams using them
• Familiarity with CTM, Vormetric, or similar platforms is a plus
• Ability to automate tasks using scripting (e.g., Python, PowerShell)
• Solid understanding of core security principles and risk mitigation
• Strong communication and collaboration skills across technical and business teams
• Intermediate or higher knowledge of cryptographic protocols & algorithms
• Knowledge and understanding of implementing infrastructure upgrades, security patches, version upgrades for systems, appliances, and HSMs
• Experience with Agile Scrum or Kanban methodologies
• Proven experience with change and incident management practices in medium to large enterprise environments
• Intermediate to advanced skills with M365/MS Office: PowerPoint, Excel, Word, Outlook, MS Teams, MS SharePoint Online
• Experience with and the ability to thrive in a complex and fast-paced technology and/or information security organization, within a large enterprise environment
• Experience with application support in Linux and Windows server environments
• Experience performing technical product assessments, including development of implementation plans, in a large enterprise
• Experience mentoring/guiding less experienced staff
• Advanced critical thinking, problem solving and technical troubleshooting abilities
• Security certifications such as Certified Information Systems Security Professional (CISSP), Global Information Assurance Certification (GIAC), or equivalent
• Cloud certifications such as AZ-900, MS-900, or equivalent/higher
• Strong verbal, written, and interpersonal communication skills

Job Expectations:

• Ability to work on call/off-hours as assigned per the Team on-call rotation
• Ability to travel up to 10% of the time
• This role offers a hybrid in-office work schedule
• This position is not eligible for Visa sponsorship or transfer of sponsorship

Pay Range

Wells Fargo Recruitment and Hiring Requirements:

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

In this role, you will:

• Participate in the design, development, integration, testing, deployment and support of technology solutions for complex and challenging business requirements
• Understand Software Development Lifecycle process, quality, security and compliance requirements
• Support implementation of moderate to complex projects
• Develop skills in a specific domain with training
• Understand compliance and risk management requirements for supported area
• Receive direction from a manager and exercise independent judgment while developing understanding of compliance and risk management requirements for the supported area
• Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals
• Interact with internal customers

Required Qualifications:

• 6+ months of Technology Engineering and Solutions experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  

Desired Qualifications, US:

• 6+ months of

• Demonstrated knowledge, interest and /or experience with Python, SQL, .Net, Terraform, Kubernetes, Privileged Access Management, Directory Services as well as Cloud platforms and Cybersecurity acumen.

• Basic Microsoft Office (Word, Excel, Outlook, and PowerPoint) skills

• Good verbal, written, and interpersonal communication skills

• Ability to prioritize work, meet deadlines, achieve goals, and work under pressure in a dynamic and complex environment

• Ability to work effectively, as well as independently, in a team environment

• Bachelor’s in cybersecurity preferred but not required

Job Expectations:

• Position will require onsite presence at one of the required locations listed below in a hybrid work schedule
• Relocation assistance is not provided for this role.
• This position is not eligible for Visasponsorship
• Wells Fargo will only consider candidates who are presently authorized to work for any employer in the United States and who do not require work visa sponsorship from Wells Fargo now or in the future in order to retain their authorization to work in the United States.
• Willingness to actively participate in a two-year development program designed to help you build a strong professional foundation through ongoing training, mentorship, networking opportunities and career development resources

Program Locations:

• Chandler, AZ

BenefitsWells Fargo provides eligible employees with a comprehensive set of benefits, many of which are listed below. Visit for an overview of the following benefit plans and programs offered to employees.

• Health benefits

• 401(k) Plan

• Paid time off

• Disability benefits

• Life insurance, critical illness insurance, and accident insurance

• Parental leave

• Critical caregiving leave

• Discounts and savings

• Commuter benefits

• Tuition reimbursement

• Scholarships for dependent children

• Adoption reimbursement

September 16, 2025

Wells Fargo Recruitment and Hiring Requirements:

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

In this role, you will:

• Drive design, deployment and automation strategies for encryption, tokenization and key management products and services including Hardware Security Modules, security appliances and security applications deploying in physical, virtual, and containerized environments.
• Provide technical guidance and oversight to teams and team members responsible for product delivery and operational maintenance.
• Develop and maintain documentation including design and build guides, deployment strategies, automation guides and operational processes.
• Participate in research, analysis and evaluation of new cryptographic products and services.
• Participate in Proof of Concept (POC) testing and demonstrations for new cryptographic products and services.
• Support company driven audits, gather evidence of compliance to company policies, and drive product enhancements, when needed, to remediate findings.
• Conduct technical investigation of incidents to identify causes and recommend future mitigation strategies.
• Collaborate across Wells Fargo teams, including compliance, security architecture and security evaluation teams to ensure cryptographic products are compliant to company policies.
• Work with vendors to understand the technology vendor's roadmap, help to influence that roadmap, and ensure requests for technology/product enhancements are meeting the needs of Wells Fargo.
• Work with partner engineering teams on identification and remediation of security vulnerabilities and may also conduct risk assessments of infrastructure to ensure compliance with corporate security policies and adherence to best practices.
• Support incident response, root cause analysis and corrective action activities.
• Oversee team of engineers and influence design/architecture decisions regarding encryption infrastructure to support our line of business customers.
• Ensure design decisions consider blast radius and business resiliency requirements to reduce / eliminate impact during service changes or DDOS type events, among others.
• This role is not eligible for Visa sponsorship or transfer.
• Remote work is not available for this position.

