Wells Fargo is back in the office collaborating for fabulous outcomes!
This role is a hybrid position, requiring three days per week in the office.
There is no visa sponsorship or visa transfers for this position.
About this role
Wells Fargo is seeking a Lead micro segmentation Information Security Engineer with a focus on architecture, solution design, and defining segmentation strategy across the enterprise.
In this role, you will work closely with the Principal Engineer to evaluate incoming requirements, determine whether the micro segmentation platform or a combination of tools best meets those needs, and lead the process of developing secure, scalable designs.
You will guide the technical exploration, identify caveats or constraints early, produce design documentation, and create test and rollout plans. You will also collaborate with engineering leads to ensure that the designs you create are successfully implemented and validated.
This position is ideal for someone who combines deep hands‑on segmentation experience with the ability to think strategically, design holistically, and lead through influence.
In this role, you will
Lead design efforts for highly complex micro segmentation security solutions, including architectural patterns, documentation, and solution strategies
Partner with the Principal Engineer to assess incoming requirements, determine platform fit, and identify when segmentation is the appropriate solution or part of a hybrid approach
Conduct deep technical exploration to uncover implementation caveats, risks, or overlooked details before execution begins
Develop detailed test plans, rollout strategies, and validation procedures for segmentation deployments
Serve as the point of contact for micro segmentation design and solution leadership across internal teams
Collaborate with engineering teams to drive implementation of designs, providing guidance, clarification, and design-level oversight
Support automation and orchestration strategies for micro segmentation integrations with CMDB, ServiceNow, CI/CD, and API-driven workflows
Contribute to identifying new tools or features that strengthen the enterprise micro segmentation posture
Utilize subject matter expertise to ensure all designs align with corporate information security policies, standards, and Zero Trust principles
Provide technical leadership to peers and influence decision‑making across the micro segmentation program
Required Qualifications
• 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• experience with Micro-Segmentation security solutions including policy management
• Strong understanding of APIs and proficiency in working with JSON, including the ability to interpret, construct, and troubleshoot queries and payloads in support of automation and integration efforts
• Excellent at technical documentation
Desired Qualifications
• Experience with scripting
• Experience with one or more: Guardicore (Akamai), VMware NSX T, Cisco Secure Workload, Calico/Cilium.
• Hybrid cloud segmentation in Azure/AWS/GCP (NSG/ASG, SG/NACL, tags/labels).
• Service Mesh (Istio/Envoy), Kubernetes NetworkPolicies, OPA/Gatekeeper.
• Python/PowerShell, Terraform/Ansible, Git/GitHub, CI/CD; ServiceNow IntegrationHub.
• Telemetry (NetFlow/IPFIX/eBPF, VPC Flow Logs) and SIEM analytics (Splunk/Sentinel/Elastic; KQL/SPL).
• Understanding of NIST 800 207 Zero Trust and mapping to NIST/CIS controls.
• Experience designing policy simulation/shadow testing and staged rollouts with measurable KPIs.
• Technical Documentation experience
• Experience with Service Now, Jira or similar systems
Job Expectations
• Willingness and Ability to work off hours and occasional weekends to support change activities
• Participation in on call shift
