CrawlJobs Logo
Wells Fargo Logo Wells Fargo · IT - Administration

Lead Technology Risk Officer - Application Domain, SDLC and Application Engineering

United States, Charlotte Employment contract 119000.00 - 187000.00 USD / Year · Job Posted June 01, 2026
Apply Position
Job Link Share

Job Description

The Application Risk Domain Officer operates within Technology Risk Management (TRM), part of Corporate Risk, providing independent second line oversight across application domains. The role is part of the Information Security and Application Risk Domain Team, which performs domain level evaluation and produces evidence based views of how application conditions contribute to enterprise risk exposure. The role engages with Technology, including Tech Operations, CIO organizations, to provide challenge and inform risk based decisions. Outputs from this role support enterprise risk views provided to senior management, risk committees, and regulators. The Application Risk Domain Officer (P4) serves as the second line oversight lead across assigned domains and is a deeply technical individual contributor who provides second-line risk oversight across modern software engineering environments and has responsibility across the application risk domain. This role focuses on secure SDLC execution, application delivery controls, engineering standards, and the technical risks that arise throughout design, development, testing, deployment, and change management activities. The individual in this role must be able to engage application engineering teams with confidence, identify control weaknesses in complex delivery environments, and translate technical observations into clear, actionable risk insights. The ideal candidate brings strong practitioner knowledge of application development and delivery processes, combined with experience in technology risk, controls, or related oversight functions.

Job Responsibility

  • Provide second-line oversight and credible challenge across application engineering and SDLC practices, including requirements management, application design, secure coding, testing, deployment, change control, and defect remediation
  • Assess application development processes and control implementations to identify key technology risks related to code quality, security, resiliency, release readiness, segregation of duties, and production change governance
  • Review application architectures, development workflows, and engineering evidence to evaluate whether controls are appropriately designed and operating effectively within the software lifecycle
  • Partner with application engineering, information security, architecture, and control teams to support consistent risk management practices across SDLC activities and engineering initiatives
  • Analyze issues identified through assessments, incidents, control testing, or thematic reviews and convert technical findings into clear risk statements, remediation guidance, and prioritized actions
  • Apply advanced analytics and AI tools to support risk assessments, trend analysis, and insight generation across SDLC and application engineering processes
  • Identify recurring control gaps, process inefficiencies, and risk patterns in development and release practices, and recommend practical solutions that improve operational effectiveness
  • Support the development of metrics, reporting, and visualizations that help stakeholders understand risk themes, control performance, and remediation progress
  • Provide leadership in the defined domain of SDLC and application engineering risk by sharing expertise, helping refine standards, and contributing to broader technology risk initiatives.

Requirements

5+ years of Technology Risk experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education.

Nice to have

  • 5+ years of experience spanning software engineering, DevSecOps, platform engineering, cloud engineering, application security, with direct experience in technology risk, technology controls, or second-line risk oversight in complex technological environments
  • Strong knowledge of software development lifecycle practices, including requirements, design, coding, testing, deployment, release management, and production support
  • Experience assessing or supporting controls related to application development, secure coding, change management, defect management, access control, release readiness, and production governance
  • Ability to review technical documentation, system designs, development artifacts, and engineering evidence to identify potential control weaknesses and risk exposures
  • Ability to work effectively with engineering and risk stakeholders in complex situations to support meaningful risk mitigation outcomes
  • Practical understanding of how analytics and AI tools can support risk identification, analysis, visualization, and decision making in complex technology environments
  • Experience performing risk assessments or oversight activities in application engineering or software delivery environments
  • Strong analytical, problem-solving, and communication skills with the ability to translate technical details into clear recommendations and actions
  • Background in software engineering, application development, application security, quality engineering, or DevSecOps
  • Knowledge of AI-assisted development or analytics use cases relevant to software engineering and risk oversight
  • Experience in financial services, highly regulated environments, or large enterprise technology organizations
  • Knowledge of secure SDLC principles, common application security risks, software delivery controls, and risk or control frameworks relevant to application engineering
  • Familiarity with development tools and platforms such as GitHub, GitLab, Jenkins, Azure DevOps, ticketing systems, test automation tools, or cloud-based engineering platforms
  • Relevant certifications such as CISA, CRISC, CISSP, CSSLP, cloud certifications, or similar credentials.
Wells Fargo - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Lead Technology Risk Officer - Application Domain, SDLC and Application Engineering

