CrawlJobs Logo

Lead Information Security Engineer - Cryptographic Products and Services

https://www.wellsfargo.com/ Logo

Wells Fargo

Location Icon

Location:
United States , Irving

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Employment contract

Salary Icon

Salary:

119000.00 - 187000.00 USD / Year
Save Job
Save Icon
Job offer has expired

Job Description:

Wells Fargo is seeking a motivated Lead Information Security Engineer to join an exciting, fast paced team working on cutting edge encryption, tokenization and key management technologies that are leveraged to protect information companywide. This role will provide technical leadership, and be an individual contributor, to teams that design, deploy, and operationally maintain cryptographic products and services including Hardware Security Modules (HSMs) and security appliances. The ideal candidate will have demonstrated experience in the design and deployment of cryptographic products in physical, virtual, and containerized environments. The ideal candidate will also have demonstrated experience in automating processes including product builds, operational maintenance, and customer integration and onboarding. This role reports directly to the Senior Manager for the Encryption, Tokenization and Key Management team.

Job Responsibility:

  • Drive design, deployment and automation strategies for encryption, tokenization and key management products and services including Hardware Security Modules, security appliances and security applications deploying in physical, virtual, and containerized environments
  • Provide technical guidance and oversight to teams and team members responsible for product delivery and operational maintenance
  • Develop and maintain documentation including design and build guides, deployment strategies, automation guides and operational processes
  • Participate in research, analysis and evaluation of new cryptographic products and services
  • Participate in Proof of Concept (POC) testing and demonstrations for new cryptographic products and services
  • Support company driven audits, gather evidence of compliance to company policies, and drive product enhancements, when needed, to remediate findings
  • Conduct technical investigation of incidents to identify causes and recommend future mitigation strategies
  • Collaborate across Wells Fargo teams, including compliance, security architecture and security evaluation teams to ensure cryptographic products are compliant to company policies
  • Work with vendors to understand the technology vendor's roadmap, help to influence that roadmap, and ensure requests for technology/product enhancements are meeting the needs of Wells Fargo
  • Work with partner engineering teams on identification and remediation of security vulnerabilities and may also conduct risk assessments of infrastructure to ensure compliance with corporate security policies and adherence to best practices
  • Support incident response, root cause analysis and corrective action activities
  • Oversee team of engineers and influence design/architecture decisions regarding encryption infrastructure to support our line of business customers
  • Ensure design decisions consider blast radius and business resiliency requirements to reduce / eliminate impact during service changes or DDOS type events, among others

Requirements:

  • 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  • 5+ years of experience in automation development, platform engineering, or information security engineering, or an equivalent combination of education, training, and professional experience
  • 4+ years of hands‑on experience developing production‑grade automation and scripts using one or more of the following: Python, PowerShell, Bash : Ansible or similar orchestration/configuration tools : JavaScript, VBScript, or workflow automation platforms
  • 4+ years experience in automating tasks across Linux and Windows server environments
  • 4+ years hands on experience to design scalable, repeatable, and maintainable automation solutions
  • 2+ years demonstrated experience acting in a lead engineering role, providing technical direction and mentorship to other engineers
  • 4+ years experience working with APIs, service integrations, and command‑line tooling
  • 4+ years experience in software development fundamentals, including version control, testing, and documentation

Nice to have:

  • Experience automating workflows involving encryption, tokenization, or enterprise key management systems
  • Working knowledge of cryptographic concepts, protocols, and algorithms, with the ability to support them through automation
  • Experience designing and automating solutions that integrate with Hardware Security Modules (HSMs) or other security appliances
  • Hands‑on experience with DevOps and CI/CD pipelines, including automated build, test, and deployment processes
  • Advanced scripting experience focused on: Log rotation and normalization, Automated telemetry and data collection, Error handling, alerting, and remediation workflows
  • Experience designing and implementing synthetic transactions or automated probes for application and infrastructure monitoring
  • Familiarity with configuration and infrastructure automation tools such as Ansible, Puppet, or Chef
  • Experience working in Agile delivery models (Scrum or Kanban)
  • Application development experience, particularly in building automation services or internal tools
  • Experience supporting and automating applications in hybrid on‑prem and cloud environments
  • Strong analytical, troubleshooting, and root‑cause analysis skills
  • Experience automating: Infrastructure upgrades, Security patching, Version and firmware upgrades for systems, appliances, and HSMs
  • Familiarity with enterprise monitoring, reporting, and observability platforms
  • Experience working in large, complex enterprise environments
  • Strong written and verbal communication skills, with the ability to clearly explain technical automation solutions
  • Experience integrating automation within change, incident, and problem management processes
  • Demonstrated ability to mentor or guide junior engineers in automation and scripting best practices
What we offer:
  • Health benefits
  • 401(k) Plan
  • Paid time off
  • Disability benefits
  • Life insurance, critical illness insurance, and accident insurance
  • Parental leave
  • Critical caregiving leave
  • Discounts and savings
  • Commuter benefits
  • Tuition reimbursement
  • Scholarships for dependent children
  • Adoption reimbursement

Additional Information:

Job Posted:
May 05, 2026

Expiration:
May 08, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Wells Fargo - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon
PREMIUM
More languages and countries
+ Unlock 31694 hidden job offers
Languages
English Čeština Deutsch Ελληνικά Español Français +15
Countries
United States United Kingdom India Canada Australia +
See plans
Plans from $2.99 / month

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Lead Information Security Engineer - Cryptographic Products and Services

Chief Information Security Officer

We are seeking an experienced Chief Information Security Officer to lead our inf...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
sokin.com Logo
Sokin
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years in information security with 5+ years in senior security leadership roles
  • Experience in regulated financial services (payments, banking, or fintech)
  • Track record of building and leading security teams in scale-up environments
  • Experience with FCA regulation, PCI-DSS compliance, and financial services audits
  • Hands-on experience with security incident response and crisis management
  • Deep knowledge of AWS security services (GuardDuty, Security Hub, WAF, KMS, CloudTrail, Config)
  • Experience with containerised environments (EKS/Kubernetes) and serverless security
  • Strong understanding of network security, zero trust architecture, and micro-segmentation
  • Proficiency with SIEM platforms (Splunk, Datadog Security, or equivalent)
  • Knowledge of application security tools: Wiz, SonarQube, Burp Suite, OWASP ZAP
Job Responsibility
Job Responsibility
  • Define and execute the enterprise information security strategy aligned with business objectives
  • Establish and maintain the Information Security Management System (ISMS) to support constant certification readiness with PCI DSS, ISO 27001 and SOC2
  • Own security policies, standards, and procedures across the organisation
  • Report to the Board and senior leadership on security posture, risk exposure and programme maturity
  • Manage security budget and resource allocation
  • Lead enterprise security risk assessments and maintain the infosec item on the risk register
  • Ensure compliance with FCA operational resilience requirements and SYSC guidelines
  • Maintain PCI-DSS Level 1 compliance across payment processing infrastructure
  • Oversee GDPR, UK Data Protection Act, and international privacy compliance
  • Manage relationships with external auditors, penetration testers, and regulatory bodies
What we offer
What we offer
  • Competitive salary and equity participation
  • Hybrid working with flexibility
  • Private healthcare
  • Pension contribution
  • Professional development budget
  • Opportunity to shape security strategy at a high-growth fintech
Read More
Arrow Right

