Wells Fargo
Senior Information Security Engineer - SIEM Database Activity Logging
Be an Early Applicant
Similar Jobs at Wells Fargo
Fintech • Financial Services
Lead design and delivery of technology solutions for Payment Transformation initiatives, develop best practices, and mentor technical teams.
Top Skills:
Ci/CdGrafanaJ2EeJavaJmsKafkaMicroservicesMongoDBReactSplunkSpring Boot
Fintech • Financial Services
The Senior Infrastructure Operations Engineer leads automation in server management, architects reusable components using IaC, develops APIs, and ensures operational performance through collaboration and mentoring.
Top Skills:
AnsibleAWSAzureGCPJavaKubernetesPythonTerraform
Fintech • Financial Services
The Personal Banker will provide exceptional customer service, assist with account openings, complex transactions, and build relationships through proactive outreach to help customers succeed financially.
About this role:
Wells Fargo is seeking a Senior Security Information & Event Management (SIEM) Engineer to design, implement, and operate database security monitoring and logging solutions at enterprise scale. This role focuses on IBM Guardium for database activity monitoring and Splunk for centralized log ingestion, correlation, and detection across a diverse database ecosystem including MongoDB, PostgreSQL-based platforms, Neo4J, and other distributed data stores. Strong information security fundamentals and deep Splunk engineering experience are essential.
In this role, you will:
Required Qualifications:
Desired Qualifications:
Job Expectations:
Wells Fargo is seeking a Senior Security Information & Event Management (SIEM) Engineer to design, implement, and operate database security monitoring and logging solutions at enterprise scale. This role focuses on IBM Guardium for database activity monitoring and Splunk for centralized log ingestion, correlation, and detection across a diverse database ecosystem including MongoDB, PostgreSQL-based platforms, Neo4J, and other distributed data stores. Strong information security fundamentals and deep Splunk engineering experience are essential.
In this role, you will:
- Engineer and operate IBM Guardium for database activity monitoring and security telemetry
- Design and manage direct-to-Splunk database logging pipelines across multiple platforms
- Own and maintain hundreds to thousands of Splunk knowledge objects, including searches, macros, lookups, dashboards, and alerts
- Develop and improve SIEM detection use cases aligned to threat models, risk scenarios, and regulatory requirements
- Support security incident response, including log analysis, technical investigation, and post-incident root cause analysis
- Develop and maintain relationships with product vendors and other team stakeholders
- Participate in on-call rotation, deployment activities, and SDLC-aligned change management
- Partner with infrastructure, database, application, and security teams to improve the bank's overall security posture
- Provide security consulting and technical guidance for internal engineering teams on medium to large initiatives
- Review, correlate, and analyze security logs to identify threats, anomalies, and control gaps
- Identify security vulnerabilities, perform risk assessments, and recommend remediation strategies
- Design, document, test, and maintain security solutions spanning telemetry, authentication, cloud, and data protection domains
- Contribute to and maintain Jira and Confluence documentation
- Mentor peers and contribute to a culture of continuous improvement and knowledge sharing
- Manage hundreds to thousands of Splunk knowledge objects at scale
- Build automated logging and telemetry processes using configuration, scripting, AI-assisted tooling, and vendor integrations
- Collaborate with domestic and international teams
- Hybrid onsite work model
- Maintain high-quality operational and technical documentation
- Demonstrate a willingness to learn, teach, and continuously improve
Required Qualifications:
- 4+ years of Information Security Engineering experience, or equivalent demonstrated through work experience, training, military experience, or education
- 2+ years of Splunk engineering experience, including search development and knowledge object management
- 2+ years of database activity monitoring experience
- 2+ years of experience designing and implementing Senior Security Information & Event Management SIEM use cases from requirements to production
Desired Qualifications:
- 2+ years of IBM Guardium
- Splunk Enterprise Certified Administrator
- CISSP, CCSP, or similar professional security certification
- Cloud Professional certification
- BA/BS or higher in Computer Science, MIS, or a related field
- Database auditing or database administration experience
- Experience with application security or security architecture
- Scripting experience (e.g., Python, Splunk automation integration, or tooling integration)
- Experience performing impact and risk analysis for complex enterprise systems
- Strong verbal and written communication skills, including technical and business documentation
- Ability to communicate effectively with both technical and non-technical stakeholders
- Proven analytical, troubleshooting, and problem-solving skills
- Ability to work independently while managing competing priorities
Job Expectations:
- Willingness to participate in an on-call rotation and provide after-hours support as needed
- This position is not available for Visa Sponsorship
- This position does require working in a hybrid environment at one of the posted locations.
- There is no relocation available for this position.
Wells Fargo New York, New York, USA Office
150 E 42nd Street, New York, NY, United States, 10017
Wells Fargo New York, New York, USA Office
500 West 33rd Street Manhattan, New York, NY, United States, 10001
What you need to know about the NYC Tech Scene
As the undisputed financial capital of the world, New York City is an epicenter of startup funding activity. The city has a thriving fintech scene and is a major player in verticals ranging from AI to biotech, cybersecurity and digital media. It also has universities like NYU, Columbia and Cornell Tech attracting students and researchers from across the globe, providing the ecosystem with a constant influx of world-class talent. And its East Coast location and three international airports make it a perfect spot for European companies establishing a foothold in the United States.
Key Facts About NYC Tech
- Number of Tech Workers: 549,200; 6% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Capgemini, Bloomberg, IBM, Spotify
- Key Industries: Artificial intelligence, Fintech
- Funding Landscape: $25.5 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Greycroft, Thrive Capital, Union Square Ventures, FirstMark Capital, Tiger Global Management, Tribeca Venture Partners, Insight Partners, Two Sigma Ventures
- Research Centers and Universities: Columbia University, New York University, Fordham University, CUNY, AI Now Institute, Flatiron Institute, C.N. Yang Institute for Theoretical Physics, NASA Space Radiation Laboratory
