Information Security Manager

In this role, you will:

Wells Fargo is seeking an Information Security Manager in Technology as part of Cybersecurity. Learn more about the career areas and lines of business at wellsfargojobs.com

Wells Fargo is seeking an Information Security Manager within Cyber Defense & Monitoring. This leader will manage a team of Product Owners and Scrum Masters supporting multiple cyber defense capabilities, including Security Operations Center (SOC), Threat Hunting, Data Loss Prevention (DLP), Red Team, Threat Intelligence, and Fusion Center functions.
This role is responsible for people leadership, delivery execution, and ensuring cyber defense strategies are translated into measurable, well-governed outcomes through strong Agile and product management practices.

Cyber Defense & Monitoring is responsible for reducing the company’s exposure to cyber threats through enterprise monitoring, threat intelligence, detection, and response capabilities. This role plays a critical leadership function in ensuring cyber defense initiatives are delivered effectively, consistently, and with measurable impact across the enterprise.

• Manage and develop a team of Product Owners and Scrum Masters aligned to Cyber Defense product areas
• Translate cyber defense strategy and priorities into executable roadmaps, epics, and delivery plans
• Partner with Cyber Defense domain leaders to prioritize work based on risk reduction, detection efficacy, and operational resilience
• Ensure effective Agile delivery practices (Scrum / Kanban), including backlog health, sprint execution, dependency management, and capacity planning
• Establish delivery transparency through metrics, KPIs, and OKRs across supported cyber defense domains
• Drive consistency in product lifecycle management, intake, prioritization, and delivery reporting
• Act as a liaison between cybersecurity operators, engineering teams, and enterprise stakeholders
• Identify and escalate delivery risks, constraints, and dependencies with clear mitigation strategies
• Support compliance with enterprise cybersecurity policies, risk management expectations, and regulatory requirements
• Foster a culture of accountability, continuous improvement, and outcome-focused execution
• Manage and develop a team of individual contributors with low to moderate complexity and risk
• Provide support and drive strategic initiatives for the business
• Maintain an advanced awareness of bank security policies and government regulations pertaining to information security
• Identify security risks and solutions for networks and virtual private network applications, security tools, public key infrastructures, authentication and directory services, and access management services
• Address vulnerability detection, threat data, network intrusion, development, and implementation of vulnerability mitigation strategies
• Formulate and implement information security solutions and controls
• Make decisions and resolve issues regarding changes to information security policy, standards, and procedures as needed for systems, applications, and tools
• Recommend compliance and risk management requirements for supported area and work with other stakeholders to implement key risk initiatives
• Lead complex projects and initiatives impacting one or more business lines
• Collaborate and influence all levels of professionals including more experienced managers
• Lead team to achieve objectives
• Manage allocation of people and financial resources for Information Security Analysis
• Mentor and guide talent development of direct reports and assist in hiring talent

Required Qualifications:

• 5+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 2+ years of Leadership experience
• Experience working within or alongside cyber defense functions such as SOC, threat intelligence, incident response, or detection engineering
• Strong knowledge of Agile delivery frameworks (Scrum, Kanban) and product management practices
• Ability to communicate effectively with senior leadership, technical teams, and business partners

Desired Qualifications:

• Experience in a regulated industry such as financial services, government, or utilities
• Information security certifications such as CISSP, CISM, or equivalent
• Agile or product certifications (e.g., CSPO, Scrum Master, SAFe)
• Familiarity with SIEM, SOAR, endpoint security, DLP, or cloud security platforms
• Demonstrated ability to tie delivery outcomes to cyber risk reduction and operational efficiency

Job Expectations:

• Ability to work in a hybrid environment based on business needs
• Ability to partner with geographically distributed teams
• Ability to travel up to 10% of the time
• This position is not eligible for Visa sponsorship