Important Note: During the application process, ensure your contact information (email and phone number) is up to date and upload your current resume when submitting your application for consideration. To participate in some selection activities you will need to respond to an invitation. The invitation can be sent by both email and text message. In order to receive text message invitations, your profile must include a mobile phone number designated as 'Personal Cell' or 'Cellular' in the contact information of your application.
At Wells Fargo, we want to satisfy our customers' financial needs and help them succeed financially. We're looking for talented people who will put our customers at the center of everything we do. Join our diverse and inclusive team where you'll feel valued and inspired to contribute your unique skills and experience.
Help us build a better Wells Fargo. It all begins with outstanding talent. It all begins with you.
This role is a Business Risk and Control Senior Officer position within the Wells Fargo Technology Organization.
Wells Fargo Technology sets IT strategy; enhances the design, development, and operations of our systems; optimizes the Wells Fargo infrastructure footprint; provides information security; and provides technology service for all Wells Fargo businesses and enterprise functions.
Business Risk & Control teams are responsible for partnering with the relevant business or technology groups to identify, assess, manage and mitigate current and emerging risk exposures associated with their activities and operations. Monitors, measures, evaluates, and reports on the impact of decisions and controls to the relevant business group and enterprise function. Consults and provides guidance to business groups on the development, implementation, and monitoring of complex business-specific programs to identify, assess, and mitigate risk. Consults and supports interpretation of policy, guidelines, and governance programs as the front line liaison to Independent Risk Management leaders for moderate to high risk and complexity enterprise risk programs. Provides a high level of risk management acumen to support the business in designing and implementing risk mitigation strategies, business processes and controls that mitigate risks and address regulatory requirements. Develops and implements risk monitoring and risk reporting processes and controls. Monitors and reports on its risk concentration, current and emerging risk, and risk appetite. Aggregates, evaluates, reports on results and escalates where necessary. Designs and executes control effectiveness assurance program for Front Line-owned controls. Leads implementation of initiatives with moderate to high risk. Collaborates internally with business regarding risk management of business-specific risk programs. Interfaces with Independent Risk Management, Audit, Legal, external agencies, and regulatory bodies regarding risk management of business-specific risk programs. May lead project/virtual teams and may mentor but does not manage other team members.
This Officer role supports the CIO team covering Commercial Banking and Corporate & Investment Banking businesses including Payment Solutions, Capital Markets Services, and Strategic Services & Advanced Technology. CCIBT provides technology services to the Commercial Banking line of business, inclusive of Middle Market Banking, Commercial Capital and Treasury Management, and the Corporate and Investment Bank line of business, serving the capital markets, banking and investment needs of our corporate, government and institutional clients. This role will support the designated CIO teams in meeting all requirements of the company's risk framework, ensuring that CCIBT is effectively managing risks associated with technology activities, current and emerging risk identification, measurement, assessment, control, mitigation, monitoring and reporting. This role will work regularly with Wells Fargo Technology and Technology Control teams, Front Line Business Risk and Controls teams, and Second Line functions to ensure a strong control environment exists for compliance with technology-applicable policies, procedures, and guidelines.
The candidate will work directly with the Corporate Investment Banking, Commercial Banking, Treasury and Payments, Strategic Services, Advance Technology and/or Platform and Architecture. In addition they will partner with Policy Owners, Independent Risk Management, Divisional Operational Risk Management, Technical and ICS Subject Matter Experts and Central Risk Process Owners to ensure appropriate technology controls are in place within CCIBT.
Position responsibilities include:
Identifying and assessing risk for the targeted Technology Division
Providing credible challenge on people, process and systems to ensure maximum business results and effective risk mitigation strategies
Providing high quality risk management deliverables through a matrix staffing model to targeted CCIBT senior leaders and team members
Partnering with Business Risk and Control team officers, senior associates and applicable central technology controls teams to:
Perform reviews of new products, solutions, projects and program requirements, evaluating control strength and associated risks
Review mitigation/remediation plans and providing counsel on mitigation effectiveness and alternative mitigation approaches
Manage issue, policy exception and risk acceptance portfolio to ensure appropriate and timely risk mitigation inclusive of third and fourth party risk
Perform gap analysis for policies and/or regulatory requirements
Conduct root cause analysis on technology incidents to identify weak or non-existing controls and create effective mitigation plans
Produce effective and actionable management reporting for CIO and ultimately sub-CIO level
Effectively collaborating with business partners in the first-line-of-defense (FLOD), second line of defense (SLOD), audit and information security
Working with stakeholders to ensure each has the tools, processes and expertise to effectively manage technology risks
Developing and maintaining strong working relationships with the line of business, corporate regulatory, operational risk, compliance and corporate audit.
7+ years of experience in risk management (includes compliance, financial crimes, operational risk, audit, legal, credit risk, market risk, IT systems security, business process management) or 7+ years of financial services industry experience, of which 5+ years must include direct experience in risk management
Ability to coordinate completion of multiple tasks and meet aggressive time frames
Ability to prepare management level presentations
Ability to interact with all levels of an organization
Strong analytical skills with high attention to detail and accuracy
Strong collaboration and partnering skills
Knowledge and understanding of technology risks related to business risks
Excellent verbal, written, and interpersonal communication skills
Experience defining and/or developing business initiatives that require integration of multiple technology systems
Experience monitoring industry, technology and regulatory trends to determine business impacts
Ability to manage large-scale initiatives including stakeholders across business and technical teams
Process design or improvement experience
Other Desired Qualifications
Demonstrated experience in business and technology issue management
Demonstrated information technology experience in areas such as systems development lifecycle, architecture, application support and information security.
Knowledge and understanding of technology regulatory guidance and industry frameworks or standards FFIEC, NIST, ISO, COBIT, PCI, ITIL, SOX, SOC
Program or project management experience related to Technology Risk Management
Experience with risk assessment methodology within the context of technology risk
Third Party Risk Management
Control Testing including Test of Design and Test of Performance
Executive Support and Interaction
Process Management and understanding of Technology Processes (Asset, SDLC, Patching, Configuration, Vulnerability)
Metrics Creation and monitoring
Ability to travel up to 10% of the time
All offers for employment with Wells Fargo are contingent upon the candidate having successfully completed a criminal background check. Wells Fargo will consider qualified candidates with criminal histories in a manner consistent with the requirements of applicable local, state and Federal law, including Section 19 of the Federal Deposit Insurance Act.
Relevant military experience is considered for veterans and transitioning service men and women. Wells Fargo is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation.
Internal Number: 5545607-1
About Wells Fargo
Wells Fargo & Company (NYSE: WFC) is a diversified, community-based financial services company with $1.9 trillion in assets. Wells Fargo’s vision is to satisfy our customers’ financial needs and help them succeed financially. Founded in 1852 and headquartered in San Francisco, Wells Fargo provides banking, investment and mortgage products and services, as well as consumer and commercial finance, through 7,400 locations, more than 13,000 ATMs, the internet (wellsfargo.com) and mobile banking, and has offices in 32 countries and territories to support customers who conduct business in the global economy. With approximately 260,000 team members, Wells Fargo serves one in three households in the United States. Wells Fargo & Company was ranked No. 29 on Fortune’s 2019 rankings of America’s largest corporations. News, insights and perspectives from Wells Fargo are also available at Wells Fargo Stories.
www.wellsfargo.com | Twitter: @WellsFargo