About Wells Fargo and Company
Wells Fargo & Company is a diversified financial services company providing banking, insurance, investments, mortgage, and consumer and commercial finance through more than 9,000 stores and more than 12,000 ATMs and the Internet (wellsfargo.com) across North America and internationally.
We re headquartered in San Francisco, but we re decentralized so every local Wells Fargo store is a headquarters for satisfying all our customers financial needs and helping them succeed financially.
Who We Are
The Wells Fargo Technology Risk Management team is responsible for driving the execution and comprehensive view of risk across Enterprise Information Technology (EIT) and the firm by instilling a risk management culture where businesses are accountable for understanding and managing their risk. Technology Risk Management is organized around shared and divisional responsibilities to provide first-line-of-defense risk management support to drive the execution of the Technology Risk Management Program.
About Enterprise Information Technology (EIT)
At Wells Fargo, technology is at the heart of what enables us to satisfy our more than 75 million global customers financial needs and help them succeed financially. The Enterprise Information Technology (EIT) group provides strategic technology-based products, services, and governance for our enterprise business units. EIT helps customers conduct an average of 95 million transactions each day through in-store, online, ATM, and telephone transactions, delivering a true One Wells Fargo experience and ensuring their security, regardless of the channel. Altogether, EIT draws on the talents and motivation of thousands of technology team members across the enterprise, managing world-wide technology for more than 8,700 stores and 12,500 ATMs, making EIT a competitive advantage for Wells Fargo.
We are seeking two (2) Operational Risk Consultants to join our team and assist in providing risk oversight for the effort to encrypt all data at rest that is required to be encrypted in the Data Technology Group. This position will engage with multiple risk and control stakeholders/lines of defense across technology and the enterprise to enable a strong risk management practices and capabilities.
The environment continues to be one of heightened standards, raised risk consciousness and regulatory requirements. As the first line of defense, this role assures real risk reduction within the divisions, consistent with the Wells Fargo Vision & Values and risk appetite. This role will be responsible for the planning and execution of critical FLOD risk functions, in alignment with the Corporate Risk Model and EIT Risk Model. Accountabilities include:
- Develop, implement and support a Technology Risk Framework in alignment with Wells Fargo Risk Management Framework
- Document risk(s) within established and new line of business products/services and shared services IT processes/products/services
- Evaluate risks and prioritize risks and remediation work
Identify & Assess:
- Conduct and support risk assessments that evaluate the technology application/infrastructure environment and estimate the level and trends of inherent risk, determine the effectiveness of associated controls and the level and trends of residual risk
- Be proactive identifying risks within the divisions and across internal and external events
Control & Mitigate:
- Design and implement effective and proactive action plans that appropriately mitigate risks in a sustainable manner and define Key Risk Indicators to track impact
- Operate controls in an effective manner to mitigate risks and deliver IT value
- Execute the related compliance process (e.g. Audits, CICATs, SOX) and IT Policy Management & Exceptions
Monitor & Report:
- Monitor controls to identify gaps and prevent, correct, detect operational risk issues
- Identify, measure, monitor, support and complete EIT risk management training, communication, and outreach programs
- Integrate continuous improvement with metrics and monitoring
- Support Virtuous Circle of risk management
Review and Verification:
- Assuring strategic and foundational risk attributes are comprehensively included in pre, during and post analysis
- Ongoing reviews to identify anomalies, exceptions and outliers that could lead to additional risk events
- Verifying risk management standards, requirements and documented risk reduction attributes are applied
- 6+ years of experience in compliance, operational risk management (includes audit, legal, credit risk, market risk, or the management of a process or business with accountability for compliance or operational risk), or a combination of both; or 6+ years of IT systems security, business process management or financial services industry experience, of which 3+ years must include direct experience in compliance, operational risk management, or a combination of both
Other Desired Qualifications
- Advanced Microsoft Office skills
- Excellent verbal, written, and interpersonal communication skills
- Strong analytical skills with high attention to detail and accuracy
- Ability to interact with all levels of an organization
- Ability to interact with all levels of an organization
- Experience communicating with business partners and project managers
- Certified Internal Auditor (CIA), Certified Information Systems Auditor, (CISA) Certification in Control Self-Assessment (CCSA), Certified Information Systems Security Professional, (CISSP) or other risk management discipline certification
- Experience communicating in both written and verbal formats with senior executive-level leaders
- Information security experience
- Strong risk & control fundamentals, knowledge of frameworks and methodologies, common implementation challenges.
- Experience in evaluating the adequacy and effectiveness of procedures & controls.
- Experience in review & development of risk & control ratings.
- Experience in assessing risk, writing issues and developing appropriate corrective actions.
- Demonstrated negotiation skills, especially with difficult topics when partnering with senior management. This includes the willingness and ability to question decisions, understand direction and escalate issues, where necessary.
- Demonstrated experience with both strategic and tactical approaches to risk management.
- Track record of providing constructive challenge with appropriate issue escalation and offering solution
- Strong ability and experience working with and collaborating with leaders and team members at all levels and across functional lines.
AZ-Chandler: 2600 S Price Rd - Chandler, AZDisclaimer
IA-West Des Moines: 800 S Jordan Creek Pkwy - West Des Moines, IA
MN-Minneapolis: 255 2nd Ave S - Minneapolis, MN
NC-Charlotte: 301 S Tryon St - Charlotte, NC
All offers for employment with Wells Fargo are contingent upon the candidate having successfully completed a criminal background check. Wells Fargo will consider qualified candidates with criminal histories in a manner consistent with the requirements of applicable local, state and Federal law, including Section 19 of the Federal Deposit Insurance Act.
Relevant military experience is considered for veterans and transitioning service men and women.
Wells Fargo is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation.
Associated topics: business, business advisory, business analyst, business systems, business systems analyst, consultant, market, marketing, sales, support analyst