Sign In Post Your Job

Senior Information Security Engineer

Wells Fargo

Location:
India , Bengaluru

Category:
IT - Software Development

Contract Type:
Not provided

Salary:

Not provided

Save Job

Job Description:

Wells Fargo is seeking a Senior Information Security Engineer.

Job Responsibility:

Lead or participate in computer security incident response activities for moderately complex events
Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies
Provide security consulting on medium projects for internal clients to ensure conformity with corporate information, security policy, and standards
Design, document, test, maintain, and provide issue resolution recommendations for moderately complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security
Review and correlate security logs
Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity
Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives
Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals
Lead the development of mission critical python services, ensuring high availability and low latency performance
Standardize how code moves through the organization, implementing sophisticated deployment patterns like Blue-Green, Cannery or Ring deployments
Lead the design of Kafka based data backbones, ensuring data integrity, durability and scalability
Build and manage a unified monitoring strategy in Grafana, providing deep visibility into business critical data flows
Collaborate with data science teams to transition experimental ML models into robust, scalable production services
Act as a subject matter expert, conducting high-level code reviews and suggesting best practices on python, DevOps maturity
Ensure that the CI/CD movement and secret management meet stringent enterprise security standard0073

Requirements:

4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
4+ years of experience in Software Engineering, Data Engineering, or a backend development python development and backend architecture
Expert level knowledge of Python internals, concurrency (Asyncic/Multiprocessing) and building high performance, memory efficient applications
Proven expertise in designing and governing enterprise grade CI/CD pipelines and must manage complex code promotions across multi-region environments using GIT hub actions, Git Lab, or Azure DevOps
Extensive hands-on experience with Apache Kafka (or Confluent), including cluster tuning, schema registry management and designing event driven architectures
Deep experience with Grafana and Prometheus for full stack observability – defining SLIs/SLOs, custom exporters and complex alerting logic
Strong understating of the end-to-end ML life cycle, specifically in the deployment and scaling of models using frameworks like BentoML, Ray, or KServe
Experience in SQL, data modelling, ETL/ELT pipelines, and large-scale data processing
Good to have knowledge in Terraform, Palumi and container orchestration – Kubernetes, EKS

Nice to have:

Knowledge in Terraform, Palumi and container orchestration – Kubernetes, EKS

Additional Information:

Job Posted:
May 04, 2026

Expiration:
May 30, 2026

Employment Type:

Fulltime

Work Type:

On-site work

Wells Fargo - All Job Offers

Job Link Share:

Looking for more opportunities? Search for other job offers that match your skills and interests.

Suggested Tags:

Frontend Developer , Secretary , Talent Manager , Salesforce Administrator , Data Analyst

Similar Jobs for Senior Information Security Engineer

Senior Information Security Engineer

Serve as a technical leader in our Security team reporting to our Information Se...

Location

United States , Boston

Salary

150000.00 - 190000.00 USD / Year

Expiration Date

Until further notice

Requirements

Bachelor’s degree in Computer Science, Information Security, or a related technical field and/or advanced certifications (CISSP, CISM, AWS Security Specialty, SANS, etc.)
8+ years of hands-on experience in Information Security, IT Security, or a related role, including at least 2 years in a senior or lead capacity
Proven track record implementing and managing advanced security technologies (e.g., CASB, CNAPP, CSPM, SIEM, SOAR, DLP, SWG)
Experience securing AI/ML systems or APIs, including governance of third-party AI integrations and organizational use of AI tools
Strong understanding of modern cloud security architecture (AWS, Azure, GCP) and experience performing threat modeling and risk assessments on cloud-based systems
Hands-on experience with application security tooling (SAST, SCA, DAST) and embedding secure development practices
Demonstrated leadership in security incident response, investigations, and root cause analysis
Effective communicator with the ability to influence stakeholders and explain security concepts to technical and non-technical audiences
Strong project management skills and the ability to drive initiatives to completion in a fast-paced environment
Experience mentoring engineers and setting operational standards