8 matching positions

New

Senior Lead Technology Risk Officer - Application Domain, SDLC, DevOps and AI

The Application Risk Domain Officer operates within Technology Risk Management (...
Location
Location
United States , Charlotte
Salary
Salary:
159000.00 - 254000.00 USD / Year
https://www.wellsfargo.com/ Logo
Wells Fargo
Expiration Date
June 03, 2026
Flip Icon
Requirements
Requirements
  • 7+ years of Technology Risk experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  • 7+ years of experience spanning software engineering, DevSecOps, platform engineering, cloud engineering, application security, with direct experience in technology risk, technology controls, or second-line risk oversight in complex technological environments
  • deep hands-on knowledge of modern SDLC and DevOps practices, including source control, code review, branching and release strategies, CI/CD design, automated testing, deployment automation, and production change controls
  • experience performing technical risk assessments, control evaluations, and credible challenge across SDLC, DevOps, software supply chain, cloud, and AI-enabled engineering environments to translate findings into concise risk narratives, control gaps, remediation expectations, and executive reporting
  • ability to read and interpret architecture patterns, deployment designs, control implementations, technical standards, and engineering evidence with sufficient depth to challenge first-line technical decisions
  • experience with AI governance and controls, or model risk concepts as applied to engineering productivity tools, agentic workflows, or AI-assisted software delivery, and the risks associated with them
  • strong judgment, analytical rigor, and communication skills with the ability to influence senior stakeholders while maintaining credibility with technical teams
  • knowledge of industry frameworks and guidance relevant to technology and security risk, such as NIST, SSDF, COBIT, FFIEC guidance, ISO 27001, or similar frameworks
  • strong technical understanding of developer platforms and engineering toolchains, including technologies such as GitHub or GitLab, Jenkins or Azure DevOps, artifact repositories, package managers, Terraform, containers, Kubernetes, and major cloud platforms
  • hands-on familiarity with engineering and security tooling used in modern delivery environments, including static and dynamic analysis, software composition analysis, container security, CSPM, CI/CD security controls, and observability platforms
Job Responsibility
Job Responsibility
  • Provide expert second-line oversight of modern engineering practices, including application architecture patterns, secure SDLC, CI/CD, DevSecOps, platform engineering, infrastructure as code, containerized workloads, and production release controls
  • Own second-line technology risk coverage and provide thought leadership across the application risk domain, partnering closely with first-line engineering, controls and technology teams to drive consistent oversight of application architecture, development practices, deployment pipelines, and supporting engineering controls
  • Perform technically rigorous assessments of source control workflows, branching strategies, build systems, test automation, artifact repositories, package dependencies, deployment orchestration, and runtime platform configurations to identify control weaknesses and systemic risk
  • Evaluate the integrity of software delivery pipelines end to end, including code provenance, pipeline trust boundaries, secrets handling, approval models, environment segregation, artifact immutability, and rollback or recovery capabilities
  • Lead deep-dive technical risk reviews of complex delivery environments and modernization programs, converting architecture, pipeline, and operational observations into clear risk statements, root causes, and targeted remediation expectations
  • Analyze developer ecosystems and engineering tool chains at a practitioner level, including repositories, CI runners, build agents, package managers, IaC frameworks, containers, Kubernetes, cloud services, and observability stacks
  • Evaluate AI-enabled engineering capabilities, including code assistants, prompt-based development workflows, automated test generation, agentic tooling, and model-integrated developer platforms, with emphasis on data exposure, unsafe code generation, traceability, and human review requirements
  • Review design and implementation patterns for application and platform controls, such as policy-as-code, secrets management, service identity, environment hardening, logging, monitoring, drift detection, and release gating
  • Develop technically meaningful risk indicators and challenge metrics for SDLC, DevOps, and AI-enabled engineering, such as deployment control exceptions, pipeline bypasses, privileged access patterns, dependency exposure, control coverage gaps, and remediation aging
  • Serve as a trusted technical risk partner to engineering, security, architecture, and control teams by applying expert discipline knowledge to high-impact decisions and shaping resilient engineering practices across the enterprise
  • Fulltime
!
Read More
Arrow Right

