Lead Information Security Engineer focused on phishing mitigation in Cybersecurity at Wells Fargo. Engaging in threat detection and incident response across various teams.
About the role
- Information Security Lead responsible for security posture and compliance initiatives at Earned Wealth. Collaborating across teams to enhance policies and manage risk assessments effectively.
Responsibilities
- Lead and support SOC 2 Type I & II, SEC S-P, ISO 27001, and CCPA initiatives, including leading engagements with external firms and consultants as necessary.
- Maintain and enhance core security and compliance policies (WISP, CDISP, Access, Privacy, Intercompany Agreements).
- Inform and lead the implementation of data and other access permissions consistent with security and compliance policies in close partnership with engineering.
- Develop scalable, repeatable processes to unify acquired firms into Earned’s security and compliance program.
- Conduct risk assessments and maintain a shared risk register with remediation tracking.
- Support identity and access governance (MFA/SSO reviews, onboarding/offboarding, quarterly access reviews).
- Run vendor risk assessments for new and renewing vendors.
- Manage evidence collection, asset inventory, and security compliance platforms such as Vanta or Drata.
- Assist with incident documentation, timelines, and corrective actions.
Requirements
- Bachelor’s degree in relevant field
- 5+ years in GRC, IT audit, security operations, or compliance
- Experience in organizations scaling through both organic and inorganic (M&A) growth
- Familiarity with HITRUST, SOC 2, SEC S-P, NIST CSF, ITGC, and vendor risk frameworks
- Experience designing and implementing scalable evidence systems, compliance workflows, metrics pipelines, and exception processes
- Ability to integrate GRC systems with cloud and SaaS environments for automated evidence collection and continuous monitoring
- Strong documentation, organization, and communication skills
- Ability to work independently in a fast-paced, small-team environment
Benefits
- An attractive total compensation package
- Employer-sponsored health insurance (medical, dental, vision)
- 401k + **5%** match
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Principal Engineer implementing generative AI for cybersecurity at Wells Fargo. Act as a strategic advisor to leadership while overseeing security and AI initiatives.
IT & Cybersecurity Manager leading IT infrastructure and cybersecurity efforts at knok. Ensuring secure, scalable systems to support the digital transformation of healthcare.
Security Systems Technician maintaining physical security technologies and supporting enterprise security operations. Ensuring system integrity and compliance through troubleshooting and vendor collaboration.
IT Security Expert creating and managing SIEM solutions to strengthen Europe's defence capabilities. Collaborating in a small elite team to solve significant security challenges rapidly.
Senior Manager in Regulatory Compliance ensuring effective risk management within the Information Security Group. Overseeing regulatory compliance and governance while leading automation efforts.
Information Security Engineer overseeing security tasks, ensuring implementation of security controls. Collaborating with legal and technical teams in a professional office environment.
Security Administrator managing security across cloud and on - premises environments at Homecare Homebase. Collaborating with teams for patient care systems security and compliance.
Principal Security Engineer shaping security strategy for enterprise IT systems and software products at RedCloud. Leading a team to ensure robust security practices for business growth.
Security Lead at Qargo overseeing security strategy and implementation for a cloud - native transport platform. Collaborating with engineering to ensure compliance and resiliency across Europe.