Lead, Cryptographic Security Engineer

Location
Location
Ireland , Dublin 18
Salary
Salary:
Not provided
mastercard.com Logo
Mastercard
Expiration Date
May 29, 2026
Flip Icon
Requirements
Requirements
  • Experience providing secure design advice for web-based environments and secure communication, including mobile applications, web applications and web services
  • Demonstrate a broad awareness of security engineering concepts and practices across all phases of the software development lifecycle
  • Strong understanding of information security, risk and data privacy within the domain of digital commerce including relevant practical experience
  • Knowledge of cryptography, including several of the following: encryption, hashing, key management, digital certificates, TLS, PKCS#11, HSMs
  • Demonstrate technical competency in security engineering based on hands-on experience or relevant qualifications
  • Working knowledge and technical security experience with UNIX, Linux, Solaris, AIX, or Windows
  • Ability to perform analysis, review and design of custom systems, not just product implementation or operations
  • Strong verbal and written communication skills
  • Demonstrate the ability to articulate and communicate effectively to diverse audiences and properly translates security and risk management terminology into business terms and recommends alternative solutions to these stakeholders
  • Design and implement data models and analytics framework into crypto inventory to aggregate, track, and maintain governance over cryptographic assets across the enterprise
Job Responsibility
Job Responsibility
  • Contribute to the execution the Cryptographic roadmap for Mastercard –enhancing security posture and enforcing governance and compliance to the Cryptographic and Key Management standards
  • Analyze current cryptographic implementations and identify deviations from our standards
  • Provide technical design and architecture advice to internal teams on how to securely develop and build applications and supporting systems
  • Partner with application teams to determine path to compliance - articulate short, medium and long term plans when necessary
  • Define secure mechanisms for critical business functions, for both on-premises and in cloud environments
  • Assist in the strategy, standards, and architecture for the cryptography, PKI and key management aspects of the SDLC including application, mobile, web service, DevOps, cloud, and CI/CD efforts
  • Define security requirements and guidelines to ensure repeatable processes are followed globally
  • Assist in the strategy, standards, and architecture for the security aspects of key management and operation
  • Provide security advice in cryptography, including several of the following: encryption, hashing, key management, digital certificates, TLS
  • Build out next generation governance model with the intent of understanding our assets and protecting them with proper encryption practices
  • Fulltime
!
Read More
Arrow Right

Staff Cybersecurity Engineer - PKI/Secrets Management

The Role: We’re looking for a senior, self-driven Cyber Security Engineer to ow...
Location
Location
United States , Austin; Warren
Salary
Salary:
Not provided
gm.com Logo
General Motors
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Mathematics, Physics, or equivalent senior-level industry experience
  • 7+ years experience in enterprise security engineering or Site Reliability Engineering (SRE), with direct responsibility for high-availability security or cryptographic services
  • 7+ years experience with enterprise secrets management platforms (e.g., HashiCorp Vault, AWS Secrets Manager, Azure Key Vault, BeyondTrust), including architecture, operations, and integration at scale
  • Strong understanding of public-key cryptography, PKI, and modern cryptographic protocols, with the ability to make pragmatic, risk-informed design decisions
  • Demonstrated experience designing, operating, and evolving production PKI systems (root and issuing CAs, CRL/OCSP, certificate lifecycle, and policy governance)
  • Proficiency with infrastructure-as-code (e.g., Terraform) and engineering practices that enable repeatable, auditable, and secure deployments
  • Working knowledge of major cloud platforms (AWS, GCP, Azure) and how to integrate PKI and secrets management with cloud-native services
  • Experience with containerization, orchestration (e.g., Kubernetes), and CI/CD workflows, including secure delivery patterns and secrets handling
  • Excellent communication skills, with a track record of presenting complex technical concepts, trade-offs, and recommendations to engineering and executive audiences
  • Strong threat modeling and security architecture skills, with the ability to anticipate abuse cases and design for resilience
Job Responsibility
Job Responsibility
  • Setting the technical vision and architecting, implementing, and operating scalable, highly available PKI and secrets management services for the enterprise
  • Owning design decisions that shape internal trust models, cryptographic architectures, and access patterns for the most sensitive data and systems
  • Defining, implementing, and continuously improving policies, processes, and controls for the full lifecycle of keys, certificates, and secrets across diverse platforms
  • Influencing and aligning engineering, infrastructure, and leadership teams to deliver robust, observable, and compliant cryptographic systems
  • Mentoring and developing engineers, raising the bar for technical excellence, and driving consistent best practices for cryptographic and secrets management across the organization
  • Advising senior leadership on long-term security architecture strategy, trade-offs, and investment priorities related to identity, PKI, and secrets management
  • Providing operational leadership, including participation in on-call rotations for global, mission-critical services and driving post-incident improvements
  • Leading HSM strategy, including architecture, platform selection, appliance consolidation, and multi-year roadmap planning in alignment with enterprise security and compliance goals
  • Fulltime
Read More
Arrow Right

