Information Security Engineer 4: Security Content Development in San Francisco, California | DiversityInc Careers
This job has expired and you can't apply for it anymore. Start a new search.

Information Security Engineer 4: Security Content Development

Job Description

At Wells Fargo, we have one goal: to satisfy our customers’ financial needs and help them achieve their dreams. We’re looking for talented people who will put our customers at the center of everything we do. Join our diverse and inclusive team where you’ll feel valued and inspired to contribute your unique skills and experience. 

Help us build a better Wells Fargo. It all begins with outstanding talent. It all begins with you. 

Corporate Risk helps all Wells Fargo businesses identify and manage risk. We focus on three key risk areas: credit risk, operational risk and market risk. We help our management and Board of Directors identify and monitor risks that may affect multiple lines of business, and take appropriate action when business activities exceed the risk tolerance of the company.

Since 1852, customers have trusted that Wells Fargo would keep their assets secure from theft and always available. Today, maintaining customer trust remains our underlying operating principle.  Enterprise Information Security’s (EIS) vision is to provide Wells Fargo world leading cyber security risk management. Through a framework that addresses policy, process, operations, people, and technology, EIS protects Wells Fargo’s infrastructure, corporate data, and customer assets, and ensures alignment with applicable regulations and laws.  EIS is part of Wells Fargo's Corporate Risk organization and is led by the Chief Information Security Officer.

Note:  The preferred work location is Charlotte, NC, but we will consider other core Wells Fargo locations as well as telecommuting.   

Our Enterprise Information Security team is searching for a Splunk engineer to join the Security Content Development team to help identify data of security value not currently in Splunk, identify data in Splunk that is not optimized, to identify, investigate and contribute toward resolution of distributed Splunk performance concerns, and to onboard and optimize the quality and completeness of the data in Splunk for enterprise workflows and security analytics.  This experienced Splunk engineer will focus on data quality engineering, bringing host, network, distributed systems, and application logs into Splunk, identifying data improvement requirements from the source and optimizing field extractions and tags using regular expressions and applying CIM compliance.  Duties include creating, improving, and delivering events of interest from both upstream security tools and big data solutions for the benefit of the Cyber Threat Fusion Center.  


Required Qualifications

  • 5+ years of information security applications and systems experience
  • 2+ years of Splunk experience
  • 2 + years of Regular Expression (regex) experience

Desired Qualifications

  • Advanced Information Security technical skills
  • Ability to manage complex issues and develop solutions
  • Excellent verbal and written communication skills
  • Experience working in a large enterprise environment
  • Ability to handle confidential material in a professional manner
  • Ability to identify key issues, involve affected parties, design solutions, obtain buy-in, and communicate effectively through resolution
  • Ability to prioritize work, meet deadlines, achieve goals, and work under pressure in a dynamic and complex environment
  • Knowledge and understanding of application security planning and security architecture
  • Knowledge and understanding of banking or financial services industry
  • Knowledge and understanding of data security controls including malware protection, firewalls, intrusion detection systems, content filtering, Internet proxies, encryption controls, and log management solutions
  • Knowledge and understanding of desktop and Windows server operating systems
  • Knowledge and understanding of establishing or managing cyber threat management capabilities and functions
  • Knowledge and understanding of Information Security Tools Development Unix and Windows
  • Knowledge and understanding of issues or change management processes
  • Knowledge and understanding of Linux
  • Knowledge and understanding of SDLC (System Development Life Cycle)
  • Knowledge and understanding of UNIX
  • Strong analytical skills with high attention to detail and accuracy
  • Web application security vulnerability detection and mitigation experience
  • Experience with Security Information and Event Management (SIEM) products
  • 3+ years of information security experience including experience in one or more of the following security disciplines: information security monitoring, incident response, vulnerability management, host/network forensics, cyber-crime investigation, penetration testing, business continuity, or cyber threat intelligence
  • Experience in problem analysis, solution implementation, and change management
  • Experience analyzing large data sets

Other Desired Qualifications

•    Experience connecting security log sources, authoring alerts, and creating reports and dashboards to monitor for notable security events’ technologies
•    Splunk certifications
•    Information security based reporting, metrics, analysis, and data visualization experience.
•    CISSP or equivalent certification.
•    Familiarization with the following Network Protocols: TCP/IP, UDP.
•    Familiarization with the following database platforms:  MS SQL, Oracle, MySQL.
•    Big data  service or tool experience 
•    Advanced problem solving skills, ability to develop effective long-term solutions to complex problems.
•    Programming, networking, and multiple-OS support experience.
•    Fluent in scripting or querying languages utilizing WMI, SQL, VBScript, or Python.



All offers for employment with Wells Fargo are contingent upon the candidate having successfully completed a criminal background check. Wells Fargo will consider qualified candidates with criminal histories in a manner consistent with the requirements of applicable local, state and Federal law, including Section 19 of the Federal Deposit Insurance Act.

Relevant military experience is considered for veterans and transitioning service men and women.

Wells Fargo is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation.