CrawlJobs Logo
Wells Fargo Logo Wells Fargo · IT - Software Development

Lead Information Security Engineer - Cryptographic Products and Services

United States, Irving 119000.00 - 187000.00 USD / Year · Job Posted June 09, 2026
Apply Position
Job Link Share

Job Description

Wells Fargo is seeking a motivated Lead Information Security Engineer to join an exciting, fast paced team working on cutting edge encryption, tokenization and key management technologies that are leveraged to protect information companywide.  This role will provide technical leadership, and be an individual contributor, to teams that design, deploy, and operationally maintain cryptographic products and services including Hardware Security Modules (HSMs) and security appliances. The ideal candidate will have demonstrated experience in the design and deployment of cryptographic products in physical, virtual, and containerized environments. The ideal candidate will also have demonstrated experience in automating processes including product builds, operational maintenance, and customer integration and onboarding.  This role reports directly to the Senior Manager for the Encryption, Tokenization and Key Management team.

Job Responsibility

  • Drive design, deployment and automation strategies for encryption, tokenization and key management products and services including Hardware Security Modules, security appliances and security applications deploying in physical, virtual, and containerized environments
  • Provide technical guidance and oversight to teams and team members responsible for product delivery and operational maintenance
  • Develop and maintain documentation including design and build guides, deployment strategies, automation guides and operational processes
  • Participate in research, analysis and evaluation of new cryptographic products and services
  • Participate in Proof of Concept (POC) testing and demonstrations for new cryptographic products and services
  • Support company driven audits, gather evidence of compliance to company policies, and drive product enhancements, when needed, to remediate findings
  • Conduct technical investigation of incidents to identify causes and recommend future mitigation strategies
  • Collaborate across Wells Fargo teams, including compliance, security architecture and security evaluation teams to ensure cryptographic products are compliant to company policies
  • Work with vendors to understand the technology vendor's roadmap, help to influence that roadmap, and ensure requests for technology/product enhancements are meeting the needs of Wells Fargo
  • Work with partner engineering teams on identification and remediation of security vulnerabilities and may also conduct risk assessments of infrastructure to ensure compliance with corporate security policies and adherence to best practices
  • Support incident response, root cause analysis and corrective action activities
  • Oversee team of engineers and influence design/architecture decisions regarding encryption infrastructure to support our line of business customers
  • Ensure design decisions consider blast radius and business resiliency requirements to reduce / eliminate impact during service changes or DDOS type events, among others.

Requirements

  • 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  • 4+ years of intermediate to advanced level experience with scripting/automation using tools such as: Bash, PowerShell, Python, Ansible, VBScript, or JavaScript, UI path, etc.
  • 4+ years of Linux and Windows server experience.

Nice to have

  • Experience with encryption or tokenization and key management technologies
  • Advanced Knowledge of Cryptographic protocols & algorithms
  • Subject Matter Expert experience designing solutions using Hardware Security Modules (HSMs) or security appliance devices
  • Experience with DevOps and CI/CD automated build and deployment processes
  • Advanced scripting skills specifically around log rotation, data collection, error collection and alerting
  • Experience designing, developing, and implementing synthetic transactions for the monitoring of applications and/or infrastructure
  • Experience with Puppet/Chef/Ansible or similar automation tools
  • Experience with Agile Scrum or Kanban methodologies
  • Application development experience
  • Experience with application support in Linux and Windows server environments
  • Experience performing technical product assessments, including development of implementation plans, in a large enterprise
  • Experience mentoring/guiding less experienced staff
  • Strong analytical skills with high attention to detail and accuracy
  • Advanced critical thinking, problem solving and technical troubleshooting abilities
  • Knowledge and understanding of implementing infrastructure upgrades, security patches, or version upgrades
  • Knowledge and understanding of monitoring and reporting tools
  • Experience with and the ability to thrive in a complex and fast-paced technology and/or information security organization, within a large enterprise environment
  • Strong verbal, written, and interpersonal communication skills
  • Knowledge and understanding of implementing infrastructure upgrades, security patches, version upgrades for systems, appliances and HSM’s
  • Proven experience with change and incident management practices in medium to large enterprise environments
  • Knowledge and understanding of implementing infrastructure upgrades, security patches, version upgrades for systems, appliances and HSM’s
  • Experience with coding/scripting against Cyber security tools and products

What we offer

  • Health benefits
  • 401(k) Plan
  • Paid time off
  • Disability benefits
  • Life insurance, critical illness insurance, and accident insurance
  • Parental leave
  • Critical caregiving leave
  • Discounts and savings
  • Commuter benefits
  • Tuition reimbursement
  • Scholarships for dependent children
  • Adoption reimbursement
Wells Fargo - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Lead Information Security Engineer - Cryptographic Products and Services

