About Wells Fargo
Wells Fargo & Company (NYSE: WFC) is a leading global financial services company headquartered in San Francisco (United States). Wells Fargo has offices in over 30 countries and territories. Our business outside of the U.S. mostly focuses on providing banking services for large corporate, government and financial institution clients. We have worldwide expertise and services to help our customers improve earnings, manage risk, and develop opportunities in the global marketplace. Our global reach offers many opportunities for you to develop a career with Wells Fargo. Join our diverse and inclusive team where you will feel valued and inspired to contribute your unique skills and experience. We are looking for talented people who will put our customers at the center of everything we do. Help us build a better Wells Fargo. It all begins with outstanding talent. It all begins with you.
Market Job Description
About Wells Fargo India
Wells Fargo Indiaenables global talent capabilities for Wells Fargo Bank NA., by supporting business lines and staff functions across Technology, Operations, Risk, Audit, Process Excellence, Automation and Product, Analytics and Modeling. We are operating in Hyderabad, Bengaluru and Chennai locations.
Department Overview:
Wells Fargo views information security as enabling lines of business to mitigate information security risk in accordance with our risk appetite. Through a framework that addresses policy, process, operations, people, and technology, ICS protects our infrastructure, company data, and customer assets while ensuring alignment with applicable regulations and laws. Our vision is to provide Wells Fargo with world-leading Cyber security risk management.
About Role:
This role offers an outstanding opportunity to make a positive difference by reducing information security risks associated with digital certificate, cryptographic protocol, and cryptographic algorithm vulnerabilities across a large scale environment. As a member of the team accountable for establishing strategy, compliance, and solutions for crypto related vulnerabilities you will support both the team and enterprise asset owners by taking accountability for the following functions:
Responsibilities:
Review vulnerability information provided by reporting tools and other discovery sources, and determine possible remediation solutions across a wide range of asset types.
Document remediation solutions.
Partner with IT administrators to implement and validate successful remediation.
Provide subject matter expert level expertise and guidance for the remediation of cryptographic vulnerabilities.
Assists in development of enterprise-wide strategy for improving the management of cryptographic assets.
The position will have dual reporting into US based Manager and India Manager. This position demands high degree of partnership with EGS Shared Services Teams, Vendors, and Other Lines of Businesses across US & EGS IS Teams.
Market Skills and Certifications
Essential Qualifications:
5+ years of application production support experience 1+ years of experience with vulnerability reporting 5+ years of experience managing certificate or cryptographic vulnerability remediation efforts 5+ years of technical documentation and publication experience
Desired Qualifications:
Knowledge/Skills/Ability Knowledge and understanding of vulnerability assessments and facilitating vulnerability remediation in a corporate environment Experience with Jira and Agile methodologies Experience with OpenSSL, Keytool and other cryptographic tools Experience with cryptographic libraries based on products, Operating System dependencies. Scripting or programming experience with Python, Powershell/Bash Scripting or similar methodologies. Administration or programming experience with relational databases. - Experience with Qualys, Splunk, SSL Visibility appliances, F5/Big IP (GTM's/LTM's/ASM's), WAF's, Datapower, Blue Coat Proxy.
Exposure to certificate lifecycle management and tools such as Venafi, Microsoft Certificate Server, HSM's Experience with TLS/SSL negotiation troubleshooting and settings across multiple products and platforms including server OS/Middleware, network load balancers, firewalls, and proxies in an Internet exposed environment (DMZ) Experience reviewing DAST reports and assisting applications with remediation.
We Value Diversity
At Wells Fargo, we believe in diversity and inclusion in the workplace; accordingly, we welcome applications for employment from all qualified candidates, regardless of race, color, gender, national or ethnic origin, age, disability, religion, sexual orientation, gender identity or any other status protected by applicable law. We comply with all applicable laws in every jurisdiction in which we operate. |
