Info Security Sr Associate - Hyderabad @ Wells Fargo

About the role: This position will lead a team responsible for identifying, formulating and implementing information security policies, procedures, and controls within the Identity and Access Management (IAM) domain. Drives design and implementation of complex and innovative solutions that bring together organizational goals, risk appetite, and control objectives.

Using indepth knowledge of information security and the enterprise, recommends changes to enterprise information security IAM domain policies, standards, procedures, and control requirements. Ensures IAM domain controls are appropriately inventoried, tested and periodically reviewed to ensure control design effectiveness. Recommends compliance and risk management requirements for the IAM domain and works with other stakeholders to implement key risk initiatives, proactively identify and address issues, and escalate where neces sary. Engages Information and Cyber Security (ICS), Wells Fargo Technology (WFT), and Wells Fargo lines of business (LOB) management to identify, formulate and implement risk-managed information security solutions. Works with various compliance and regulatory teams internal and external to Wells Fargo to ensure th e best possible outcomes. Each of the above may have functional delivery leaders in place who in turn will report in to the IAM Issues-Compliance-controls Leader. The manager role will have dual reporting line in to the lead of ICS IAM Issues-Compliance-Controls leader in India and to the Leader of Identity & Access Management Compliance-Issues-Controls at the IAM US Key Functions:

• Provides senior consultative services to stakeholders on new, emerging and/or most complex IAM security and compliance developments, including SOX, SOC-1 and SOC-2, GBLA, and others.
• Evaluates and interprets internal and enterprise IAM policies, processes and standards, and influences compliance and control decisions on net new or material changes to IT assets.
• Directs information security risk assessment and analysis, and recommends remediation plans and strategies.
• Provides strategic leadership in responding to IT audit, compliance, and issue management requirements on behalf of the IAM domain.