Digital Software Engineer Lead Analyst VP

The Digital S/W Eng Lead Analyst is a strategic professional who stays abreast o...
Location
Location
United States , Irving
Salary
Salary:
138720.00 - 208080.00 USD / Year
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6-10 years of relevant experience
  • Exhibit expertise in all aspects of technology by understanding broader patterns and techniques as they apply to Citi’s internal and external cloud platforms (AWS, PCF, Akamai)
  • Lead resources and serve as a functional SME across the company through advanced knowledge of algorithms, data structures, distributed systems, networking, use of knowledge and experience to lead, architect, and drive broader adoption forward
  • Acquire relevant technology and financial industry skills (AWS PWS) and understand all aspects of NGA technology – including innovative approaches and new opportunities
  • Demonstrate knowledge on automating code quality, code performance, unit testing, and build processing in the CI/CD
  • Bachelor’s/University degree, Master’s degree preferred
  • 6-10 years of relevant professional experience, with a significant portion dedicated to technology leadership within Wealth Management or the broader Banking domain
  • Hands-on expertise in developing robust, enterprise-grade applications leveraging modern technology stacks, including: Frontend development using Angular or similar JavaScript frameworks
  • Backend development utilizing Java microservices architecture
  • Designing and implementing RESTful APIs
Job Responsibility
Job Responsibility
  • Accountable for executing and driving results on large-scale efforts or multiple smaller efforts and serving as a development lead for most medium and large projects. This includes expertise with application development methodologies and standards for program analysis, design, coding, testing, debugging and implementation
  • Accountable for exhibiting a strong understanding of client core business functions
  • Required to support situations in which end user consultation is required to identify system function specifications and incorporate them into overall system design and delivery. Additionally, utilize comprehensive knowledge of multiple areas within technology to achieve technological objectives
  • Independent work style, requiring little or no guidance by more senior developers. Decisions will make a significant, measurable impact on the business goals for the client organization. During team discussions you will play a significant role with TPMs and engineering managers to determine potential risks to a schedule
  • Assist in the planning and managing of application development assignments generally involving large budgets, cross functional projects or multiple projects. This includes effectively understanding and analyzing both technical and business risks and impact
  • Expected to effectively communicate those risks to the business owners, so that they can make informed decisions
  • Accountable for providing guidance on architecturally significant efforts during the preplanning phase, and ensuring principles and best practices are followed prior to initiation of work. In doing so, closely watch and evaluate Digital roadmaps, including impacts to support upcoming journeys
  • Publish design review extensions, and provide documented guidance aligned to sprint plans and timelines
  • Be part of the design review board that will focus on the design process, search for generic patterns, and, at the same time, share best practices across the organization
  • Publish design patterns across lines of business and domain commonalities. Drive design reviews for Next Gen Architecture (NGA) and Plan of Record (POR) projects, supporting design principles and best practices
What we offer
What we offer
  • medical
  • dental & vision coverage
  • 401(k)
  • life, accident, and disability insurance
  • wellness programs
  • paid time off packages, including planned time off (vacation), unplanned time off (sick leave), and paid holidays
  • Fulltime
Read More
Arrow Right