Job Responsibility

Job Responsibility

Implement and enhance security controls by leading the deployment, integration, and tuning of solutions such as CNAPP, SIEM, CASB, EDR, DLP, and MDM to maximize effectiveness
Support security design decisions by providing subject matter expertise on cloud and SaaS security best practices while influencing architecture led by the Security Architect role
Lead incident response and investigations by guiding containment, remediation, root cause analysis, and post-incident improvements
Strengthen application security by overseeing secure development practices and managing SAST, SCA, and DAST tooling
Advance identity and access management by supporting IAM policy enforcement, SSO, MFA, SCIM, RBAC, and user lifecycle governance
Secure AI systems and integrations by assessing and protecting embedded APIs and organizational AI tool usage to ensure resilience, privacy, and compliance
Collaborate cross-functionally by working with Engineering, IT, and GRC teams to embed security into systems and workflows
Mentor and influence by providing technical guidance, reviewing work, and promoting security-first thinking across the organization
Stay ahead of threats and regulations by tracking emerging risks, technologies, and compliance requirements to inform forward-looking strategies
Participate in and help improve the on-call rotation by providing guidance, escalation support, and driving improvements in response processes

What we offer

competitive base salaries
meaningful equity
generous equity package

Fulltime

Senior System Information Assurance and Security Engineer

Barbaricum is seeking a highly skilled System Information Assurance and Security...

Location

United States , Tampa

Salary

Expiration Date

Until further notice

Requirements

Active DoD TS/SCI Clearance
Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or related field (Master’s preferred)
10+ years of experience in enterprise identity and access management architecture
Demonstrated expertise with Zero Trust frameworks and DoD ICAM standards
Hands-on experience with SAML, OAuth2.0, OpenID Connect, PKI, and certificate management
Experience with DoD enterprise solutions such as Radiant Logic, Okta, Ping Identity, SailPoint, ForgeRock, Microsoft Entra ID (Azure AD), or equivalent
Deep knowledge of Privileged Access Management and Identity Governance & Administration solutions
Strong understanding of DoD cybersecurity compliance frameworks (RMF, NIST SP 800-53, 800-207, 8140/8570)
IAM / DoD Certification IAT Level II (e.g., Security+ CE, SSCP, GSEC)

Job Responsibility

Job Responsibility

Execute engineering solutions for identity credential and access management for Zero Trust implementation across enterprise systems
Design and maintain an enterprise-wide identity and access management strategy aligned with DoD Zero Trust principles, NIST 800-207, and DoD ICAM Reference Design
Lead integration of federated identity, single sign-on (SSO), and multi-factor authentication (MFA) across cloud and on-prem environments
Develop and maintain policies, standards, and reference architectures to enforce least-privilege and attribute-based access control (ABAC)
Conduct the implementation of Privileged Access Management (PAM) and Identity Governance and Administration (IGA) solutions
Collaborate with cybersecurity, network, and cloud teams to align ICAM solutions with Zero Trust pillars (identity, device, network, application, and data)
Ensure compliance with DoD 8140/8570, RMF, FedRAMP, and other applicable frameworks
Lead proof-of-concepts (POCs) and technology evaluations for emerging identity

Senior System Security and Information Assurance Engineer

The Senior PAM Engineer will play a critical role within Line of Effort 2, respo...

Location

United States , Tampa

Salary

Expiration Date

Until further notice

Requirements

Active DoD Top Secret clearance with SCI eligibility
Master’s degree (MA/MS) in Cybersecurity, Information Technology, Computer Science, Engineering, or related field
10+ years of professional experience in cybersecurity, systems engineering, or information assurance
Meets Cyber Engineer – Senior labor category requirements, including independent execution of all functional duties and support to mission-critical program elements
DoD 8570 IAT Level II certification or higher (e.g., Security+ CE, CCNA Security)
Deep expertise in Privileged Access Management (PAM) architectures and Zero Standing Privilege concepts
Hands-on experience implementing Just-In-Time (JIT) access workflows
Experience integrating PAM solutions with Active Directory, SIEM platforms (Splunk), and Identity Governance (IGA) tools
Experience producing technical documentation to support RMF and ATO processes (LLDs, SSPs, SOPs)
Ability to lead or oversee the efforts of less senior staff as required by program needs

Job Responsibility

Job Responsibility

Lead the installation, configuration, and technical implementation of an enterprise Privileged Access Management (PAM) solution (Delinea-focused) across multiple network enclaves
Discover, inventory, and onboard privileged user, administrator, and service accounts into a secure credential vault
Design and enforce policies for Just-In-Time (JIT) access, session monitoring, and session recording to achieve zero standing privileges
Develop scripts and API-based integrations between the PAM solution, Splunk SIEM, and Identity Governance (IGA) platforms
Support RMF accreditation activities by developing Low-Level Design (LLD) documents, System Security Plans (SSPs), and Standard Operating Procedures (SOPs)
Support Authority to Operate (ATO) efforts through security control implementation and technical validation
Lead enterprise rollout of PAM policies from pilot groups to full operational enforcement
Collaborate with Zero Trust architects, identity teams, and cyber engineers to ensure alignment with enterprise security architecture

Senior Information Security Engineer

This role is your opportunity to lead the charge in maturing e2Open’s security p...

