Lead Information Security Engineer focused on phishing mitigation in Cybersecurity at Wells Fargo. Engaging in threat detection and incident response across various teams.
MA
Hybrid Senior Manager – Regulatory Compliance, Information Security Governance, Risk Management
Posted 6 hours ago
About the role
- Senior Manager in Regulatory Compliance ensuring effective risk management within the Information Security Group. Overseeing regulatory compliance and governance while leading automation efforts.
Responsibilities
- Own centralized monitoring, interpretation, and governance of Information Security regulatory requirements, notices, and circulars, including automated regulator communications.
- Lead the Information Security compliance automation, regulatory watch forum, driving applicability decisions, ownership assignment, and implementation accountability.
- Oversee regulatory submissions, incident reporting, and audits to ensure timely response, consistency, and sustained audit readiness.
- Ensure adherence to internal policies, regulatory requirements, and industry standards.
- Identify, assess, and manage information security and compliance risks across IBG locations.
- Maintain compliance documentation and evidence for internal/external audits.
- Oversee the organization’s regulatory compliance with respect to information security.
- Work with different stakeholders, to ensure that all regulatory requirements with respect to information security are identified, documented and complied with.
- Conduct regular compliance assessments to identify and remediate compliance gaps.
- Develop and maintain a register of all information security regulatory obligations. Ensure that the register is regularly updated and reviewed.
- Be able to satisfy evidence and requirements request from internal auditors and external institutions to demonstrate compliance.
- Maintain and track all security compliance requirements for the IBG countries.
- Manage the IS regulatory calendar and ensure that all regulatory tasks are completed on time.
- Maintain compliance documentation and records.
- Respond to regulatory inquiries and audits with respect to information security.
- Govern regulatory mandated information security / cyber security regulations and standards across the regions including cyber security framework in NESA, SWIFT-CSP, PCI-DSS, DFS500, FFIEC, and HKMA-CRAF etc.
- Govern the IS Regulatory Watch Forum and provide regular reports on its activities and awareness to senior members of the bank on potential regulatory risk.
- Ensure that all policies and procedures, including the local security policy, are reviewed and confirmed to meet relevant regulatory requirements for IS compliance.
- Track internal and external audit issues related to IS compliance for IBG location.
- Develop compliance reports and dashboards for management review.
- Monitor the performance of IS Compliance services to ensure they meet established service level agreements (SLAs) and key performance indicators (KPIs).
Requirements
- 10 -14 years of work experience
- 6–8 years’ experience in Information Security/GRC/Regulatory Compliance.
- 3–5 years in lead or managerial role with clear ownership and decision-making accountability.
- Strong experience in regulatory technology and regulatory automation.
- Degree/master’s degree in IT/Information Security
- Professional certifications: CISA, CISM, CISSP, CRISC, ISO 27001 LA/LI (one or more).
- Familiarity with information security technologies, risk, threat and vulnerability assessments, and security measures.
- Experience with governance, risk management, and compliance frameworks (e.g., ISO 27001, NIST, GDPR, PDPL).
- Experience of working in the banking domain or with banking/payment industry clients.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Principal Engineer implementing generative AI for cybersecurity at Wells Fargo. Act as a strategic advisor to leadership while overseeing security and AI initiatives.
IT & Cybersecurity Manager leading IT infrastructure and cybersecurity efforts at knok. Ensuring secure, scalable systems to support the digital transformation of healthcare.
Security Systems Technician maintaining physical security technologies and supporting enterprise security operations. Ensuring system integrity and compliance through troubleshooting and vendor collaboration.
IT Security Expert creating and managing SIEM solutions to strengthen Europe's defence capabilities. Collaborating in a small elite team to solve significant security challenges rapidly.
Information Security Engineer overseeing security tasks, ensuring implementation of security controls. Collaborating with legal and technical teams in a professional office environment.
Security Administrator managing security across cloud and on - premises environments at Homecare Homebase. Collaborating with teams for patient care systems security and compliance.
Principal Security Engineer shaping security strategy for enterprise IT systems and software products at RedCloud. Leading a team to ensure robust security practices for business growth.
Security Lead at Qargo overseeing security strategy and implementation for a cloud - native transport platform. Collaborating with engineering to ensure compliance and resiliency across Europe.
Project Manager for cybersecurity at Consort Group, leading security solution implementations and client engagement. Collaborating within teams to execute comprehensive cybersecurity projects while ensuring client satisfaction.