Customer Relationship Manager Architect, Senior Vice President

The Senior Vice President, Technology (CRM Architect) will lead the architecture...
Location
Location
United States , Jersey City
Salary
Salary:
176720.00 - 265080.00 USD / Year
https://www.citi.com/ Logo
Citi
Expiration Date
June 15, 2026
Flip Icon
Requirements
Requirements
  • 10+ years of relevant experience
  • Experience in implementing projects
  • Experience in systems analysis and programming of software applications
  • Demonstrated Subject Matter Expert (SME) in area(s) of Applications Development
  • Demonstrated knowledge of client core business functions
  • Demonstrated leadership, project management, and development skills
  • Relationship and consensus building skills
  • Bachelor’s degree/University degree or equivalent experience
  • 15+ years of technology experience with significant depth in CRM architecture and enterprise application delivery
  • Proven delivery leadership for large CRM implementations in Financial Services, supporting front-office and/or banking businesses (Investment Research, Equity/FI Sales, Investment/Corporate Banking, Securities Services)
Job Responsibility
Job Responsibility
  • Lead integration of functions to meet goals, deploy new products, and enhance processes
  • Analyze complex business processes, system processes, and industry standards to define and develop solutions to high level problems
  • Provide expertise in area of advanced knowledge of applications programming and plan assignments involving large budgets, cross functional project, or multiple projects
  • Develop application methodologies and standards for program analysis, design, coding, testing, debugging, and implementation
  • Utilize advanced knowledge of supported main system flows and comprehensive knowledge of multiple areas to achieve technology goals
  • Consult with end users to identify system function specifications and incorporate into overall system design
  • Allocate work, and act as an advisor/coach developers, analysts, and new team members
  • Influence and negotiate with senior leaders and communicate with external parties
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency
  • CRM architecture and strategy: Own end-to-end CRM architecture for one or more strategic platforms, including target-state roadmap, reference architecture, and modernization planning
What we offer
What we offer
  • medical
  • dental & vision coverage
  • 401(k)
  • life, accident, and disability insurance
  • wellness programs
  • paid time off packages, including planned time off (vacation), unplanned time off (sick leave), and paid holidays
  • Fulltime
Read More
Arrow Right
New

Scottish Islands - Support Worker

Are you an experienced Support Worker with at least 2 years of UK-based care exp...
Location
Location
United Kingdom , Dundee
Salary
Salary:
17.00 - 21.00 GBP / Hour
https://www.randstad.com Logo
Randstad
Expiration Date
June 13, 2026
Flip Icon
Requirements
Requirements
  • At least 1 year of UK-based care experience
  • At least 2 years of UK care experience
  • Relevant experience in Care homes or Community care roles
  • A full driving license and access to own vehicle
Job Responsibility
Job Responsibility
  • Provide tailored care packages to meet individual needs in care-at-home or residential settings
What we offer
What we offer
  • Additional expenses
  • Opportunity to earn up to £10,000 over 3 months
  • Supportive Team
  • Stunning Locations
  • Fulltime
Read More
Arrow Right
New

Finance Manager

Location
Location
United Kingdom , Buntingford
Salary
Salary:
Not provided
datalecltd.com Logo
Datalec Precision Installations
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Qualified accountant (ACCA, CIMA, or equivalent)
  • Minimum of 5 years of accounting experience, preferably within a multi-entity environment
  • Strong analytical and modelling skills with advanced Excel proficiency
  • Proficiency in accounting software and Microsoft Office Suite, particularly Excel and ideally Microsoft Dynamics (Business Central) & Continia
  • Excellent analytical and problem-solving skills
  • Strong attention to detail and accuracy
  • Ability to work independently and as part of a team.
Job Responsibility
Job Responsibility
  • Prepare and present monthly, quarterly, and annual management accounts, accounts packages and financial reports
  • Ensure compliance with local tax laws, statutory requirements, and internal controls, including preparing VAT Tax returns and reviewing CT Returns
  • Manage cash flow, working capital, and intercompany transactions
  • Issue quarterly Transfer Pricing invoices in accordance with group policy
  • Support audits and liaise with external auditors and tax advisors
  • Implement and maintain financial systems and process improvements
  • Support budget and forecasts preparation when required
  • Support the preparation of the Group Project Report, including posting accruals and conducting data quality checks as required
  • Provide financial insights and recommendations to senior leadership
  • Represent the business, upholding our core values and behaviours with all internal and external customers, clients and third parties
Read More
Arrow Right
New

