Information Security Analyst

IAM Risk Triage - Information Security Analyst 3 (IAM Cloud Security)
Location: Charlotte, Chandler, Dallas, MN- relocation candidates are fine.

Overview:
This role focuses on building and advancing the IAM cloud capabilities at Wells Fargo. The ideal
candidate has experience working with Microsoft Azure and Google Cloud Platform (GCP)
and understands how IAM controls are applied in cloud environments.
Job Description Summary:
Information Security Analysis: Covers jobs within the IT environment focusing on
examining and testing security controls and assessing how business functions engage and
interact with technology to tailor initiatives to react to technological trends while exceeding IT
security measures.
Detailed Job Description:
About this role:
Wells Fargo is seeking a IAM Triage Lead Analyst (Lead Information Security Analyst) in
Cybersecurity as part of Identity Access Management. Learn more about career areas and
business divisions at wellsfargojobs.com
This role is responsible for investigating highly complex IAM issues and needs that require in
depth knowledge of IAM processes, tools, and technologies at Wells Fargo to solve, ensuring
rapid and accurate diagnosis and root cause assessment. This resource will advise projects or
remediation activities by creating designs and strategies to meet the goals of the issue within
triage.

Key Responsibilities:
Design and assess cloud-based identity and access strategies.
Evaluate IAM risk posture in cloud-hosted environments.
Partner with engineering to define secure access patterns.
Provide input on architecture enhancements and tool alignment.

In this role, you will:
• Triage
o Lead the assessment and resolution of complex IAM issues and needs ensuring
proper categorization and resolution.
o Perform detailed investigations to determine root cause and recommend
solutions to prevent recurrence.
• Process Improvement:
o Assess complex IAM process issues to identify and mitigate risks, potential
improvements, and efficiency enhancements to prevent recurrence.
o Partner with the IAM Governance and Operations team to analyze IAM metrics to
identify trends and areas for improvement.
o Collaborate with product and engineering teams to define and design solutions,
implement fixes and process improvements.
• Technical Leadership:
o Provide expert guidance in resolving complex IAM Issues
• Collaboration:
o Partner with IAM, Cyber and the broader Wells Fargo Technology (WFT)
organization to resolve highly complex issues that involve identity and access
management.
o Provide data driven feedback to IAM product teams to help improve product
quality, system or process resilience and user experience.
• Risk Management:
o Partner with IAM Governance and Risk partners to ensure proposed solutions to
complex IAM issues address underlying risk, satisfy policy and regulatory
requirements.
• Documentation:
o Develop and maintain detailed documentation of issues, resolutions, and process
improvements to help contribute to knowledge base/best practices.

Required Qualifications:
• 5+ years of Information Security Analysis experience, or equivalent demonstrated
through one or a combination of the following: work experience, training, military
experience, education
• 5+ years of experience in Identity and Access management, with a focus on triage,
troubleshooting and resolution.
• IAM experience with cloud platforms, especially Azure and/or GCP.
• Understanding of cloud-native IAM services and policies.
• Strong collaboration skills across engineering, risk, and security teams.
• Familiarity with enterprise IAM tools and standards.

Desired Qualifications:
• Experience with IAM Technologies and Tools (i.e., Authentication: Ping, Okta, MS Azure
Active Directory); IGA: SailPoint; PAM: CyberArk, Beyond Trust, MFA: RSA Secure ID,
Directory Services: MS Active Directory; Open LDAP; API Security and Access
Management: Apigee, OAuth; Identity Analytic Tools: Gurucul, Saviynt;)
• Strong understanding of IAM security principles, processes, and best practices such as
principle of least privilege and zero-trust architecture
• Proficient in Database, Cloud and OS security and principles
• Deep understanding of Access Control and Authentication concepts such as Role-Based
Access Control (RBAC), Identity Federation and Kerberos authentication protocols
• Strong analytical and problem-solving skills
• Ability to query and analyze data in databases and log files.
• Proficiency in scripting languages such as PowerShell or Python
• Experience with Cloud-based IAM Solutions such as MS Azure AD, OpenShift and
Google Cloud
• Excellent communication and people skills
• Ability to work under pressure and manage multiple priorities
• Experience and fluency in Financial Services and Technology
• Hands-on experience integrating cloud IAM with platforms like SailPoint or CyberArk.
• Experience conducting security assessments in hybrid cloud setups.