Senior Product Security Low-Level Researcher

As a Product Security Low-Level Researcher at Island, you will focus on deep tec...
Location
Location
Israel , Tel Aviv
Salary
Salary:
Not provided
island.io Logo
Island
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of operating system internals, kernel architectures, or driver development (Linux, Windows, macOS, or mobile OSes)
  • Hands-on experience with low-level programming in C/C++, Rust, or assembly
  • scripting experience (e.g., Python) for tooling and automation
  • Background in kernel vulnerability research, driver auditing, exploit development, or advanced reverse engineering
  • Deep familiarity with low-level vulnerability classes (e.g., UAF, race conditions, logic bugs, privilege escalation, sandbox and isolation bypasses)
  • Experience with kernel debuggers, fuzzers, emulation, or virtualization-based analysis frameworks
  • Strong curiosity and research mindset, with a passion for understanding systems at their lowest layers and breaking assumptions they rely on
Job Responsibility
Job Responsibility
  • Low-Level Vulnerability Research: Research and discover vulnerabilities in operating system kernels, drivers, system services, virtualization layers, and low-level system components relevant to Island’s execution and trust boundaries
  • Kernel & OS Internals Analysis: Analyze kernel subsystems (memory management, scheduling, IPC, filesystems, networking) and OS security primitives to identify design flaws, logic bugs, and exploitation opportunities
  • Exploit Development & Validation: Develop proof-of-concept exploits for kernel- and driver-level issues to validate impact, assess exploitability, and inform mitigation strategies
  • Security Testing & Tooling: Design and build custom tooling for kernel fuzzing, syscall/interface testing, driver analysis, and low-level instrumentation across supported platforms
  • Cryptography & Trust Mechanisms: Assess the implementation and usage of cryptographic primitives, key management, secure boot, attestation, and hardware-backed security features, identifying weaknesses or misuse patterns
  • Threat Modeling at the System Level: Collaborate with architects, platform engineers, and the Product Security Lead to model threats across privilege boundaries, boot chains, isolation mechanisms, and OS-level integrations
  • Research Enablement & Knowledge Sharing: Track emerging exploitation techniques, kernel research, and advanced persistent threat tradecraft
  • contribute findings to internal playbooks, design guidance, and long-term security strategy
Read More
Arrow Right

Exploitation Analyst, Lead

As a computer network operations (CNO) specialist, you know that embedded and ap...
Location
Location
United States , Annapolis Junction
Salary
Salary:
112800.00 - 257000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience with computer network operations capability development and engineering services, including defense and exploitation to gain strategic advantages
  • Experience with leading-edge principles, theories, and concepts
  • Experience with advanced software development, analytic development, and DevOps techniques for malware variants, advancing crypt capabilities, and emerging unknown protocols
  • Experience gathering requirements and designing and developing approaches for product security and resilience cryptographic solutions and anti-forensic measures
  • Experience with indigenous and vendor proprietary protocols
  • Experience using automation and virtualization to deploy, maintain, and sustain capabilities, developing and executing strategies for countering or mitigating environmental challenges, security and policy constraints, and system or architecture limitations
  • TS/SCI clearance with a polygraph
  • Bachelor’s degree
Job Responsibility
Job Responsibility
  • Oversee full project lifecycles
  • Lead an agile team of professionals
  • Guide reverse engineering and vulnerability analyses on a range of software problems
  • Inform operational parameters for complex systems
  • Leverage artificial intelligence and machine learning to influence the delivery of your work
  • Determine what the art of the possible is and what can be done—and then bring it to life for your clients
What we offer
What we offer
  • Health, life, disability, financial, and retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Recognition awards program
Read More
Arrow Right

