Information Security Engineering Manager
Wells Fargo
About this role:
In this role, you will:
- Provide strategic leadership for the Privileged Access Management (PAM) platform, defining vision, roadmaps, and long‑term evolution for credential vaulting, session management, secrets management, and least‑privilege access across the enterprise
- Lead teams responsible for securing privileged credentials and access paths, including account onboarding, rotation, session isolation, and policy enforcement for human and non‑human identities
- Drive modernization of PAM capabilities, transitioning from legacy, manually managed access models to automated, policy‑driven, and API‑integrated solutions aligned with Zero Trust principles
- Guide adoption of DevSecOps and automation patterns for privileged access, including CI/CD integrations, secrets delivery, ephemeral credentials, and infrastructure‑as‑code enablement
- Oversee vulnerability reduction and risk mitigation related to privileged access, including elimination of hard‑coded credentials, shared accounts, excessive entitlements, and standing access
- Partner closely with security architecture, IAM, cloud, infrastructure, and application teams to embed privileged access controls into platforms, pipelines, and operating models
- Manage a team of engineers designing, implementing, documenting, and supporting highly complex PAM solutions spanning CyberArk, secrets management platforms, directory services, cloud IAM, and hybrid environments
- Provide security consulting and design oversight for large enterprise initiatives to ensure privileged access patterns conform to information security policy, regulatory requirements, and audit expectations
- Serve as a subject matter expert in PAM technologies and best practices, staying current on emerging threats, access models, and platform capabilities
- Lead technical investigation and response for privileged access–related incidents, including root cause analysis and remediation recommendations to prevent recurrence
- Ensure PAM controls support availability, confidentiality, integrity, access governance, monitoring, and incident response, while enabling business agility and developer productivity
- Manage resource planning, prioritization, and financial stewardship for PAM engineering and platform investments
- Mentor, develop, and retain engineering talent, building strong technical depth and leadership capability within the PAM organization
Required Qualifications:
-
5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
2+ years of Leadership experience
Desired Qualifications:
Experience with CyberArk credential management system
Experience with Agentic AI identity frameworks like SPIFFE and SPIRE
Experience managing and developing high‑performing Agile teams focused on Privileged Access Management, identity platforms, and security engineering solutions
Strong knowledge of DevSecOps patterns as they relate to privileged access, including secure CI/CD integration, automated credential delivery, secrets injection, and control enforcement
Hands‑on understanding of Kubernetes and cloud‑native environments from a privileged access perspective, including workload identity, service accounts, secrets distribution, and container access controls
Proficiency with cloud and hybrid architectures requiring secure privileged access, including integration with cloud IAM, secrets management platforms, and enterprise PAM tooling
Ability to drive engineering excellence in PAM through automation, policy‑driven access, observability, and standardized onboarding patterns
Proven collaboration skills with IAM, security architecture, infrastructure, cloud, and application teams to deliver resilient, compliant, and scalable privileged access solutions
Demonstrated leadership in PAM platform engineering, building and operating centralized vaulting, session management, secrets services, and self‑service access models
Experience leading modernization of privileged access for legacy and home‑grown systems, including removal of hard‑coded credentials, reduction of shared accounts, and elimination of standing access
Track record of transformation leadership to establish new privileged access patterns, operating models, and Zero Trust–aligned controls across the enterprise
Expertise in automation and CI/CD enablement for PAM, including policy‑as‑code, secrets management, credential rotation, and integration across on‑prem and cloud environments
Ability to define and execute a cloud and platform readiness roadmap for privileged access, guiding teams through staged adoption or hybrid models while maintaining uptime, auditability, and compliance
Job Expectations:
Ability to work on-site in one of the listed locations in a hybrid environment. There is no option for fully remote work
This position is not available for visa sponsorship
Pay Range
Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to demonstrated examples of prior performance, skills, experience, or work location. Employees may also be eligible for incentive opportunities.
$119,000.00 - $187,000.00Benefits
Wells Fargo provides eligible employees with a comprehensive set of benefits, many of which are listed below. Visit Benefits - Wells Fargo Jobs for an overview of the following benefit plans and programs offered to employees.
- Health benefits
- 401(k) Plan
- Paid time off
- Disability benefits
- Life insurance, critical illness insurance, and accident insurance
- Parental leave
- Critical caregiving leave
- Discounts and savings
- Commuter benefits
- Tuition reimbursement
- Scholarships for dependent children
- Adoption reimbursement
Posting End Date:
3 Apr 2026*Job posting may come down early due to volume of applicants.
We Value Equal Opportunity
Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic.
Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit’s risk appetite and all risk and compliance program requirements.
Applicants with Disabilities
To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo.
Drug and Alcohol Policy
Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more.
Wells Fargo Recruitment and Hiring Requirements:
a. Third-Party recordings are prohibited unless authorized by Wells Fargo.
b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.