Important Note: During the application process, ensure your contact information (email and phone number) is up to date and upload your current resume when submitting your application for consideration. To participate in some selection activities you will need to respond to an invitation. The invitation can be sent by both email and text message. In order to receive text message invitations, your profile must include a mobile phone number designated as 'Personal Cell' or 'Cellular' in the contact information of your application.
At Wells Fargo, we want to satisfy our customers' financial needs and help them succeed financially. We're looking for talented people who will put our customers at the center of everything we do. Join our diverse and inclusive team where you'll feel valued and inspired to contribute your unique skills and experience.
Help us build a better Wells Fargo. It all begins with outstanding talent. It all begins with you.
Corporate Risk helps all Wells Fargo businesses identify and manage risk. The team focuses on several key risk types, including conduct, credit, financial crimes, information security, interest rate, liquidity, market, model, operational, regulatory compliance, reputation, strategic, and technology risk. The group provides leadership, enhances communications, assists with problem identification and solutions, and shares best practices. In addition, the group provides an enterprise-wide view of risk, assists management and our Board of Directors in identifying and monitoring risks that may affect multiple lines of business, and takes appropriate action when business activities exceed the risk tolerance of the company.
Wells Fargo is looking for a Payment Card Industry (PCI) professional to join the Operational Risk Management Strategy, Planning & Governance PCI Independent Risk Management (PCI IRM) team. This role will be part of Wells Fargo's PCI Independent Risk Management team. The candidate will help shape and transform Wells Fargo on its PCI journey, and will have the opportunity to collaborate across the enterprise to influence risk and reward decisions. The candidate will have an opportunity to oversee and challenge operational risk exposures and risk management practices, utilizing skills to monitor, analyze and develop standards for mitigating risks that arise from inadequate or failed internal processes, people, systems, or external events, while maintaining a balance between risk mitigation and operational efficiency. The position reports to the Head of PCI Independent Risk Management in the Operational Risk organization.
Key responsibilities include, but are not limited to:
Provides operational risk expertise and consulting to complex business units for initiatives with high risk, generally spanning multiple business lines.
Identifies operational risk issues and may participate in development of risk ratings.
Designs and develops complex testing strategies, methodologies and analyses.
Evaluates the adequacy and effectiveness of policies, procedures, processes, systems and internal controls.
Analyzes complex business and/or system changes to determine impact.
Provides consulting to business on corrective action plans and effectively managing change.
Reports findings and develops business cases to influence executive management or management committee member/head of business on the need for controls to mitigate risk.
Leads implementation of initiatives with moderate to high risk. Internal collaboration with business for oversight of risk management.
May interface with Audit, Legal, external agencies, and regulatory bodies on risk related topics.
May lead project/virtual teams and may mentor but does not manage other team members.
Technical experience with complex multi-platform environments such as cloud transformation, network segmentation, and Cardholder data environment (CDE) migration, along with proven ability to develop processes and procedures to ensure that governance and process ownership are clearly defined and implemented.
Develops process and procedures for overseeing of automation of PCI data scanning and remediation, overseeing of tokenization of PCI data, and produces meaningful metrics.
Develops processes and procedures for oversight of Wells Fargo's front line validation of service providers, merchants, and merchants' service providers' PCI compliance and produces meaningful metrics.
Oversight of Wells Fargo's awareness and training programs to ensure alignment with PCI DSS, and ensure successful completion by impacted employees and produces meaningful metrics.
Oversight of front line methodology of integration and alignment of PCI Data Security Standard (PCI DSS) into Wells Fargo's policies, to ensure comprehensiveness.
Reviews mitigation/remediation plans and provides advice on mitigation effectiveness and alternative mitigation approaches.
Effectively collaborates with business and technology partners in the first line of defense to ensure incorporation of risk considerations into decision making to align with risk appetite.
Establishes expectations for front line controls through direct and respectful communication.
Integrating across the Independent Risk Management and Operational Risk teams to fulfill commitments.
Working with stakeholders to ensure each has the tools, processes and expertise to effectively manage operational risks.
Combines analytic and problem solving skills with excellent communication skills in order to discover and present key findings associated with complex analyses.
Aggregates risk monitoring results at meaningful levels, evaluates findings, and identifies opportunities to improve risk programs across the Company.
Maintains a Company-wide view of current and emerging PCI risks by aggregating risk information in a meaningful way, including across lines, of businesses, enterprise functions, and the Company.
Achieve ISA certification within 12 months of hire.
7+ years of experience in risk management (includes compliance, financial crimes, operational risk, audit, legal, credit risk, market risk, IT systems security, business process management) or 7+ years of financial services industry experience, of which 5+ years must include direct experience in risk management
2+ years of Payment Card Industry (PCI) experience
Excellent verbal, written, and interpersonal communication skills
Ability to interact with all levels of an organization
Ability to work and influence successfully within a matrix environment and build effective business partnerships with all levels of team members
Ability to take initiative and work independently with minimal supervision in a structured environment
Ability to prioritize work, meet deadlines, achieve goals, and work under pressure in a dynamic and complex environment
Advanced Microsoft Office (Word, Excel, and Outlook) skills
Experience developing well-defined plans for problem resolution from preliminary or ambiguous information
Other Desired Qualifications
Knowledge and understanding of GRC tools, such as Archer, that enable reporting and issue management.
Experience analyzing data of large volumes from disparate systems: mining the data, determining meaningful insights in order to convey a succinct and compelling story.
Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), or Certified in Risk and Information Systems Control (CRISC).
All offers for employment with Wells Fargo are contingent upon the candidate having successfully completed a criminal background check. Wells Fargo will consider qualified candidates with criminal histories in a manner consistent with the requirements of applicable local, state and Federal law, including Section 19 of the Federal Deposit Insurance Act.
Relevant military experience is considered for veterans and transitioning service men and women. Wells Fargo is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation.
Internal Number: 5556773-6
About Wells Fargo
Wells Fargo & Company (NYSE: WFC) is a diversified, community-based financial services company with $1.9 trillion in assets. Wells Fargo’s vision is to satisfy our customers’ financial needs and help them succeed financially. Founded in 1852 and headquartered in San Francisco, Wells Fargo provides banking, investment and mortgage products and services, as well as consumer and commercial finance, through 7,400 locations, more than 13,000 ATMs, the internet (wellsfargo.com) and mobile banking, and has offices in 32 countries and territories to support customers who conduct business in the global economy. With approximately 260,000 team members, Wells Fargo serves one in three households in the United States. Wells Fargo & Company was ranked No. 29 on Fortune’s 2019 rankings of America’s largest corporations. News, insights and perspectives from Wells Fargo are also available at Wells Fargo Stories.
www.wellsfargo.com | Twitter: @WellsFargo