Wells Fargo & Company (NYSE: WFC) is a diversified, community-based financial services company with $1.9 trillion in assets. Wells Fargo's vision is to satisfy our customers' financial needs and help them succeed financially. Founded in 1852 and headquartered in San Francisco, Wells Fargo provides banking, investment and mortgage products and services, as well as consumer and commercial finance, through 7,600 locations, more than 13,000 ATMs, the internet (wellsfargo.com) and mobile banking, and has offices in 32 countries and territories to support customers who conduct business in the global economy. With approximately 263,000 team members, Wells Fargo serves one in three households in the United States. Wells Fargo & Company was ranked No. 29 on Fortune's 2019 rankings of America's largest corporations.
Enterprise Customer Excellence Group (ECEG)
The Enterprise Customer Excellence Group (ECEG) brings together customer-focused functions from across the enterprise to provide a holistic approach to critical points of interaction with Wells Fargo customers. The group, which includes Conduct Management, the Enterprise Complaints Management Office, the Customer Remediation Center of Excellence and Net Promoter System, is responsible for understanding the causes of issues that affect customers, and providing solutions that ensure customers' needs are understood and supported. The group is also accountable for ensuring regulators' expectations are met and that team members have the tools and training necessary for success.
Conduct Management is responsible for enterprise-wide front line management of potential misconduct, end-to-end allegation management, the ethics office, and enterprise platform management and reporting.
The head of the Insider Threat Program (ITP) is a newly created role that will report to the head of Conduct Management. This leader is responsible for leading, managing, and owning the ITP Program and will require demonstrated comprehension of insider threat planning, identification and socialization of responsibilities of internal and external stakeholders, components of an insider threat program, insider threat team development, strategies for effective communication of the program, and effective implementation and operation of the program within the organization.
Based on the distributed functionality across multiple teams including Human Resources, Information and Cyber Security and others, this leader will need to be able to navigate a matrixed environment.
Key responsibilities include:
Manage the Insider Threat Program based on known and unknown threat behavior models.
Coordinate execution of the Program across key stakeholders including Information Security, Human Resources, Legal, Compliance and Conduct Management.
Directly influences enterprise information security leadership and line of business management to identify, formulate, and implement security solutions and controls for a wide variety functional areas and mitigating risk.
Collaborate on the build and implementation of processes and technologies to detect high-risk insider activities that are accidental or malicious in nature. Design reporting mechanisms for potential or actual insider threats. Recommend strategies to prevent potential insider threat behavior or incidents.
Create and implement constructs for early warning detection of potential insider threats. Evaluate technologies to enhance detection capabilities of behavioral constructs.
Review existing process and procedures and suggest modifications to enhance the capabilities of the ITP, including inputs from industry leaders, best practices, and external perspectives.
Represents the organization to external partners, including regulators, industry groups and governmental agencies.
Create and maintain a capabilities roadmap for the ITP.
Participate in special projects and performs other duties as assigned.
Leadership, integrity, and credibility will be determining factors in selection. Successful candidates will be articulate and possess a demonstrated leadership capability; they will be impressive in their inter-personal effectiveness and with regard to their accomplishments. These roles require leaders with strong relationship management, influencing, vision, and execution skills. A key differentiator will be the ability to understand and operate successfully in a complex, heavily matrixed corporate environment. These roles require a sense of urgency, passion for results, and personal accountability for achievement.
The successful candidate will work closely with other senior leaders across the company in the development and execution of company risk management strategies. Accordingly, critical success factors will include the ability to develop partnerships with many business and functional areas.
10+ years of management experience
12+ years of experience in one or more of the following functional areas: business process, quality assurance, strategic planning, or project management
Other Desired Qualifications
10+ years of information technology and/or information security technology experience
Knowledgeable in security issues, vulnerabilities, regulatory and legal changes, and security standards that may impact Information Security
Previous experience managing an Insider Threat Program at an enterprise scale
Working knowledge in principals of network and endpoint security, current threat and attack trends, and security principals
Familiarity with risk scoring and threat analysis tools
Experience with User and Entity Behavior Analytics
Experience with Data Loss Prevention (DLP) security controls
Track record of success in collaborating with, partnering with, and influencing senior leaders within the organization
Proven ability to proactively solve problems and develop strategic recommendations with objective rationale
Ability to leverage data to make effective business decisions
Success in developing a vision, purpose and direction for a team and demonstrated success in carrying it forward as a visible leader
Advanced business acumen, with deep knowledge of how to get things done taking into account organizational procedures, operations and applicable compliance rules and regulations
Ability to manage effectively in a matrixed organization
Success in team member talent recruitment, retention and engagement
Excellent verbal and written communication and presentation skills, especially for executive level management
All major Wells Fargo hub cities may be considered
All offers for employment with Wells Fargo are contingent upon the candidate having successfully completed a criminal background check. Wells Fargo will consider qualified candidates with criminal histories in a manner consistent with the requirements of applicable local, state and Federal law, including Section 19 of the Federal Deposit Insurance Act.
Relevant military experience is considered for veterans and transitioning service men and women. Wells Fargo is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation.
Internal Number: 5549703-8
About Wells Fargo
Wells Fargo & Company (NYSE: WFC) is a diversified, community-based financial services company with $1.9 trillion in assets. Wells Fargo’s vision is to satisfy our customers’ financial needs and help them succeed financially. Founded in 1852 and headquartered in San Francisco, Wells Fargo provides banking, investment and mortgage products and services, as well as consumer and commercial finance, through 7,400 locations, more than 13,000 ATMs, the internet (wellsfargo.com) and mobile banking, and has offices in 32 countries and territories to support customers who conduct business in the global economy. With approximately 260,000 team members, Wells Fargo serves one in three households in the United States. Wells Fargo & Company was ranked No. 29 on Fortune’s 2019 rankings of America’s largest corporations. News, insights and perspectives from Wells Fargo are also available at Wells Fargo Stories.
www.wellsfargo.com | Twitter: @WellsFargo