About this role:

Wells Fargo is seeking a Lead Information Security Engineer.

We are seeking a highly skilled Thales CipherTrust Engineer to design, deploy, and operate the bank’s cryptographic ecosystem using Thales CipherTrust Manager. This role ensures robust protection of keys, applications, and sensitive data across payments, digital channels, core banking, and cloud integrations. You will own the, Keys Life Cycle Management, , Transparent Encryption, KMIP clients, and security controls that align with NIST, PCI-DSS & Banks Security Policy.

In this role, you will:

Manage and operate Thales CipherTrust Platform – Deploy, configure, and maintain the following platforms:CipherTrust Manager (CM) clustersCipherTrust Transparent Encryption (CTE / CTE‑U)CipherTrust Cloud Key Manager (CCKM)IBM SGKLM/TKLMWork with application/ business teams to integrate:PKCS#11 clientsJCE providers for Java appsCipherTrust Agent for CTEDatabase encryption (TDE + HSM integration)Troubleshoot crypto issues: TLS handshake failures, PKCS#11 errors, CTE policy failures, KMIP failures.Automate operational tasks using:CipherTrust Manager REST APIsPython, Ansible, Bash, PowerShellManage CipherTrust Manager high availability, upgrades, patching, and certificate management.Implement Transparent Encryption policies for Linux/Windows workloads including GuardPoints, access policies, and application‑aware encryptionManage KMIP clients backed by CipherTrust Manager.Implement dual control and split knowledge for all sensitive operations.Conduct key ceremonies, tamper checks,  when necessary.Work as a member of a geographically diverse team of encryption technology experts to administer and maintain large-scale technology solutions across a global enterprise environment.Providing technical update to the leadership for all engineering, automation development and provisioning activitiesProvide mentorship to Encryption Services team members and be a point of contact for technical escalation for team and customers.Partner with our Engineering peers to design and engineer robust connectivity and service solutions that emphasize security and encryption best practices.Provide solutions analysis and consulting services to several internal Lines of Business, including other technology teams as well as customer-facing business units.Maintain comprehensive technical documentation including functional requirements, technical designs, workflow diagrams, application communications diagrams, configuration documents, support documentation, procedural documentation, training materials, and some project documents.Participate in vendor support relationships and take an active role in facilitating the exchange of information between vendors and Wells Fargo in order to improve the technologies.Participate in audit and compliance activities, always seeking to ensure that our technology systems and human processes comply with regulatory requirements and standards.

Required Qualifications:

5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education

Desired Qualifications:

Bachelor’s and/or Master’s Degree in Engineering & Technology5+ years of Technology/Information security experience5+ years of Information Security, Data protection, Cryptography technologiesExperience with engineering and operations for Thales CipherTrust Manager, HSM’s, IBM SGKLM/TKLM, Cloud key managers and/or any other cryptographic supporting products etc.Good understanding of Cryptographic protocols & algorithmsIntermediate to advanced technical proficiency with Linux OSGood understanding of databases & storage systems with respect to encryption and data protectionIntermediate to advanced expertise in scripting and automation, with hands-on experience in developing runbooks using Ansible, Python, PowerShell & Bash scripts, and YAMLGood understanding and exposure to emerging technologies including Post Quantum Cryptography & Gen AIAbility to effectively drive results, provide feedback/direction, and manage and build relationships with leaders and team members in a geographically dispersed environmentConsults with technical groups, users and/or vendors to identify and influence functional specifications and business/technical requirementsGood knowledge of Agile methodologies, Kanban principles, working with JIRA boards.Very good understanding of Change management process including hands on with ServiceNow platform.Conduct technical investigation of security-related incidents, and conduct post-incident digital forensics to identify causes and recommend future mitigation strategiesEffective verbal, presentation, written and interpersonal communication skillsGood negotiation, conflict resolution and decision-making skillsGood understanding of compliance and regulatory requirements for data protectionIndustry certification like CISSP, CCSP etc.

Posting End Date: 

8 Feb 2026

*Job posting may come down early due to volume of applicants.

We Value Equal Opportunity

Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic.

Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit’s risk appetite and all risk and compliance program requirements.

Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process.

Applicants with Disabilities

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo.

Drug and Alcohol Policy

 

Wells Fargo maintains a drug free workplace.  Please see our Drug and Alcohol Policy to learn more.

Wells Fargo Recruitment and Hiring Requirements:

a. Third-Party recordings are prohibited unless authorized by Wells Fargo.

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.