Role Summary

A role that is responsible for leading portions of the identity management and access control functions as described by industry best practices such as NIST and FFIEC. This will include a subset of the following sub-functions: a) request b) provisioning c) deprovisioning d) normal access e) privileged access f) attestations g) identity governance administration h) identify management platforms i) production support j) authentication k) authorization and l) cloud.

Company Overview

NA

• Align with IAM-wide priorities that define ‘our what’ that may change based on business need
• Consistently align with Truist Vision, Mission and Values and demonstrate ‘our how’ IAM works:
• Accountability: set expectations, hold teams accountable, check-in and provide feedback
• Remove ‘IAM Blinders’: take a Truist-wide approach to owning and resolving challenges
• Strengthen Team: coach-up, performance manage, develop, and reward top performers/visibility
• Management System: establish and cascade a predictable schedule for team engagement
• Continuous Improvement: consistently seeking ways to get better
• Manage a team of 5 to 10 direct report teammates and contract workers who oversee defined structured process tasks; may have oversight for complex, unstructured processes.
• Perform hiring, coaching, terminations, disciplinary action, and performance reviews to enable and maintain the strategy.
• Oversee strategic and operational plans in support of business objectives; develop cross-departmental business cases to solve problems by making technical and financial tradeoffs.
• Apply a balance of 40% technical and 60% functional knowledge to deliver quality results.
• Design and implement the identity management and access control strategy on time and within budget:
• Formal Services Level Agreements (SLAs)
• Workforce strategy blend of ~30% onshore and ~70% offshore that is comprised of ~30% teammate, ~60% vendor managed service, and ~10% time and material contract workers
• Improve the user experience and reduce the turnover of critical resources
• Proactively engage with stakeholders to make them aware and willing to adopt our solutions, which includes managing up, out, and down to avoid surprises and position our solutions to be successful.

Required Qualifications:

• Bachelor’s degree or equivalent
• 15 years’ technical experience working in the identity and access management control function
• 10 years’ experience as a manager
• 10 years’ experience in operational planning and execution
• 10 years managing simple and structured work
• 10 years managing complex and unstructured work
• 10 years’ experience leading diverse teams, such as teammates, contract workers, onshore, offshore resources, and/or managed services
• 5 years’ experience and expert-level technical knowledge of product knowledge and processes for specific IAM areas (e.g., Active directory, RACF, Idaptive, CyberArk, PRIVA, Oracle OIM, Persistent Ignite)
• 10 years’ experience and basic functional knowledge of tools and processes for the broader IAM capability
• 10 years’ experience and intermediate-level strength in soft skills and interpersonal communications
• 10 years’ technical experience working for a top 10 US bank
• 10 years’ experience collaborating with the following functions: a) infrastructure b) application development c) application support d) business unit risk management e) technology risk f) audit and g) external auditors
• 10 years’ experience collaborating with the following peer functions in corporate cyber security
• 10 years’ experience managing the remediation of regulatory matters and internal findings
• 10 years’ experience in strategic planning and applying industry best practices to operations (NIST, FFIEC)

Preferred Qualifications:

• Master’s degree
• Understand multiple approaches to designing IAM technical solutions
• Experience in waterfall and agile project management methodologies
• Experience managing contracts for IAM managed service providers
• CISSP Certification

General Description of Available Benefits for Eligible Employees of Truist Financial Corporation: All regular teammates (not temporary or contingent workers) working 20 hours or more per week are eligible for benefits, though eligibility for specific benefits may be determined by the division of Truist offering the position. Truist offers medical, dental, vision, life insurance, disability, accidental death and dismemberment, tax-preferred savings accounts, and a 401k plan to teammates. Teammates also receive no less than 10 days of vacation (prorated based on date of hire and by full-time or part-time status) during their first year of employment, along with 10 sick days (also prorated), and paid holidays. For more details on Truist’s generous benefit plans, please visit our Benefits site. Depending on the position and division, this job may also be eligible for Truist’s defined benefit pension plan, restricted stock units, and/or a deferred compensation plan. As you advance through the hiring process, you will also learn more about the specific benefits available for any non-temporary position for which you apply, based on full-time or part-time status, position, and division of work.

Truist supports a diverse workforce and is an Equal Opportunity Employer that does not discriminate against individuals on the basis of race, gender, color, religion, citizenship or national origin, age, sexual orientation, gender identity, disability, veteran status or other classification protected by law. Truist is a Drug Free Workplace.

EEO is the Law, [Pay Transparency Nondiscrimination Provision](https://www.dol.gov/sites/dolgov/files/OFCCP/pdf/pay-transp_ English_formattedESQA508c.pdf), and E-Verify.

