Executive Director Head of Information Protection

About this role:

Wells Fargo is seeking an Executive Director Head of Information Protection. The Director will lead the governance and execution of our information protection program which includes but is not limited to Encryption Key Management Tokenization Certificate Lifecycle Management requirements definition and exceptions review fora chair and representation and Regulatory engagement. The Director will be responsible for ensuring data across the organization is protected in line with its security classification. This role will report directly to the Head of Cybersecurity Governance & Information Protection (GCIP) team and will work closely with other directors and executives to align information protection strategies with business objectives.

Key Responsibilities:

Strategic Leadership

- Develop and implement a comprehensive information protection strategy that aligns with the banks overall cyber security framework and

business goals.

- Serve as a key member of the cyber security leadership team contributing to the overall direction and priorities of the organization.

Risk Management

- Identify assess and prioritize information protection risks and vulnerabilities and develop risk mitigation plans.

- Collaborate with risk management and other front-line teams to ensure compliance with regulatory requirements and industry standards.

Policy Development

- Establish and drive enterprise information protection policy and procedure requirements to govern information classification and protection

practices across the organization.

- Ensure that the information protection security posture and associated risk is understood and requirements are enforced throughout the

bank.

Stakeholder Engagement

- Collaborate with various departments including IT legal compliance and business units to promote a culture of information protection

and security awareness.

- Serve as a point of contact for internal and external stakeholders regarding information protection initiatives and concerns.

Team Leadership

- Build and lead a high-performing information protection team providing mentorship and professional development opportunities.

- Foster a collaborative and innovative work environment that encourages continuous improvement and skill enhancement.

Additionally:

Manage a team of engineering managers and engineering leads

Focus on delivering commitments aligned to enterprise strategic priorities

Build support for strategies with business and technology leaders

Guide development of actionable roadmaps and plans

Identify opportunities and strategies for continuous improvement of software engineering practices

Provide oversight to software craftsmanship security availability resilience and scalability of solutions developed by the

teams or third-party providers

Identify financial management and strategic resourcing

Set risk management guidelines and partner with stakeholders to implement key risk initiatives

Develop strategies for hiring engineering talent

Lead implementation of projects and encourage engineering innovation

Collaborate and influence all levels of professionals including more experienced managers

Lead team to achieve objectives

Interface with external agencies regulatory bodies or industry forums

Manage allocation of people and financial resources for Technology Strategic Leadership

Develop and guide a culture of talent development to meet business objectives and strategy

Required Qualifications:

• 8 years of Technology Strategic Leadership experience or equivalent demonstrated through one or a combination of the

following: work experience training military experience education

4 years of management or leadership experience

Desired Qualifications:

• 5 of advanced technology experience in cyber security and risk including cryptography Encryption Key Management Tokenization Certificate Lifecycle Management Policy management and Regulatory engagement in enterprise level regulated environments.
• Advanced knowledge in data protection regulations (e.g. GDPR CCPA PCI-DSS GLBA FFIEC NYDFS) and best practices (e.g. NIST ISO CRI) in information security.

Proven experience in risk management information protection and security requirements setting and monitoring

Experience with driving business requirements for information protection related automation and/or Artificial

Intelligence/Machine Learning solutions

Excellent team leadership abilities in inspiring and development of diverse cyber security teams and individuals

Excellent communication and interpersonal skills with the ability to influence internal and external stakeholders at all levels.

Relevant industry and technical certifications such as CISSP CISM or CISA are highly desirable

Expectations:

Ability to travel up to 10% of the time

Ability to work a hybrid schedule in a listed location 3 days per week on-site/in office and 2 days per week remote.

100% remote work option is not available

Locations:

• New York NY

Pay Range

Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to achievements skills experience or work location. The range listed is just one component of the compensation package offered to candidates.

Posting End Date:

*Job posting may come down early due to volume of applicants.

We Value Equal Opportunity

Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race color religion sex sexual orientation gender identity national origin disability status as a protected veteran or any other legally protected characteristic.

Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit Market Financial Crimes Operational Regulatory Compliance) which includes effectively following and adhering to applicable Wells Fargo policies and procedures appropriately fulfilling risk and compliance obligations timely and effective escalation and remediation of issues and making sound risk decisions. There is emphasis on proactive monitoring governance risk identification and escalation as well as making sound risk decisions commensurate with the business units risk appetite and all risk and compliance program requirements.

Applicants with Disabilities

To request a medical accommodation during the application or interview process visitDisability Inclusion at Wells Fargo.

Drug and Alcohol Policy

Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more.

Wells Fargo Recruitment and Hiring Requirements:

a. Third-Party recordings are prohibited unless authorized by Wells Fargo.

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.