Lead Security Encryption Engineer
Wells Fargo · West Des Moines, IA · 2 wk ago
Engineering$119k–$224k/yrFull-time
About the role
This role is in the office three days a week and a hybrid position. There is no Visa Sponsorship or Visa Transfers for this role. Join a high-impact security engineering team at the forefront of enterprise cryptography, where you'll design, build, and scale critical encryption and key management solutions that protect some of the organization's most sensitive data.
Responsibilities
- Design, build, and scale critical encryption and key management solutions
- Work across Linux, Windows, and automation frameworks to harden systems, optimize performance, and drive secure architecture forward
- Partner with engineering and operations teams to deliver resilient, scalable solutions
- Mentor and develop team members by providing technical guidance, sharing best practices, and fostering a culture of continuous learning and security excellence
Requirements
- 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
- 5+ years of intermediate to advanced level experience with scripting/automation using tools such as: Bash, PowerShell, Python, Ansible, VBScript, or JavaScript, UI path, etc
- 5+ years of Unix/Linux/Windows Systems Administration experience with in-depth knowledge of troubleshooting, OS hardening and OS tuning
- 5+ years of experience with encryption or tokenization technologies
- 3+ years of experience performing builds, administration and/or support of hardware security modules or security appliance devices
- Advanced Knowledge of Cryptographic protocols & algorithms
- Knowledge and understanding of Cryptographic Technologies and Key Management
- Experience with Thales CipherTrust Key Manager and CipherTrust Transparent Encryption (CTE)
- Understanding of (format preserving encryption) FPE, tokenization and TDE (transparent data encryption)
- Experience with Agile Scrum or Kanban methodologies
- Experience with application support in Linux and Windows server environments
- Proven experience with change and incident management practices in medium to large enterprise environments
Qualifications
- Passionate about encryption, key management, and solving sophisticated security challenges in a fast-paced enterprise setting
- Hands-on security engineer with deep expertise in cryptographic protocols, HSMs, and modern data protection technologies
Skills
- Advanced critical thinking, problem solving and technical troubleshooting abilities
- Security certifications such as CISSP, GIAC or equivalent
- Cloud certifications such as AZ-900, MS-900 or equivalent/higher
- Experience with Puppet/Chef/Ansible or similar automation tools
- Knowledge and understanding of banking or the financial services industry
- Ability to coordinate completion of multiple tasks and meet aggressive time frames
Benefits
- Health benefits
- 401(k) Plan
- Paid time off
- Disability benefits
- Life insurance, critical illness insurance, and accident insurance
- Parental leave
- Critical caregiving leave
- Discounts and savings
- Commuter benefits
- Tuition reimbursement
- Scholarships for dependent children
- Adoption reimbursement
Pay
$119,000.00 - $224,000.00
Schedule
This role is in the office three days a week and a hybrid position.