Required Qualifications:

• 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education.
• 4+ years of intermediate to advanced level experience with scripting/automation using tools such as: Bash, PowerShell, Python, Ansible, VBScript, or JavaScript, UI path, etc.
• 4+ years of Linux and Windows server experience.
• 3+ years of experience with encryption or tokenization and key management technologies.
• 3+ years of experience performing builds, administration and/or support of hardware security modules or security appliance devices.
• 3 + years of Advanced Knowledge of Cryptographic protocols & algorithms.
• 3+ Years of Understanding of (format preserving encryption) FPE, tokenization and TDE (transparent data encryption) etc.
• 3 + years of Subject Matter Expert experience designing solutions using Hardware Security Modules (HSMs) or security appliance devices

Desired Qualifications:

• Experience with DevOps and CI/CD automated build and deployment processes.
• Advanced scripting skills specifically around log rotation, data collection, error collection and alerting.
• Experience designing, developing, and implementing synthetic transactions for the monitoring of applications and/or infrastructure.
• Experience with Puppet/Chef/Ansible or similar automation tools.
• Experience with Agile Scrum or Kanban methodologies.
• Public cloud engineering or support experience.
• Application development experience.
• Experience with application support in Linux and Windows server environments.
• Experience performing technical product assessments, including development of implementation plans, in a large enterprise.
• Experience mentoring/guiding less experienced staff.
• Strong analytical skills with high attention to detail and accuracy.
• Advanced critical thinking, problem solving and technical troubleshooting abilities.
• Security certifications such as CISSP, GIAC or equivalent.
• Cloud certifications such as AZ-900, MS-900 or equivalent/higher.
• Knowledge and understanding of implementing infrastructure upgrades, security patches, or version upgrades.
• Knowledge and understanding of Splunk.
• Knowledge and understanding of banking or the financial services industry.
• Experience with and the ability to thrive in a complex and fast-paced technology and/or information security organization, within a large enterprise environment.
• Strong verbal, written, and interpersonal communication skills.
• Knowledge and understanding of implementing infrastructure upgrades, security patches, version upgrades for systems, appliances and HSM’s
• Proven experience with change and incident management practices in medium to large enterprise environments.
• Knowledge and understanding of implementing infrastructure upgrades, security patches, version upgrades for systems, appliances and HSM’s
• Experience with Hardware Security Modules, such as Thales, Entrust, Futurex, Utimaco or Fortanix.

Job Expectations:

• Ability to travel up to 10% of the time.
• Ability to work onsite in the office in a hybrid model, 3 days per week on-site/in-office and 2 days per week remote
• Remote work is not available for this position
• This position is not eligible for Visa Sponsorship.

Pay Range

Wells Fargo Recruitment and Hiring Requirements:

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

In this role, you will:

• Design, document, test, maintain, and provide issue resolution recommendations for highly complex security solutions including cryptography and cybersecurity.
• Troubleshoot, debug and resolve complex vulnerabilities and issues
• Collaborate and influence all levels of professionals including managers
• Lead a team to achieve objectives
• Apply object-oriented programming principles to develop secure, scalable, and maintainable security tools and automation
• Utilize GraphDB technologies to model complex relationships in security data for advanced threat intelligence and risk analysis

Required Qualifications:

• 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 3+ years of experience in object-oriented programming languages such as Python, Java, C++, or C#
• 1+ years of experience in GraphDB or similar technologies (e.g., Neo4j, Amazon Neptune)

Desired Qualifications:

• Excellent knowledge of AI, LLMs, and Machine Learning concepts
• Experience designing, deploying, and maintaining machine learning models in production environments
• Familiarity with secure software development practices and DevSecOps principles

Job Expectations:

• This position offers a hybrid work schedule
• This position is not eligible for Visa sponsorship
• Less than 10% travel

Salary Ranges:

• $119,000 - $187,000 - Charlotte, NC
• $119,000 - $187,000 - Chandler, AZ
• $119,000 - $187,000 - Irving, TX
• $131,000 - $206,000 - Minneapolis, MN