Exploitation Analyst, Senior

As a computer network operations (CNO) specialist, you know that embedded applic...
Location
Location
United States , Annapolis Junction
Salary
Salary:
112800.00 - 257000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience with computer network operations capability development and engineering services, including defense and exploitation to gain strategic advantages
  • Experience with leading-edge principles, theories, and concepts
  • Experience with advanced software development, analytic development, and DevOps techniques for malware variants, advancing crypt capabilities, and emerging unknown protocols
  • Experience gathering requirements and designing and developing approaches for product security and resilience cryptographic solutions and anti-forensic measures
  • Experience with indigenous and vendor proprietary protocols
  • Experience using automation and virtualization to deploy, maintain, and sustain capabilities and developing and executing strategies for countering or mitigating environmental challenges, security and policy constraints, and system or architecture limitations
  • TS/SCI clearance with a polygraph
  • Bachelor’s degree
Job Responsibility
Job Responsibility
  • Support full project lifecycles
  • Guide an agile team of professionals
  • Manage reverse engineering and vulnerability analysis on a range of software problems
  • Inform operational parameters for complex systems
  • Leverage artificial intelligence and machine learning to influence the delivery of your work
  • Determine what the art of the possible is and what can be done—and then bring it to life for your clients
  • Help combat the most advanced adversaries and defend national security
What we offer
What we offer
  • Health, life, disability, financial, and retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Recognition awards program
Read More
Arrow Right

Staff Product Designer, Web3

We are seeking a passionate and highly experienced Staff Product Designer to joi...
Location
Location
Salary
Salary:
Not provided
deel.com Logo
Deel
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Deep Passion for Decentralization: A genuine, deep-seated passion for Web3, and the ethos of true digital ownership
  • Extensive Design Experience: A minimum of 7-9 years as a Product Designer, with at least 2 years leading holistic design as a Staff Product Designer (or equivalent title)
  • Data-Informed Design in an Anonymous World: Your design work is rooted in experimentation and evidence, utilizing qualitative data, protocol analytics, and on-chain metrics to back your decisions
  • Comfortable with High-Stakes Ambiguity: Able to drive clarity and high-quality solutions in a Web3 ecosystem that changes daily
  • Balances User Ownership and Protocol Requirements: Equally focused on empowering the user with true ownership (UX) and ensuring the integrity and security of the underlying protocol (Business/Technical needs)
  • Strong Communicator and Educator: An outstanding communicator capable of translating complex blockchain mechanics for a mainstream audience
  • Mentorship Experience: Proven track record of mentoring designers, helping them navigate the unique security and usability challenges of decentralized design
  • Cross-Functional Collaboration: Experienced working in an 'embedded' fashion with blockchain engineers and smart contract developers
  • Industry Knowledge: Solid-level knowledge of Crypto, DeFi, and digital asset management is non-negotiable
Job Responsibility
Job Responsibility
  • Lead Web3 Design Initiatives: Define, own, and deliver the end-to-end design for core decentralized services, DApps, and protocols. Translate the complexity of smart contracts, governance models, and token economics into intuitive, trustworthy user experiences
  • Collaborate Across the Chain: Work tightly with our engineering and protocol teams to understand the technical constraints and opportunities of various blockchains (e.g., Ethereum, Solana, Layer 2s). You'll be designing for immutability, which requires a whole new level of rigor
  • Advocate for Decentralized Design Systems: Champion a design system that is flexible enough for rapid Web3 innovation yet robust enough to handle high-security interfaces like wallets and staking mechanisms. You'll be designing the 'trust' layer
  • Prototype with Precision & Speed: Rapidly design, prototype, and test new features, focusing heavily on reducing friction in Web3 flows (wallet connection, transaction signing, gas fees, seed phrase security). Deliver thoughtful solutions in an environment where ambiguity is the norm, and regulation is a moving target
  • Mentor and Grow the Guild: Mentor Product Designers on the unique challenges of designing for decentralization, including education, security, and the psychological impact of self-custody. Lead design critique focused on crypto UX best practices
  • Make it feel native: Crypto and FIAT currency go hand in hand in Deel. Workers can withdraw both to their benefit and you will need to create a seamless experience between them
  • Drive Clarity from Cryptic Complexity: Navigate the deep technical waters of Web3 to distill complex cryptographic concepts, into crystal-clear user narratives and interfaces. If you can make a MetaMask transaction feel friendly, you're our person
  • Outstanding Communication and Community Facilitation: Bring people together - from anonymous users to core developers - through inspiring design and clear narratives. Effectively communicate a design vision within a transparent, often pseudonymous, community environment
What we offer
What we offer
  • Stock grant opportunities dependent on your role, employment status and location
  • Additional perks and benefits based on your employment status and country
  • The flexibility of remote work, including optional WeWork access
  • Fulltime
Read More
Arrow Right