Fund Services Manager

This is fund accounting and administration at its finest. Where we pair end-to-e...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
alterdomus.com Logo
Alter Domus
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in accounting (or related field)
  • Credit Accounting experience preferred
  • 9+ years of professional experience
  • In-depth understanding of investments within assigned fund(s)
  • Broad market knowledge
  • Ability to manage 2 staff members with potential for growth
  • Strong communication and analytical skills
  • Ability to perform multiple projects, navigate through unexpected challenges, and bring about viable solutions that provide the best results
Job Responsibility
Job Responsibility
  • Manage Associate Fund Accountants or Fund Accountants with potential for growth
  • Leverage prior job experience
  • Broaden accounting, finance and analytical skills
  • Supervise and mentor a team of Fund Accountants, as well as train new employees and provide direction and help prioritize the work of others
  • Administer, report, review, and understand industry standards
  • Respond to auditor queries
  • Increase communication/interaction with clients and their investors
  • Prepare/review monthly, quarterly, and annual reports for investors, consultants and other stakeholders including financial information, performance returns, operations and variance analysis
  • Calculate and review various performance returns
  • Support and coordinate cash distributions on behalf of clients
What we offer
What we offer
  • Support for professional accreditations such as ACCA and study leave
  • Flexible arrangements, generous holidays, plus an additional day off for your birthday
  • Continuous mentoring along your career progression
  • Active sports, events and social committees across our offices
  • 24/7 support available from our Employee Assistance Program
  • The opportunity to invest in our growth and success through our Employee Share Plan
  • Fulltime
Read More
Arrow Right
New

Bistro - Rooftop Server

Location
Location
United States of America , Chicago
Salary
Salary:
16.50 - 19.50 USD / Hour
lifetime.life Logo
Life Time
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 1+ year of experience working in a restaurant with a fast casual or full service experience
  • ServSafe certification required within the first 90 days of hire
  • CPR/AED certification required within the first 30 days of hire
  • Ability to routinely and repetitively bend to lift more than 20 lbs.
  • Ability to work in a stationery position and move about the Cafe for prolonged periods of time
Job Responsibility
Job Responsibility
  • Presents menu, answers questions, and makes suggestions regarding food and service
  • Takes orders from members/customers in assigned stations at the pool deck, relays information to the kitchen, and efficiently delivers the food/drink items ordered
  • Ensures cleanliness and order of the area including cleaning surfaces and placing tables/chairs in proper places
  • Calculates bill and processes payments
What we offer
What we offer
  • A fully subsidized membership
  • Discounts on Life Time products and services
  • 401(k) retirement savings plan with company discretionary match (21 years of age and older)
  • Training and professional development
  • Paid sick leave where required by law
  • Parttime
Read More
Arrow Right
New

Senior Security Analyst

You will work as part of a 24/7 Global Security Operations Centre. The Senior SO...
Location
Location
United Kingdom
Salary
Salary:
Not provided
admiralgroup.co.uk Logo
Admiral Group Plc
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years’ experience as a Senior SOC Analyst within an internal SOC environment
  • Strong experience in a SOC environment, including handling high‑severity incidents
  • Deep understanding of attacker tradecraft across endpoint, identity, cloud, and email attack surfaces
  • Hands‑on experience with SIEM, EDR, and security investigation platforms
  • Proven threat hunting experience using dashboards, structured queries, and behavioural analytics
  • Experience tuning detections and implementing well‑governed exclusions without increasing risk
  • Ability to clearly document investigations, decisions, and outcomes
  • Experience using AI or machine‑learning features within security products
  • Familiarity with SOAR workflows and automation concepts
  • Knowledge of detection engineering concepts and use‑case lifecycle management
Job Responsibility
Job Responsibility
  • Act as senior escalation point for complex/high-severity alerts across SIEM, EDR, cloud and identity platforms
  • Lead end-to-end incident response (investigation, containment, eradication, and post-incident review)
  • Correlate alerts with threat intelligence and business context to assess risk and impact
  • Produce clear investigation summaries for technical and non-technical stakeholders
  • Collaborate closely with Incident Response during escalations
  • Use AI-enabled features across SOC tooling to accelerate analysis and investigations
  • Apply strong judgement to validate AI outputs and avoid automation bias
  • Provide feedback to improve tooling, workflows, and AI effectiveness
  • Support development of safe and consistent AI usage standards within the SOC
  • Conduct proactive threat hunting using queries, dashboards and behavioural analytics
What we offer
What we offer
  • Up to £3,600 of free shares each year after one year of service
  • 33 days holiday (including bank holidays) increasing to up to 38 days
  • Option to buy or sell up to an additional five days of annual leave
  • Financial & Mortgage Advice
  • 24-Hour Ecare
  • Cycle to Work Scheme
  • Flexible Working
  • Simply Health
  • Private Health Cover
  • Critical Illness Cover
  • Fulltime
Read More
Arrow Right