View Job

Operational Risk Consultant 4 - Enterprise Information Security Control Tester

Wells Fargo | Portland OR 97299 USA | Full Time | Posted: 07/16/2019

Job Descriptiontop

Job Description

At Wells Fargo, we want to satisfy our customers’ financial needs and help them succeed financially. We’re looking for talented people who will put our customers at the center of everything we do. Join our diverse and inclusive team where you’ll feel valued and inspired to contribute your unique skills and experience.

Help us build a better Wells Fargo. It all begins with outstanding talent. It all begins with you.

Corporate Risk helps all Wells Fargo businesses identify and manage risk. The team focuses on several key risk types, including conduct, credit, financial crimes, information security, interest rate, liquidity, market, model, operational, regulatory compliance, reputation, strategic, and technology risk.
The group provides leadership, enhances communications, assists with problem identification and solutions, and shares best practices. In addition, the group provides an enterprise-wide view of risk, assists management and our Board of Directors in identifying and monitoring risks that may affect multiple lines of business, and takes appropriate action when business activities exceed the risk tolerance of the company.

Within Wells Fargo Compliance, the Enterprise Testing group is responsible for establishing and maintaining a consolidated Enterprise Testing program at the corporate level. Enterprise Testing is responsible for developing a common methodology and standards, providing governance and oversight, executing testing; and conducting horizontal reviews. Testing and validation teams are responsible for implementing the Enterprise Testing methodology and standards, and executing group- specific testing.

The Enterprise Functions T&V team is seeking candidates who will be responsible for performing risk-based control testing to assure Enterprise compliance with Information Security policies and control requirements. These responsibilities will include performing control testing in accordance with the Independent Monitoring, Testing and Validation Policy and Enterprise Testing Operating Procedures.

This position reports directly to: Testing Manager.

Other key responsibilities include (but are not limited to):

  • Lead, plan and perform control testing within required timeframes and in accordance with established processes and procedures
  • Communicate testing process, status, and results to business and risk partners
  • May lead larger more complex reviews than those led by less experienced specialists/consultants
  • Design test scripts and identify accurate and complete populations for testing
  • Evaluate and rate control design and performance
  • Provide credible challenge and recommendations resulting from testing engagements to risk and business partners
  • Consult with business to effectively manage change in ensuring adequate corrective actions are in place to ensure policy compliance


Required Qualifications

  • 6+ years of experience in compliance, operational risk management (includes audit, legal, credit risk, market risk, or the management of a process or business with accountability for compliance or operational risk), or a combination of both; or 6+ years of IT systems security, business process management or financial services industry experience, of which 3+ years must include direct experience in compliance, operational risk management, or a combination of both



Desired Qualifications

  • Advanced Microsoft Office skills
  • Excellent verbal, written, and interpersonal communication skills
  • Strong analytical skills with high attention to detail and accuracy
  • Ability to interact with all levels of an organization
  • 4+ years of information security experience
  • Knowledge and understanding of Information Security Frameworks and standards (FFIEC, NIST, ISO)
  • Knowledge and understanding of financial services industry: compliance, risk management, or audit operations
  • Experience testing policy and procedures/control testing
  • Experience creating, executing, and documenting compliance testing
  • Knowledge and understanding of information security risk assessment procedures, risk mitigation or remediation
  • Knowledge and understanding of Shared Risk Platform (SHRP) such as reporting and issue management



Other Desired Qualifications

One or more of the following certifications is desired:

  • Certified Information Systems Auditor (CISA)
  • Certified Internal Auditor (CIA)
  • Certified in Risk and Information Systems Control (CRISC)
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM)




Disclaimer


All offers for employment with Wells Fargo are contingent upon the candidate having successfully completed a criminal background check. Wells Fargo will consider qualified candidates with criminal histories in a manner consistent with the requirements of applicable local, state and Federal law, including Section 19 of the Federal Deposit Insurance Act.



Relevant military experience is considered for veterans and transitioning service men and women.

Wells Fargo is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation.

Job Detailstop

Location Portland, OR, 97299, United States
Categories Quality Assurance/Safety

Location Maptop

Contact Informationtop

Contact Name -
How to apply Employer provided a link where your application will be accepted. Click on the link below and follow instructions.
Apply Click Here (apply to job)
Job Code 5497254-4
Advertisement

Featured Employers - view all