Senior Staff Identity and Access Management Engineer

GEICO is seeking an experienced Engineer with a passion for building high perfor...
Location
Location
United States , Chevy Chase; Palo Alto; Dallas; Seattle
Salary
Salary:
120000.00 - 260000.00 USD / Year
geico.com Logo
Geico
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of professional experience in technology or identity engineering
  • 8+ years of experience with security, identity, architecture, and design
  • 4+ years of experience with open-source frameworks is desired
  • 4+ years of experience with AWS, GCP, Azure, or another cloud service
  • 1+ years of people management experience
  • Bachelor’s degree in computer science, Information Systems, or equivalent education or work experience
  • Experience building the architecture and design (architecture, design patterns, reliability, and scaling) of new and current systems
  • Fluency in DevOps Concepts, Cloud Architecture, and the Software Development Lifecycle
  • Experience in security protocols and products: Understanding of Active Directory, Kerberos, LDAP, SAML, OAuth, and OIDC
  • Experience with continuous delivery and infrastructure as code
Job Responsibility
Job Responsibility
  • Lead execution and adoption of modern authentication and authorization mechanisms (SAML, OIDC/OAUTH2)
  • Engage peers and leaders at all levels
  • Consistently share best practices and improve processes within and across teams
  • Determine and support resource requirements, evaluate operational processes, measure outcomes to ensure desired results, and demonstrate adaptability and sponsoring continuous learning
  • Own the complete project lifecycle for application integrations of both on-premises and SaaS applications with our IGA platform
  • Collaborate with application team to implement tokenization solutions that reduce sensitive data exposure, thereby enhancing data security and minimizing the risk of unauthorized access
  • Stay at the forefront of emerging identity trends, technologies, and best practices, and apply this knowledge to enhance GEICO’s data protection strategies
  • Provide technical guidance and mentorship to the team, fostering a culture of innovation, collaboration, and continuous improvements
  • Collaborate with cross-functional teams, including security, compliance, and application teams to ensure the seamless integration and alignment of solutions with organizational goals
  • Build resilient and scalable architecture, driving innovation and cost efficiency
What we offer
What we offer
  • Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being
  • Financial benefits including market-competitive compensation
  • a 401K savings plan vested from day one that offers a 6% match
  • performance and recognition-based incentives
  • and tuition assistance
  • Access to additional benefits like mental healthcare as well as fertility and adoption assistance
  • Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program, which offers the ability to work from anywhere in the US for up to four weeks per year
  • Fulltime
Read More
Arrow Right