Location

India , Bangalore

Salary

Expiration Date

Until further notice

Requirements

A proven track record in SIEM operations, vulnerability management, and incident response
Hands-on experience configuring and running security tools
Strong automation skills (e.g., scripting, orchestration)
The ability to lead through influence, guiding teams to adopt better practices
Experience navigating the challenges of complex, fast-changing environments (M&A exposure a plus)
Formal qualifications (CISSP, CISM, or equivalent) are valued

Job Responsibility

Job Responsibility

Configure, tune, and operate SIEM platforms to improve detection, response, and visibility
Lead vulnerability scanning and remediation
Take point in managing security incidents — from detection through investigation and resolution
Run and maintain key security tools
Drive automation-first approaches
Collaborate with engineering and IT teams to embed security into operations and culture
Help shape the roadmap for security maturity within e2Open

Senior Information Security Compliance Analyst

We're looking for a technically grounded Senior IS Compliance Analyst who speaks...

Location

United States , Chicago

Salary

90000.00 - 130000.00 USD / Year

Expiration Date

Until further notice

Requirements

Hands-on experience in technical security roles such as Security Operations, Incident Response, Security Analysis, penetration testing, or similar
Practical knowledge of security tools, SIEM platforms, vulnerability management, and security monitoring
and ability to read and understand security logs, configurations, and technical documentation
6+ years of total experience with significant time in GRC
Working knowledge of ISO 27001, NIST frameworks, SOC 1/2, and GDPR requirements
Experience developing and implementing information security policies and controls
ISO 27001:2022 Lead Implementer and Lead Auditor certification

Job Responsibility

Job Responsibility

Lead technical security assessments and integration of acquired companies, mapping their security architectures and controls to our GRC frameworks, identifying gaps, and building remediation roadmaps that address both technical security and compliance alignment
Bridge technical security and business stakeholders by evaluating risks through a technical lens, working alongside security engineering teams to translate GRC requirements into practical security measures, and communicating effectively across technical and non-technical audiences
Develop and harmonize security policies and control frameworks across acquired entities, ensuring they're both audit ready and operationally sound, while translating between technical security requirements and governance documentation
Own customer security questionnaire responses by leveraging your hands-on security background to provide detailed, accurate answers and collaborating with infrastructure, application security, and operations teams to gather technical evidence
Drive continuous improvement of our GRC program through technical security enhancements, meaningful security and compliance metrics, and process improvements that increase both control effectiveness and operational efficiency

What we offer

health and welfare benefits
tuition assistance
401K savings and other retirement programs
employee assistance programs

Senior Security GRC Engineer

The Senior Security GRC Engineer at Atlassian will be instrumental in implementi...

Location

India , Bengaluru

Salary

Expiration Date

Until further notice

Requirements

5-7+ years experience in a similar role, preferably in a large-scale SaaS/Product environment
Expertise and experience working in security-focused roles
Experience with application security, especially web applications
Experience in cloud security architecture and infrastructure
Experience providing SME knowledge and guidance to stakeholders and engineering functions
Experience working with internal/external audit and leadership teams
Solid knowledge of cybersecurity principles, risk management strategies, and IT governance frameworks
Strong communication and interpersonal skills, with the ability to interact with stakeholders at all levels and explain complex security concepts in an understandable way
Relevant certifications such as CISSP, CISM, or CRISC would be beneficial
Scripting experience to automate recurring tasks (JQL, SQL, Python, Go)

Job Responsibility

Job Responsibility

Deliver technical expertise and innovation, providing security guidance to teams and promoting the adoption of industry-leading methodologies to build secure products by default
Drive technical solutions in security and risk management
Leverage data analytics and visualization, deriving actionable insights from security governance, risk, and compliance data
Promote automation and tooling, encouraging the use of the latest security tools to enhance product security processes
Proactively identify and mitigate risks, recognizing potential security threats or compliance concerns specific to product security
Collaborate with product security teams, implementing security controls and best practices
Regularly evaluate and report, assessing the effectiveness of security controls
Influence and align stakeholders, working with security engineers and stakeholders to drive alignment on security initiatives
Stay informed on regulatory awareness and compliance, keeping up with the latest developments in legislative, regulatory, and industry security requirements

What we offer

health coverage
paid volunteer days
wellness resources

Fulltime

Senior Information System Security Officer

We are seeking a highly skilled and mission-driven Senior Information Systems Se...