Pay Range

Wells Fargo Recruitment and Hiring Requirements:

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

In this role, you will:

• Lead the design and implementation of web-based content filtering solutions to reduce enterprise data loss risk.
• Develop and execute a strategic roadmap for scalable and effective web security controls.
• Analyze telemetry and event data from enterprise security platforms to identify risk trends and recommend mitigation strategies.
• Engineer, document, and maintain complex security solutions with a focus on web-based data protection.
• Apply deep knowledge of security best practices to implement controls across availability, integrity, confidentiality, risk management, threat detection, incident response, and business continuity.
• Collaborate with cross-functional teams and influence stakeholders at all levels.

Required Qualifications:

• 4+years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 3+ years of hands-on experience with at least one data loss channel (e.g., Web, Email, Cloud/SaaS).

Desired Qualifications:

• Experience with enterprise-grade web security and filtering technologies (e.g., secure web gateways, cloud access security brokers).
• 2+ years of Splunk or other SIEM enterprise grade filtering solution
• 2+ years of web content/web proxy content filtering experience
• Experience administering endpoint detection and response (EDR) or endpoint protection platforms.
• Familiarity with cloud-based security controls and SaaS application protection.
• Experience evaluating and implementing data protection controls.
• Proficiency with SIEM platforms and the ability to generate actionable insights from security telemetry.
• Strong scripting or query skills (e.g., RegEx, Python, PowerShell) to support automation and data analysis.

Job Expectations:

• On-call rotation per the duties of the team
• Ability to work onsite in the office in a hybrid model.
• This position is not eligible for Visa Sponsorship

Locations:

• Chandler, AZ
• Charlotte, NC

Wells Fargo Recruitment and Hiring Requirements:

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

About this role:

The lead analyst will serve as the Subject Matter Expert (SME) for the Cloud Access Security Management (CASM), ensuring effective control management, tool integration, and operational execution. This role is critical in maintaining the integrity of access controls and driving continuous improvement across a complex ecosystem of security and workflow tools.

Key Functions:

• Process & Controls Oversight:
  • Own and manage CASM process controls, ensuring tasks are completed accurately and efficiently.
  • Run and monitor controls to identify gaps, control breaks, and areas for improvement
  • Lead control reviews and ensure metrics are tracked and reported to governance councils
• Tool Integration & Technical Expertise:
  • Deep understanding of CASM tools and how they interoperate, including CASB and Proxy tools, workflow, and input management, and database and user-interface structures
  • Ensure seamless data flow and task execution across tools
• Operational & Business As Usual Activities:
  • Manage monthly access control database processes.
  • Oversee access grant/deny decisions and ensure compliance.
• Collaboration & Governance:
  • Facilitate meetings to assess process steps and control effectiveness and drive continuous improvement.
  • Report control metrics and progress to governance councils.
  • Drive metric improvement initiatives

In this role, you will:

• Provide advanced information security consultation for all aspects of information security compliance policy, risk management, and remediation
• Direct information security risk assessment and research, and recommend remediation plans and strategies
• Influence stakeholders on net new or on material changes to an asset to influence control decisions
• Provide consulting on security risk assessment and research, and recommend remediation plans and strategies
• Act as more experienced lead to the organization to develop security risk awareness and mitigating actions
• Consult the organization on complex security issues and findings
• Manage the most complex and critical information assets
• Evaluate and interpret internal and companywide information security policies, processes, standards, and participate with more experienced leaders in decision making on information security
• Serve as information security lead to advise on the development and delivery of Information Security Education and Awareness
• Collaborate and consult with peers, colleagues, and mid-level to more experienced managers to resolve issues and achieve goals
• Lead projects and teams
• Coordinate with vendor manager on third party assets to manage information security risks
• Serve as a mentor to less experienced staff

Required Qualifications:

• 5+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education

Desired Qualifications:

• Experience with enterprise-grade web security and filtering technologies (e.g., secure web gateways, cloud access security brokers).
• 2+ years of Splunk or other SIEM enterprise grade filtering solution
• 2+ years of web content/web proxy content filtering experience
• Familiarity with cloud-based security controls and SaaS application protection.
• Experience evaluating and implementing data protection controls.
• Scripting or query skills (e.g., SQL, RegEx, Python, PowerShell) to support automation and data analysis.

Job Expectations:

• Ability to travel 10% domestically
• Ability to work onsite in the office in a hybrid model.
• This position is not eligible for Visa Sponsorship

Locations:

• Chandler, AZ
• Charlotte, NC
• Minneapolis, MN
• Irving, TX

Pay Range

Wells Fargo Recruitment and Hiring Requirements:

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.