About this role:

Wells Fargo is seeking a Lead Information Security Analyst in Technology as part of Cybersecurity. Learn more about the career areas and lines of business at wellsfargojobs.com.

Be a lead team member of the IAM Operations Access Review/Certifications team responsible for supporting and maintaining compliance of enterprise certification solutions and controls.

• Provide advanced information security consultation for all aspects of information security compliance policy, risk management, and remediation
• Direct information security risk assessment and research, and recommend remediation plans and strategies
• Engage with technology teams, risk and LOB contacts to consult and advise on enterprise certification controls and tools.
• Perform evidence gathering and audit walk-throughs for audit engagements.
• Educate and support certifying managers on certification execution and accountability. Ensure timely completion of certifications.
• Perform compliance and oversight activities to support certification controls.
• Maintain an awareness of bank security policies and government regulations pertaining to information security
• Collaborate and consult with peers, colleagues, and managers to resolve issues and achieve goals
• Interact with internal customers

Required Qualifications:

• 5+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 3+ years of identity and access management experience in one or more of the following: provisioning, de-provisioning, certification, authorization or authentication

Desired Qualifications:

• Knowledge and understanding of business requirements. Ability to gather and translate to technical requirements
• Ability to work effectively and independently in a remote team environment
• Ability to prioritize work, meet deadlines, and achieve deliverables
• Strong organizational, multi-tasking, and prioritizing skills
• Customer service focus with the ability to respond to requests in a timely manner
• Ability to present complex material in a digestible, consumable manner to all levels of management
• Experience working in a large enterprise environment
• Strong analytical skills with high attention to detail and accuracy
• Intermediate Microsoft Office (Word, Excel, Outlook, PowerPoint, Access, and Project) skills
• Knowledge and understanding of information security industry standards and government regulations
• Ability to take an active role in the education, mentoring, and training of less experienced team members
• Knowledge and understanding of agile methodologies and processes
• Excellent verbal, written, and interpersonal communication skills
• Knowledge and understanding of information technology governance risk and compliance processes such as; policies, control standards, risk management concepts, or information security
• Experience working in or implementing an Identity and Access Management (IAM) product or tool
• Experience and understanding of application security architecture
• Knowledge of Service Now

Posting End Date: 17 Nov 2024

Job posting may come down early due to volume of applicants.

We Value Diversity

At Wells Fargo, we believe in diversity, equity and inclusion in the workplace; accordingly, we welcome applications for employment from all qualified candidates, regardless of race, color, gender, national origin, religion, age, sexual orientation, gender identity, gender expression, genetic information, individuals with disabilities, pregnancy, marital status, status as a protected veteran or any other status protected by applicable law.

Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit’s risk appetite and all risk and compliance program requirements.

Candidates applying to job openings posted in US: All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic.

Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process.

Applicants with Disabilities

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo.

Drug and Alcohol Policy

Wells Fargo maintains a drug free workplace.  Please see our Drug and Alcohol Policy to learn more.

Wells Fargo Recruitment and Hiring Requirements:

a. Third-Party recordings are prohibited unless authorized by Wells Fargo.

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

About this role:

Wells Fargo is seeking a IAM Triage Lead Analyst (Lead Information Security Analyst) in Cybersecurity as part of Identity Access Management. Learn more about career areas and business divisions at wellsfargojobs.com

This role is responsible for investigating highly complex IAM issues and needs that require in depth knowledge of IAM processes, tools, and technologies at Wells Fargo to solve, ensuring rapid and accurate diagnosis and root cause assessment. This resource will advise projects or remediation activities by creating designs and strategies to meet the goals of the issue within triage.  This role requires strong analytical skills, in-depth knowledge of IAM processes and technologies and the ability to collaborate across IAM, Cyber and other areas of Wells Fargo Technology (WFT) to produce viable solutions that meet the needs of all stakeholders while ensuring the integrity and security of the IAM controls.

• Triage

• Lead the triage and resolution of complex IAM issues and needs ensuring proper categorization and resolution.

• Perform detailed investigations to determine root cause and recommend solutions to prevent recurrence.

• Process Improvement:

• Assess complex IAM process issues to identify and mitigate risks, potential improvements, and efficiency enhancements to prevent recurrence.

• Partner with the IAM Governance and Operations team to analyze IAM metrics to identify trends and areas for improvement.

• Collaborate with engineering team to implement fixes and process improvements.

• Technical Leadership:

• Provide expert guidance in resolving complex IAM Issues

• Collaboration:

• Partner with IAM, Cyber and the broader Wells Fargo Technology (WFT) organization to resolve highly complex issues that involve identity and access management.