8 matching positions

Chief Information Security Officer

We are seeking an experienced Chief Information Security Officer to lead our inf...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
sokin.com Logo
Sokin
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years in information security with 5+ years in senior security leadership roles
  • Experience in regulated financial services (payments, banking, or fintech)
  • Track record of building and leading security teams in scale-up environments
  • Experience with FCA regulation, PCI-DSS compliance, and financial services audits
  • Hands-on experience with security incident response and crisis management
  • Deep knowledge of AWS security services (GuardDuty, Security Hub, WAF, KMS, CloudTrail, Config)
  • Experience with containerised environments (EKS/Kubernetes) and serverless security
  • Strong understanding of network security, zero trust architecture, and micro-segmentation
  • Proficiency with SIEM platforms (Splunk, Datadog Security, or equivalent)
  • Knowledge of application security tools: Wiz, SonarQube, Burp Suite, OWASP ZAP
Job Responsibility
Job Responsibility
  • Define and execute the enterprise information security strategy aligned with business objectives
  • Establish and maintain the Information Security Management System (ISMS) to support constant certification readiness with PCI DSS, ISO 27001 and SOC2
  • Own security policies, standards, and procedures across the organisation
  • Report to the Board and senior leadership on security posture, risk exposure and programme maturity
  • Manage security budget and resource allocation
  • Lead enterprise security risk assessments and maintain the infosec item on the risk register
  • Ensure compliance with FCA operational resilience requirements and SYSC guidelines
  • Maintain PCI-DSS Level 1 compliance across payment processing infrastructure
  • Oversee GDPR, UK Data Protection Act, and international privacy compliance
  • Manage relationships with external auditors, penetration testers, and regulatory bodies
What we offer
What we offer
  • Competitive salary and equity participation
  • Hybrid working with flexibility
  • Private healthcare
  • Pension contribution
  • Professional development budget
  • Opportunity to shape security strategy at a high-growth fintech
Read More
Arrow Right

Staff Technical Support Engineer, Focused Services, NGFW

As a designated customer advocate under Focused Services, you will work firsthan...
Location
Location
United States , Plano
Salary
Salary:
117000.00 - 189200.00 USD / Year
paloaltonetworks.it Logo
Palo Alto Networks Italia
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of progressive, advanced experience in network operations, infrastructure engineering, or enterprise cybersecurity support
  • Bachelor's or Master's degree in Computer Science, Information Technology, Computer Architecture, or equivalent practical/military experience
  • Mastery-Level Network Analysis: Comprehensive, authoritative knowledge of multi-vendor networking fabrics, complex routing architectures (e.g., advanced BGP topologies, OSPF, EIGRP), packet-level micro-flows, and deep OSI-layer fault isolation
  • Enterprise Security Architecture: Expert-level mastery of Next-Generation Firewalls (NGFW), Cloud Security Access Brokers (CASB), SASE architectures, Zero Trust network access (ZTNA), and advanced cryptographic tunneling protocols (IPsec, SSL/TLS)
  • Identity & Modern Authentication Frameworks: In-depth technical proficiency with cloud-forward identity provider systems (IdP) and single sign-on (SSO) frameworks using advanced authentication protocols (e.g., SAML 2.0, OIDC, OAuth, along with standard RADIUS, TACACS+, and LDAP setups)
  • Systemic Project & Time Optimization: Demonstrated success in leading cross-functional initiatives, balancing strategic architectural engineering projects alongside high-priority customer commitments
Job Responsibility
Job Responsibility
  • Acutest Escalation Tier: Serve as the ultimate internal escalation point for the most complex, multi-layered, and critical technical emergencies globally, taking definitive technical ownership to resolve structural network security crises
  • Product Serviceability & Engineering Interface: Partner directly with Development, QA, and Product Management to identify systemic software defects, steer product feature roadmaps based on support data, and design proactive architectural solutions that minimize support overhead
  • Innovation & Support Automation: Pioneer advanced automated diagnostics, custom log parsing scripts, and predictive troubleshooting playbooks
  • Strategic Knowledge & Thought Leadership: Establish industry-leading documentation standards
  • author comprehensive, high-impact Technical Support Bulletins, advanced architecture whitepapers, and authoritative root-cause analysis documents for broad internal and external consumption
  • Global Talent Enablement: Design, build, and deliver technical onboarding curriculums and advanced training frameworks
  • Executive Advocacy: Act as a critical technical voice in Quarterly Business Reviews (QBRs) and high-stakes executive interactions, translating intricate, cross-vendor engineering issues into precise, business-impact terms for C-level stakeholders
What we offer
What we offer
  • restricted stock units
  • bonus
  • Fulltime
Read More
Arrow Right

