Cyber Security Research Scientist 3 – Senior Incident Responder

Wells Fargo
Published
July 22, 2021
Location
San Antonio, TX
Category
Job Type

Description

Job Description

Important Note: During the application process, ensure your contact information (email and phone number) is up to date and upload your current resume when submitting your application for consideration. To participate in some selection activities you will need to respond to an invitation. The invitation can be sent by both email and text message.  In order to receive text message invitations, your profile must include a mobile phone number designated as “Personal Cell” or “Cellular” in the contact information of your application.

At Wells Fargo, we are looking for talented people who will put our customers at the center of everything we do. We are seeking candidates who embrace diversity, equity and inclusion in a workplace where everyone feels valued and inspired.

Help us build a better Wells Fargo. It all begins with outstanding talent. It all begins with you.

Technology sets IT strategy; enhances the design, development, and operations of our systems; optimizes the Wells Fargo infrastructure; provides information security; and enables Wells Fargo global customers to have 24 hours a day, 7 days a week banking access through in-branch, online, ATMs, and other channels.

Our mission is to deliver stable, secure, scalable, and innovative services at speeds that delight and satisfy our customers and unleash the skills potential of our employees.

The Information and Cyber Security (ICS) team is embarking on a multi-year initiative to improve Wells Fargo’s resiliency to the tactics, and techniques used by today’s most advanced adversaries. ICS is looking to bring together a multi-functional, agile team to partner across disciplines in order to create a more secure future for the company and its customers. Join a team of dedicated cybersecurity professionals working to implement cutting edge threat detection and prevention tools and techniques. 

Job Description:

Our ICS team is looking for a strong cyber security professional with extensive experience in network-focused forensics, incident response, and threat hunting utilizing both Deep Packet Inspection (i.e. full packet capture) and Netflow solutions.  The ideal candidate will have a well-rounded background in endpoint/network defenses and security incident response, as well as some offensive security knowledge to allow the ability to think like an adversary.  The candidate will also have experience partnering with content development teams to resolve gaps in detection capabilities, as well as experience in conducting technical research and identifying methods to detect evolving Advanced Persistent Threat (APT) Tactics, Techniques, and Procedures (TTP).

This role will serve as an incident responder to assess the risk, impact, and scope of identified security threats, as well as leading the response efforts to include containment, eradication, and recovery.  Strong verbal and written communication skills are desired, in order to ensure thorough and accurate reporting during and concluding a security incident.  The candidate will also play a major role in detecting advanced threats that are not detected via traditional security tools, and understand how to operationalize cyber threat intelligence. Regular collaboration with multiple teams such as the Cyber Threat Fusion Center, Security Content Development, Cyber Threat Intelligence, and Offensive Security teams will be critical to success.

Salary range is determined by location of the job.

The salary range displayed below is based on a Full-time 40 hour a week schedule:

Area 000: MIN $151,200 $216,000 $280,800 $248,400 (San Francisco CA,NY, MA)

Area 001: MIN $138,600 $198,000 $257,400 $227,700 (IL, PA, Irvine CA, McClean VA)

Area 002: MIN $126,000 MRP $180,000 MAX $234,000 (AZ, IA, MO, TX, MN, NC, GA, CO, OR, Glenn Allen VA, UT)

Required Qualifications

  • 5+ years of information security experience in converged testing (red teaming) demonstrated through work or military experience
  • 1+ year of experience in network, social, and physical domains demonstrated through work or military experience
  • 5+ years of experience in one or a combination of the following: creating proof of concepts, creating exploits, or reverse engineering demonstrated through work or military experience
  • 5+ years of Incident Response Protocols and Tools experience
  • 3+ years of experience managing cybercrime detection, investigation, and intelligence strategies
  • 3 + years of digital forensics, security analytics experience, or a combination of both, including incident response
  • 5+ years of cyber security incidents and events investigation experience

