Wells Fargo Lead Endpoint Security Engineer 

United States, North Carolina, Charlotte 

735249000

Security Architecture & Engineering

• Design and implement scalable, automated security controls across a large, distributed endpoint and network infrastructure.
• Define and maintain infrastructure security requirements aligned with enterprise policies and regulatory obligations.
• Evaluate and validate security control designs to ensure compliance, effectiveness, and alignment with Zero Trust principles.
• Lead secure onboarding of new endpoint technologies and ensure secure configurations across hybrid environments.

Threat Detection, Monitoring & Incident Response

• Develop and manage strategies for continuous compliance monitoring and threat detection.
• Lead complex security incident response efforts, including root cause analysis and digital forensics.
• Correlate and analyze security logs to identify vulnerabilities, threats, and anomalies.
• Recommend and implement mitigation strategies based on threat intelligence and post-incident findings.

Collaboration & Leadership

• Partner with Security Architecture, Infrastructure, Risk, and Compliance teams to integrate security into enterprise designs and deployment processes.
• Participate in architecture reviews and risk assessments for infrastructure and security initiatives.
• Present technical designs and security strategies to senior leadership and stakeholders.
• Mentor and provide technical guidance to engineers and security team members.

Documentation, Standards & Continuous Improvement

• Create and maintain technical documentation, security standards, and training materials.
• Translate complex security requirements into actionable, scalable technical solutions.
• Stay current with industry trends, threat intelligence, and regulatory changes to proactively evolve security strategies.
• Promote a security-first mindset and contribute to a culture of continuous improvement and operational excellence.

Required Qualifications:

• 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• Deep expertise in security tools (e.g., firewalls, EDR, NAC), frameworks (NIST, MITRE), and secure infrastructure design.

Desired Qualifications:

• Strong, hands-on knowledge of one or many network security tools (e.g., firewalls, IDS/IPS, proxies, NAC).
• Familiarity with cloud security (AWS, Azure, GCP) and hybrid environments.
• Solid understanding of network segmentation, Zero Trust architecture, and secure device onboarding practices.
• Proven experience designing and implementing enterprise-scale security solutions.
• Experience developing and executing security tool strategies and roadmaps.
• Deep understanding of security frameworks (e.g., NIST, ISO 27001, MITRE ATT&CK).
• Strong understanding of endpoint protection platforms (e.g., CrowdStrike, Microsoft Defender for Endpoint, Tanium).
• Strong grasp of the OSI model and its relevance to cybersecurity.
• Excellent problem-solving, analytical, and communication skills.
• Ability to collaborate across technical and non-technical teams and clearly document technical requirements.
• Certifications: GCIA, CISSP, OSCP

Job Expectations:

• This is a hybrid role and will be required to be on-site in one of the locations listed on the job posting
• This role is not available for visa sponsorship

Pay Range

Wells Fargo Recruitment and Hiring Requirements:

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.