Senior Staff Identity and Access Management Engineer

GEICO is seeking an experienced Engineer with a passion for building high perfor...
Location
Location
United States , Chevy Chase; Palo Alto; Dallas; Seattle
Salary
Salary:
120000.00 - 260000.00 USD / Year
geico.com Logo
Geico
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of professional experience in technology or identity engineering
  • 8+ years of experience with security, identity, architecture, and design
  • 4+ years of experience with open-source frameworks is desired
  • 4+ years of experience with AWS, GCP, Azure, or another cloud service
  • 1+ years of people management experience
  • Bachelor’s degree in computer science, Information Systems, or equivalent education or work experience
  • Experience building the architecture and design (architecture, design patterns, reliability, and scaling) of new and current systems
  • Fluency in DevOps Concepts, Cloud Architecture, and the Software Development Lifecycle
  • Experience in security protocols and products: Understanding of Active Directory, Kerberos, LDAP, SAML, OAuth, and OIDC
  • Experience with continuous delivery and infrastructure as code
Job Responsibility
Job Responsibility
  • Lead execution and adoption of modern authentication and authorization mechanisms (SAML, OIDC/OAUTH2)
  • Engage peers and leaders at all levels
  • Consistently share best practices and improve processes within and across teams
  • Determine and support resource requirements, evaluate operational processes, measure outcomes to ensure desired results, and demonstrate adaptability and sponsoring continuous learning
  • Own the complete project lifecycle for application integrations of both on-premises and SaaS applications with our IGA platform
  • Collaborate with application team to implement tokenization solutions that reduce sensitive data exposure, thereby enhancing data security and minimizing the risk of unauthorized access
  • Stay at the forefront of emerging identity trends, technologies, and best practices, and apply this knowledge to enhance GEICO’s data protection strategies
  • Provide technical guidance and mentorship to the team, fostering a culture of innovation, collaboration, and continuous improvements
  • Collaborate with cross-functional teams, including security, compliance, and application teams to ensure the seamless integration and alignment of solutions with organizational goals
  • Build resilient and scalable architecture, driving innovation and cost efficiency
What we offer
What we offer
  • Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being
  • Financial benefits including market-competitive compensation
  • a 401K savings plan vested from day one that offers a 6% match
  • performance and recognition-based incentives
  • and tuition assistance
  • Access to additional benefits like mental healthcare as well as fertility and adoption assistance
  • Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program, which offers the ability to work from anywhere in the US for up to four weeks per year
  • Fulltime
Read More
Arrow Right

Staff Cybersecurity Engineer - PKI/Secrets Management

The Role: We’re looking for a senior, self-driven Cyber Security Engineer to ow...
Location
Location
United States , Austin; Warren
Salary
Salary:
Not provided
gm.com Logo
General Motors
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Mathematics, Physics, or equivalent senior-level industry experience
  • 7+ years experience in enterprise security engineering or Site Reliability Engineering (SRE), with direct responsibility for high-availability security or cryptographic services
  • 7+ years experience with enterprise secrets management platforms (e.g., HashiCorp Vault, AWS Secrets Manager, Azure Key Vault, BeyondTrust), including architecture, operations, and integration at scale
  • Strong understanding of public-key cryptography, PKI, and modern cryptographic protocols, with the ability to make pragmatic, risk-informed design decisions
  • Demonstrated experience designing, operating, and evolving production PKI systems (root and issuing CAs, CRL/OCSP, certificate lifecycle, and policy governance)
  • Proficiency with infrastructure-as-code (e.g., Terraform) and engineering practices that enable repeatable, auditable, and secure deployments
  • Working knowledge of major cloud platforms (AWS, GCP, Azure) and how to integrate PKI and secrets management with cloud-native services
  • Experience with containerization, orchestration (e.g., Kubernetes), and CI/CD workflows, including secure delivery patterns and secrets handling
  • Excellent communication skills, with a track record of presenting complex technical concepts, trade-offs, and recommendations to engineering and executive audiences
  • Strong threat modeling and security architecture skills, with the ability to anticipate abuse cases and design for resilience
Job Responsibility
Job Responsibility
  • Setting the technical vision and architecting, implementing, and operating scalable, highly available PKI and secrets management services for the enterprise
  • Owning design decisions that shape internal trust models, cryptographic architectures, and access patterns for the most sensitive data and systems
  • Defining, implementing, and continuously improving policies, processes, and controls for the full lifecycle of keys, certificates, and secrets across diverse platforms
  • Influencing and aligning engineering, infrastructure, and leadership teams to deliver robust, observable, and compliant cryptographic systems
  • Mentoring and developing engineers, raising the bar for technical excellence, and driving consistent best practices for cryptographic and secrets management across the organization
  • Advising senior leadership on long-term security architecture strategy, trade-offs, and investment priorities related to identity, PKI, and secrets management
  • Providing operational leadership, including participation in on-call rotations for global, mission-critical services and driving post-incident improvements
  • Leading HSM strategy, including architecture, platform selection, appliance consolidation, and multi-year roadmap planning in alignment with enterprise security and compliance goals
  • Fulltime
Read More
Arrow Right

Staff Product Designer, Web3

We are seeking a passionate and highly experienced Staff Product Designer to joi...
Location
Location
Salary
Salary:
Not provided
deel.com Logo
Deel
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Deep Passion for Decentralization: A genuine, deep-seated passion for Web3, and the ethos of true digital ownership
  • Extensive Design Experience: A minimum of 7-9 years as a Product Designer, with at least 2 years leading holistic design as a Staff Product Designer (or equivalent title)
  • Data-Informed Design in an Anonymous World: Your design work is rooted in experimentation and evidence, utilizing qualitative data, protocol analytics, and on-chain metrics to back your decisions
  • Comfortable with High-Stakes Ambiguity: Able to drive clarity and high-quality solutions in a Web3 ecosystem that changes daily
  • Balances User Ownership and Protocol Requirements: Equally focused on empowering the user with true ownership (UX) and ensuring the integrity and security of the underlying protocol (Business/Technical needs)
  • Strong Communicator and Educator: An outstanding communicator capable of translating complex blockchain mechanics for a mainstream audience
  • Mentorship Experience: Proven track record of mentoring designers, helping them navigate the unique security and usability challenges of decentralized design
  • Cross-Functional Collaboration: Experienced working in an 'embedded' fashion with blockchain engineers and smart contract developers
  • Industry Knowledge: Solid-level knowledge of Crypto, DeFi, and digital asset management is non-negotiable
Job Responsibility
Job Responsibility
  • Lead Web3 Design Initiatives: Define, own, and deliver the end-to-end design for core decentralized services, DApps, and protocols. Translate the complexity of smart contracts, governance models, and token economics into intuitive, trustworthy user experiences
  • Collaborate Across the Chain: Work tightly with our engineering and protocol teams to understand the technical constraints and opportunities of various blockchains (e.g., Ethereum, Solana, Layer 2s). You'll be designing for immutability, which requires a whole new level of rigor
  • Advocate for Decentralized Design Systems: Champion a design system that is flexible enough for rapid Web3 innovation yet robust enough to handle high-security interfaces like wallets and staking mechanisms. You'll be designing the 'trust' layer
  • Prototype with Precision & Speed: Rapidly design, prototype, and test new features, focusing heavily on reducing friction in Web3 flows (wallet connection, transaction signing, gas fees, seed phrase security). Deliver thoughtful solutions in an environment where ambiguity is the norm, and regulation is a moving target
  • Mentor and Grow the Guild: Mentor Product Designers on the unique challenges of designing for decentralization, including education, security, and the psychological impact of self-custody. Lead design critique focused on crypto UX best practices
  • Make it feel native: Crypto and FIAT currency go hand in hand in Deel. Workers can withdraw both to their benefit and you will need to create a seamless experience between them
  • Drive Clarity from Cryptic Complexity: Navigate the deep technical waters of Web3 to distill complex cryptographic concepts, into crystal-clear user narratives and interfaces. If you can make a MetaMask transaction feel friendly, you're our person
  • Outstanding Communication and Community Facilitation: Bring people together - from anonymous users to core developers - through inspiring design and clear narratives. Effectively communicate a design vision within a transparent, often pseudonymous, community environment
What we offer
What we offer
  • Stock grant opportunities dependent on your role, employment status and location
  • Additional perks and benefits based on your employment status and country
  • The flexibility of remote work, including optional WeWork access
  • Fulltime
Read More
Arrow Right