Desired Qualifications

  • Expert information security technical skills
  • Proficient in working with systems, networks, and application vulnerability testing
  • Ability to manage complex security scenarios and develop innovative solutions to address the most recent cyber threats
  • 5+ years of information security experience including experience in one or more of the following security disciplines: information security monitoring, incident response, vulnerability management, host/network forensics, cyber-crime investigation, penetration testing, business continuity, or cyber threat intelligence
  • 3+ years of Splunk experience
  • Certifications in one or more of the following: Global Information Assurance Certification (GIAC), Offensive Security Certified Professional (OSCP), Offensive Security Wireless Professional (OSWP), Offensive Security Certified Expert (OSCE), Offensive Security Exploitation Expert (OSEE), or Offensive Security Web Expert (OSWE)
  • Ability to execute in a fast paced, high demand, environment while balancing multiple priorities
  • Highly refined and professional verbal and written communications
  • Knowledge and understanding of banking or financial services industry

Other Desired Qualifications

  • Knowledge and understanding of data security controls including malware protection, firewalls, intrusion detection systems, content filtering, Internet proxies, encryption controls, and log management solutions
  • Knowledge of offensive security, with the ability to think like an adversary when hunting and responding to incidents
  • Strong investigative mindset with an attention to detail
  • Experience with multiple operating systems to include Windows, Mac OS, and Unix/Linux
  • Advanced problem solving skills, ability to develop effective long-term solutions to complex problems

Job Expectations

  • Ability to travel up to 10% of the time

Salary Information

To be determined

Street Address

CO-Greenwood Village: 5700 Dtc Pkwy - Greenwood Village, CO
AZ-Chandler: 2600 S Price Rd - Chandler, AZ
AZ-PHX-Northwest Phoenix: 2222 W Rose Garden Ln - Phoenix, AZ
CA-SF-Financial District: 333 Market St - San Francisco, CA
IA-West Des Moines: 800 S Jordan Creek Pkwy - West Des Moines, IA
IL-Chicago: 10 S Wacker Drive - Chicago, IL
NY-New York: 150 E 42nd St - New York, NY
MN-Minneapolis: 550 South 4th St - Minneapolis, MN
MA-Boston: 125 High Street - Boston, MA
CA-Concord: 1755 Grant Street - Concord, CA
CA-Irvine: 2030 Main St - Irvine, CA
TX-DAL-Downtown Dallas: 1445 Ross Ave - Dallas, TX
OR-Portland: 1300 Sw 5th Ave - Portland, OR
UT-Salt Lake City: 299 S Main St - Salt Lake City, UT
NC-Charlotte: 1525 W Wt Harris Blvd - Charlotte, NC
NC-Charlotte: 401 S Tryon St - Charlotte, NC
VA-McLean: 1751 Pinnacle Dr - Mclean, VA
TX-San Antonio: 4101 Wiseman Blvd - San Antonio, TX
NC-Raleigh: 1100 Corporate Center Dr - Raleigh, NC
NC-Winston Salem: 809 W 4 1/2 St - Winston Salem, NC
VA-Glen Allen: 4340 Innslake Dr - Glen Allen, VA
GA-Atlanta: 360 Interstate North Pkwy Se - Atlanta, GA
MO-Saint Louis: 1 N Jefferson Ave - Saint Louis, MO
PA-Philadelphia: 101 N Independence Mall E - Philadelphia, PA

Disclaimer

    All offers for employment with Wells Fargo are contingent upon the candidate having successfully completed a criminal background check. Wells Fargo will consider qualified candidates with criminal histories in a manner consistent with the requirements of applicable local, state and Federal law, including Section 19 of the Federal Deposit Insurance Act.



    Relevant military experience is considered for veterans and transitioning service men and women.

    Wells Fargo is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation.

Benefits Summary

Benefits
 

Visit https://www.wellsfargo.com/about/careers/benefits for benefits information.

Apply
Drop files here browse files ...

Author: