Principal Engineer - Secure by Design; AppDev/SDLC/Crypto CTO/DCMS Security Solution Architect
About the position About this role: Wells Fargo is seeking a Principal Engineer within our Cybersecurity organization. This individual will serve as a AppDev/SDLC/Crypto CTO/DCMS Security Solution Architect for our Secure by Design team. This is a senior technical expert responsible for ensuring security is fundamentally integrated into the design and architecture of Wells Fargo's technology products and platforms. Operating across the full lifecycle, this role requires a blend of deep domain expertise and broad, adaptable knowledge to provide real-time, context-aware security guidance. You will act as a key partner to product owners, solution architects, and engineers to build secure, resilient, and innovative solutions. In this role, you will: Embed directly with product and platform teams to provide continuous security guidance from ideation and business case formation through to deployment and sunset. Design and champion secure-by-design integrations for a wide array of technologies, including Zero Trust Implementations, Cloud-Native, Ephemeral and Containerized Microservices, AI/ML, Edge Computing and IoT, Quantum, Trusted Compute, Distributed Ledger, and Unified Data Analytics. Serve as a subject matter expert in multiple security domains such as application security, cryptography, identity and access management, network security, and AI security. Translate complex business and technical requirements into actionable security controls and solutions. Proactively identify and mitigate security risks early in the development lifecycle to prevent costly rework and reduce the corporate attack surface. Contribute to the creation of reusable, secure-by-default frameworks and self-service tools to empower engineering teams.
Responsibilities
- Embed directly with product and platform teams to provide continuous security guidance from ideation and business case formation through to deployment and sunset.
- Design and champion secure-by-design integrations for a wide array of technologies, including Zero Trust Implementations, Cloud-Native, Ephemeral and Containerized Microservices, AI/ML, Edge Computing and IoT, Quantum, Trusted Compute, Distributed Ledger, and Unified Data Analytics.
- Serve as a subject matter expert in multiple security domains such as application security, cryptography, identity and access management, network security, and AI security.
- Translate complex business and technical requirements into actionable security controls and solutions.
- Proactively identify and mitigate security risks early in the development lifecycle to prevent costly rework and reduce the corporate attack surface.
- Contribute to the creation of reusable, secure-by-default frameworks and self-service tools to empower engineering teams.
Requirements
- 7+ years of Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
Nice-to-haves
- 10+ years of experience in information security, with a focus on security architecture or product security.
- Demonstrated expertise in at least two of the following domains: application security, cloud security (AWS, Azure, GCP), data security, cryptography, network security, or AI/ML security.
- Proven ability to operate in agile, fast-paced environments and engage effectively across a wide variety of technology stacks and business domains.
- Strong understanding of secure development lifecycle (SDLC) processes, DevSecOps principles, and threat modeling.
- Excellent communication skills, with the ability to influence and articulate complex security concepts to both technical and non-technical stakeholders.
- Relevant industry certifications (e.g., CISSP, CISM, CSSLP, GCSA) are highly desirable.
- Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent experience.
Benefits
- Health benefits
- 401(k) Plan
- Paid time off
- Disability benefits
- Life insurance, critical illness insurance, and accident insurance
- Parental leave
- Critical caregiving leave
- Discounts and savings
- Commuter benefits
- Tuition reimbursement
- Scholarships for dependent children
- Adoption reimbursement
Apply tot his job Apply To this Job