Lead Security Encryption Engineer
$119,000–$224,000 year
Hybrid · Dallas, Texas, United States or Raleigh, North Carolina, United States
Job Summary
Lead Security Encryption Engineer role at Wells Fargo, based in multiple U.S. office locations with a hybrid in-office/remote arrangement (office three days a week). Part of an enterprise security engineering team focused on encryption, key management, cryptographic protocols, HSMs, and data protection across Linux/Windows environments. Responsibilities include designing, building, and scaling encryption solutions, hardening systems, optimizing performance, and guiding secure architecture. Mentors and develops other engineers, sharing best practices and fostering security excellence. The role emphasizes collaboration with engineering and operations teams, incident and change management, and delivering resilient security capabilities in a large enterprise. No visa sponsorship is offered for this role. The base pay range is $119,000 to $224,000 with benefits and eligibility for incentives.
Required Qualifications
- 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of work experience, training, military experience, or education
- 5+ years of intermediate to advanced level experience with scripting/automation using tools such as Bash, PowerShell, Python, Ansible, VBScript, or JavaScript, UI path, etc.
- 5+ years of Unix/Linux/Windows Systems Administration experience with in-depth knowledge of troubleshooting, OS hardening and OS tuning
- 5+ years of experience with encryption or tokenization technologies
- 3+ years of experience performing builds, administration and/or support of hardware security modules or security appliance devices
- Advanced Knowledge of Cryptographic protocols & algorithms
- Knowledge and understanding of Cryptographic Technologies and Key Management
- Experience with Thales CipherTrust Key Manager and CipherTrust Transparent Encryption (CTE)
- Understanding of (format preserving encryption) FPE, tokenization and TDE (transparent data encryption)
- Knowledge and understanding of implementing infrastructure upgrades, security patches, version upgrades for systems, appliances and HSM’s
- Experience with Agile Scrum or Kanban methodologies
- Experience with application support in Linux and Windows server environments
- Proven experience with change and incident management practices in medium to large enterprise environments
- Security certifications such as CISSP, GIAC or equivalent
- Cloud certifications such as AZ-900, MS-900 or equivalent/higher
- Knowledge and understanding of implementing infrastructure upgrades, security patches, or version upgrades
- Experience designing, developing and implementing synthetic transactions for the monitoring of applications and/or infrastructure
- Experience with Puppet/Chef/Ansible or similar automation tools
- Knowledge and understanding of banking or the financial services industry
- Ability to coordinate completion of multiple tasks and meet aggressive time frames
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.