Purple Team Specialist

Important Note: During the application process, ensure your contact information (email and phone number) is up to date and upload your current resume when submitting your application for consideration. To participate in some selection activities you will need to respond to an invitation. The invitation can be sent by both email and text message. In order to receive text message invitations, your profile must include a mobile phone number designated as “Personal Cell” or “Cellular” in the contact information of your application.

At Wells Fargo, we are looking for talented people who will put our customers at the center of everything we do. We are seeking candidates who embrace diversity, equity and inclusion in a workplace where everyone feels valued and inspired.

Help us build a better Wells Fargo. It all begins with outstanding talent. It all begins with you.

Technology sets IT strategy; enhances the design, development, and operations of our systems; optimizes the Wells Fargo infrastructure; provides information security; and enables Wells Fargo global customers to have 24 hours a day, 7 days a week banking access through in-branch, online, ATMs, and other channels.

Our mission is to deliver stable, secure, scalable, and innovative services at speeds that delight and satisfy our customers and unleash the skills potential of our employees.

Since 1852, customers have trusted that Wells Fargo would keep their assets secure from theft and always available. Today, maintaining customer trust remains our underlying operating principle.

Information and Cyber Security’s (ICS) vision is to provide Wells Fargo world leading cyber security risk management. Through a framework that addresses policy, process, operations, people, and technology, ICS protects Wells Fargo’s infrastructure, corporate data, and customer assets, and ensures alignment with applicable regulations and laws. ICS is part of Wells Fargo's Technology organization and is led by the Chief Information Security Officer.

Our ICS team is looking for a strong cyber security professional with experience or education in tactical cyber-attack evaluation, exploit testing and analysis, cyber intelligence, and red or purple teaming. The ideal candidate will have experience in using tactical expertise in exploit testing, and exploit proof-of-concept development and analysis, to identify over-the-horizon cyber-attack vectors that may pose a risk to the company’s information security environment. The candidate will also have experience partnering with cyber defenders to resolve identified capability gaps. The team member will need to have experience in conducting technical research and identifying methods to detect emerging cyber threats, emulating full-life cycle cyber-attack methodologies, and have a deep, technical understanding of evolving Advanced Persistent Threat (APT) Tactics, Techniques, and Procedures (TTPs).

The ideal candidate will have a well-rounded understanding of endpoint/network defenses and detection methodologies, or incident response, in addition to an expertise in how adversarial cyber threat actors think and attack. Regular collaboration with multiple teams such as the Cyber Threat Fusion Center, Security Content Development, Cyber Threat Intelligence, and Offensive Security teams will be critical to success.

• 
  7 years of information security applications and systems experience
• 6 years of information technology applications and systems experience
• 3 years of experience managing cybercrime detection, investigation, and intelligence strategies
• 4 years of experience with technical project coordination associated with Red Team, Purple Team, Blue Team Assessments or offensive security research assessment

• 
  2 years of Splunk experience
• 3 years of information security experience including experience in one or more of the following security disciplines: information security monitoring, incident response, vulnerability management, host/network forensics, cyber-crime investigation, penetration testing, business continuity, or cyber threat intelligence
• Ability to execute in a fast paced, high demand, environment while balancing multiple priorities
• Highly refined and professional verbal and written communications
• Knowledge and understanding of banking or financial services industry
• Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), Global Information Assurance Certification (GIAC), or Web Application Penetration Tester (WAPT) certification
• Experience conducting project meetings, presentations and status reporting

• 2 years of workload automation tool experience
• Knowledge and understanding of data security controls including malware protection, firewalls, intrusion detection systems, content filtering, Internet proxies, encryption controls, and log management solutions
• Knowledge of offensive security, with the ability to think like an adversary when hunting and responding to incidents
• Strong investigative mindset with an attention to detail
• Experience with multiple operating systems to include Windows, Mac OS, and Unix/Linux
• Advanced problem solving skills, ability to develop effective long-term solutions to complex problems

• 
  Ability to travel up to 10% of the time

NC-Charlotte: 401 S Tryon St - Charlotte, NC
NC-Charlotte: 1525 W Wt Harris Blvd - Charlotte, NC
NC-Winston Salem: 809 W 4 1/2 St - Winston Salem, NC
VA-Glen Allen: 4340 Innslake Dr - Glen Allen, VA
NC-Raleigh: 1100 Corporate Center Dr - Raleigh, NC
AZ-Chandler: 2600 S Price Rd - Chandler, AZ
AZ-PHX-Central Phoenix: 100 W Washington St - Phoenix, AZ
AZ-PHX-Northwest Phoenix: 2222 W Rose Garden Ln - Phoenix, AZ
AZ-Tempe: 1305 W 23rd St - Tempe, AZ
TX-Plano: 4975 Preston Park Blvd - Plano, TX
TX-Irving: 2975 Regent Blvd - Irving, TX
MN-Minneapolis: 255 2nd Ave S - Minneapolis, MN
MN-Minneapolis: 600 S 4th St - Minneapolis, MN
MN-Minneapolis: 425 E Hennepin Ave - Minneapolis, MN
MN-Saint Louis Park: 600 Highway 169 S - Saint Louis Park, MN
IA-Des Moines: 800 Walnut St - Des Moines, IA
MO-Saint Louis: 1 N Jefferson Ave - Saint Louis, MO
TX-San Antonio: 4101 Wiseman Blvd - San Antonio, TX
DC-Washington: 1700 K Street NorthWest - Washington, DC
PA-Philadelphia: 101 N Independence Mall E - Philadelphia, PA
IL-Chicago: 10 S Wacker Drive - Chicago, IL
CA-SF-Financial District: 333 Market St - San Francisco, CA
MA-Boston: 125 High Street - Boston, MA
NY-New York: 150 E 42nd St - New York, NY
GA-Atlanta: 3579 Atlanta Ave - Atlanta, GA
OR-Portland: 1300 Sw 5th Ave - Portland, OR
CA-El Monte: 3440 Flair Dr - El Monte, CA
UT-Salt Lake City: 260 Charles Lindbergh Dr - Salt Lake City, UT