• Risk Management:

• Partner with IAM Governance and Risk partners to ensure proposed solutions to complex IAM issues address underlying risk, satisfy policy and regulatory requirements.

• Documentation:

• Develop and maintain detailed documentation of issues, resolutions, and process improvements to help contribute to knowledge base/best practices.

• Provide advanced information security consultation for all aspects of information security compliance policy, risk management, and remediation

• Direct information security risk assessment and research, and recommend remediation plans and strategies

• Influence stakeholders on net new or on material changes to an asset to influence control decisions

• Provide consulting on security risk assessment and research, and recommend remediation plans and strategies

• Act as more experienced lead to the organization to develop security risk awareness and mitigating actions

• Consult the organization on complex security issues and findings

• Manage the most complex and critical information assets

• Evaluate and interpret internal and companywide information security policies, processes, standards, and participate with more experienced leaders in decision making on information security

• Serve as information security lead to advise on the development and delivery of Information Security Education and Awareness

• Collaborate and consult with peers, colleagues, and mid-level to more experienced managers to resolve issues and achieve goals

• Lead projects and teams

• Coordinate with vendor manager on third party assets to manage information security risks

• Serve as a mentor to less experienced staff

Required Qualifications:

• 5+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education

Desired Qualifications:

• 5+ years of experience in Information Security Analysis / Identity and Access management, with a focus on triage, troubleshooting and resolution.
• Experience with IAM Technologies and Tools (i.e., Authentication:  Ping, Okta, MS Azure Active Directory); IGA: SailPoint; PAM:  CyberArk, Beyond Trust, MFA: RSA Secure ID, Directory Services:  MS Active Directory; Open LDAP; API Security and Access Management:  Apigee, OAuth; Identity Analytic Tools: Gurucul, Saviynt;)
• Strong understanding of IAM security principles, processes, and best practices such as principle of least privilege and zero-trust architecture
• Proficient in Database, Cloud and OS security and principles
• Deep understanding of Access Control and Authentication concepts such as Role-Based Access Control (RBAC), Identity Federation and Kerberos authentication protocols
• Strong analytical and problem-solving skills
• Ability to query and analyze data in databases and log files.
• Proficiency in scripting languages such as PowerShell or Python
• Experience with Cloud-based IAM Solutions such as MS Azure AD and Google Cloud
• Excellent communication and people skills
• Ability to work under pressure and manage multiple priorities
• Experience and fluency in Financial Services and Technology

Locations:

• 300 S Brevard St. - Charlotte, North Carolina
• 1525 W WT Harris Blvd. - Charlotte, North Carolina
• 2600 S Price Rd. - Chandler, Arizona
• 550 S 4th St. - Minneapolis, Minnesota
• 1301 Solana Blvd. - Westlake, Texas

Posting Statements:

• Job posting may come down early due to volume of applicants.
• Required location(s) listed above. Relocation assistance is not available for this position
• Salary range is determined by the location of the job.  May be considered for a discretionary bonus, Restricted Share Rights, or other long-term incentive awards.
• This position is not eligible for visa sponsorship

Pay Range

Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to achievements, skills, experience, or work location. The range listed is just one component of the compensation package offered to candidates.

$111,100.00 - $197,500.00

Benefits

Wells Fargo provides eligible employees with a comprehensive set of benefits, many of which are listed below. Visit Benefits - Wells Fargo Jobs for an overview of the following benefit plans and programs offered to employees.

• Health benefits
• 401(k) Plan
• Paid time off
• Disability benefits
• Life insurance, critical illness insurance, and accident insurance
• Parental leave
• Critical caregiving leave
• Discounts and savings
• Commuter benefits
• Tuition reimbursement
• Scholarships for dependent children
• Adoption reimbursement

Posting End Date:

18 Nov 2024

Job posting may come down early due to the volume of applicants.

We Value Diversity

At Wells Fargo, we believe in diversity, equity, and inclusion in the workplace; accordingly, we welcome applications for employment from all qualified candidates, regardless of race, color, gender, national origin, religion, age, sexual orientation, gender identity, gender expression, genetic information, individuals with disabilities, pregnancy, marital status, status as a protected veteran, or any other status protected by applicable law.

Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit’s risk appetite and all risk and compliance program requirements.

Candidates applying to job openings posted in the US: All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic.

Applicants with Disabilities

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo.

Drug and Alcohol Policy

Wells Fargo maintains a drug-free workplace.  Please see our Drug and Alcohol Policy to learn more.

Wells Fargo Recruitment and Hiring Requirements:

a. Third-Party recordings are prohibited unless authorized by Wells Fargo.

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.