Senior Product Security Low-Level Researcher

As a Product Security Low-Level Researcher at Island, you will focus on deep tec...
Location
Location
Israel , Tel Aviv
Salary
Salary:
Not provided
island.io Logo
Island
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of operating system internals, kernel architectures, or driver development (Linux, Windows, macOS, or mobile OSes)
  • Hands-on experience with low-level programming in C/C++, Rust, or assembly
  • scripting experience (e.g., Python) for tooling and automation
  • Background in kernel vulnerability research, driver auditing, exploit development, or advanced reverse engineering
  • Deep familiarity with low-level vulnerability classes (e.g., UAF, race conditions, logic bugs, privilege escalation, sandbox and isolation bypasses)
  • Experience with kernel debuggers, fuzzers, emulation, or virtualization-based analysis frameworks
  • Strong curiosity and research mindset, with a passion for understanding systems at their lowest layers and breaking assumptions they rely on
Job Responsibility
Job Responsibility
  • Low-Level Vulnerability Research: Research and discover vulnerabilities in operating system kernels, drivers, system services, virtualization layers, and low-level system components relevant to Island’s execution and trust boundaries
  • Kernel & OS Internals Analysis: Analyze kernel subsystems (memory management, scheduling, IPC, filesystems, networking) and OS security primitives to identify design flaws, logic bugs, and exploitation opportunities
  • Exploit Development & Validation: Develop proof-of-concept exploits for kernel- and driver-level issues to validate impact, assess exploitability, and inform mitigation strategies
  • Security Testing & Tooling: Design and build custom tooling for kernel fuzzing, syscall/interface testing, driver analysis, and low-level instrumentation across supported platforms
  • Cryptography & Trust Mechanisms: Assess the implementation and usage of cryptographic primitives, key management, secure boot, attestation, and hardware-backed security features, identifying weaknesses or misuse patterns
  • Threat Modeling at the System Level: Collaborate with architects, platform engineers, and the Product Security Lead to model threats across privilege boundaries, boot chains, isolation mechanisms, and OS-level integrations
  • Research Enablement & Knowledge Sharing: Track emerging exploitation techniques, kernel research, and advanced persistent threat tradecraft
  • contribute findings to internal playbooks, design guidance, and long-term security strategy
Read More
Arrow Right

Exploitation Analyst, Lead

As a computer network operations (CNO) specialist, you know that embedded and ap...
Location
Location
United States , Annapolis Junction
Salary
Salary:
112800.00 - 257000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience with computer network operations capability development and engineering services, including defense and exploitation to gain strategic advantages
  • Experience with leading-edge principles, theories, and concepts
  • Experience with advanced software development, analytic development, and DevOps techniques for malware variants, advancing crypt capabilities, and emerging unknown protocols
  • Experience gathering requirements and designing and developing approaches for product security and resilience cryptographic solutions and anti-forensic measures
  • Experience with indigenous and vendor proprietary protocols
  • Experience using automation and virtualization to deploy, maintain, and sustain capabilities, developing and executing strategies for countering or mitigating environmental challenges, security and policy constraints, and system or architecture limitations
  • TS/SCI clearance with a polygraph
  • Bachelor’s degree
Job Responsibility
Job Responsibility
  • Oversee full project lifecycles
  • Lead an agile team of professionals
  • Guide reverse engineering and vulnerability analyses on a range of software problems
  • Inform operational parameters for complex systems
  • Leverage artificial intelligence and machine learning to influence the delivery of your work
  • Determine what the art of the possible is and what can be done—and then bring it to life for your clients
What we offer
What we offer
  • Health, life, disability, financial, and retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Recognition awards program
Read More
Arrow Right

Exploitation Analyst, Senior

As a computer network operations (CNO) specialist, you know that embedded applic...
Location
Location
United States , Annapolis Junction
Salary
Salary:
112800.00 - 257000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience with computer network operations capability development and engineering services, including defense and exploitation to gain strategic advantages
  • Experience with leading-edge principles, theories, and concepts
  • Experience with advanced software development, analytic development, and DevOps techniques for malware variants, advancing crypt capabilities, and emerging unknown protocols
  • Experience gathering requirements and designing and developing approaches for product security and resilience cryptographic solutions and anti-forensic measures
  • Experience with indigenous and vendor proprietary protocols
  • Experience using automation and virtualization to deploy, maintain, and sustain capabilities and developing and executing strategies for countering or mitigating environmental challenges, security and policy constraints, and system or architecture limitations
  • TS/SCI clearance with a polygraph
  • Bachelor’s degree
Job Responsibility
Job Responsibility
  • Support full project lifecycles
  • Guide an agile team of professionals
  • Manage reverse engineering and vulnerability analysis on a range of software problems
  • Inform operational parameters for complex systems
  • Leverage artificial intelligence and machine learning to influence the delivery of your work
  • Determine what the art of the possible is and what can be done—and then bring it to life for your clients
  • Help combat the most advanced adversaries and defend national security
What we offer
What we offer
  • Health, life, disability, financial, and retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Recognition awards program
Read More
Arrow Right