Location

United States , Clarksburg

Salary

Innovative Management & Technology Services

Expiration Date

Until further notice

Requirements

Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or a related field (or equivalent combination of education and experience)
8+ years of progressive experience in information systems security, with at least 3 years in a senior-level or lead ISSO role supporting federal or state government agencies
Strong working knowledge of: NIST 800-53, RMF, FISMA, OWASP Top 10, and SANS Institute standards
SAFe Agile environments and integrating security in Agile workflows
Networking, Linux/Windows system administration, and secure software development practices
Cloud platforms (AWS, Azure, GCP) and related security tools (e.g., AWS Security Hub, Azure Defender)
Experience in managing security documentation, participating in audits, and working with compliance frameworks
Relevant certifications such as CISSP, CISM, Security+, CEH, or equivalent
Active Top Secret clearance is required
U.S. Citizenship is required

Job Responsibility

Job Responsibility

Lead the implementation and maintenance of system security controls in compliance with federal cybersecurity frameworks, including NIST SP 800-53, RMF, OWASP, DISA STIGs, and Common Criteria
Oversee the full lifecycle of Authorization to Operate (ATO) processes, including preparation of System Security Plans (SSPs), Security Assessment Reports (SARs), POA&Ms, and risk assessments
Serve as a senior security advisor and liaison to system owners, developers, DevOps engineers, and government stakeholders
Participate in technical reviews of system architecture and ensure secure design of virtualized and software-defined infrastructures
Support integration of security controls into CI/CD pipelines using DevSecOps principles and tools (e.g., Jenkins, GitLab CI, SonarQube, Snyk)
Provide security engineering support for modern cloud environments, including AWS, Azure, or Google Cloud Platform, and assess cloud-native security capabilities
Conduct vulnerability assessments, interpret scan results from tools like Tenable, Nessus, Splunk, or Qualys, and lead remediation efforts
Mentor junior ISSOs and analysts on security policies, best practices, and tool usage
Ensure continuous monitoring activities are aligned with organizational risk tolerance and compliance goals

What we offer

competitive compensation
excellent benefits including tuition reimbursement and employer-contributed 401K
referral bonuses

Fulltime

Senior Security Engineer

Senior Security Engineer – Remote (US) – Competitive Salary Opportunity to work ...

Location

Salary

Orbis Consultants

Expiration Date

Until further notice

Requirements

Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or related technical field
5+ years of hands-on experience in security engineering or related roles
Expertise in secure software development, architecture design, threat modeling, CI/CD pipelines, and risk assessment
Deep knowledge of network, system, database, and application layer attack patterns and mitigation methods
Ability to clearly communicate complex concepts appropriately to multiple audience types
Coding skills necessary to discover and patch issues Node, TypeScript/React, Python
Solid understanding and experience with AWS, Heroku, Netlify, and Snowflake, including policy, configurations, and security management tooling
Proven track record with SOC 2, PCI DSS, or similar compliance frameworks and reporting
Experience working in startup or high-growth environments, fintech, and/or highly regulated industries preferred
Cloud security certifications with evidence of continued education in the area of security are a plus

Job Responsibility

Job Responsibility

Vulnerability Management: Conduct regular vulnerability assessments, penetration testing, and security audits to identify and remediate security gaps across our cloud infrastructure and applications
Security Monitoring: Monitor systems for security threats, suspicious behavior, and anomalies using SIEM tools and security monitoring and vulnerability platforms like CrowdStrike and Nessus
Incident Response: Lead security incident response efforts, investigate suspicious reports, and implement preventative measures that may be warranted
Code Security Reviews: Review and approve code (Node, React, Python) that accesses to data, authentication, or integrations, ensuring secure development practices are followed
Cross-functional Collaboration: Work closely with engineering and operations teams, including executive stakeholders and occasionally third-party service providers, to integrate security best practices into development and deployment processes
Architecture Review: Evaluate and provide security recommendations for system architecture changes (e.g. network segmentation, microservices, virtual environments, data warehousing, etc) and new feature implementations, including the evaluation of AI enablement opportunities
Cloud Security: Secure cloud deployments (AWS/Heroku/Netlify), including configuration of firewalls, IAM policies, VPCs, databases/data warehouses (PostgreSQL, Snowflake), API security, container security, and network monitoring
Access Controls: Manage and maintain access controls across server environments, implementing principle of least privilege
Data Classification: Advise and audit the proper handling of data in accordance with privacy and security requirements and data classification policies
Integration Security: Review and assess security implications of all third-party integrations and vendor relationships

Fulltime