Lead DLP Content Development Information Security Engineer

About this role:
Wells Fargo is seeking a Lead DLP Content Development Information Security Engineer with deep expertise in Data Loss Prevention (DLP) policy authoring and content development. This role is responsible for designing, authoring, testing, and tuning DLP rules that protect sensitive data across email, endpoints, web, and SaaS/collaboration channels. The ideal candidate translates business and regulatory requirements into precise detection logic, continuously improves signal quality, and produces clear technical documentation and stakeholder communications.
This role sits at the intersection of engineering, risk, and operations, partnering closely with Information Protection, Incident Response, Legal, Risk, and platform teams to implement effective, scalable DLP controls.
In this role, you will:

• Author, maintain, and optimize DLP rules and policies using techniques such as:
  • Regular expressions
  • Keyword and dictionary-based detection
  • Exact Data Match (EDM) / Indexed Data Match (IDM)
  • Document fingerprinting
  • Machine-learning classifiers
  • Classification labels and metadata
• Translate business requirements, regulatory obligations, and risk scenarios into:
  • Detection logic
  • Comprehensive test cases
  • Promotion criteria (monitor → prevent)
• Conduct technical investigations of security events and incidents, including post-incident analysis and digital forensics, to identify root causes and recommend long-term mitigation strategies.
• Continuously tune DLP policies to reduce false positives and negatives using telemetry, triage feedback, and controlled experimentation, measure and report precision, recall, and block efficacy.
• Manage DLP policy-as-code artifacts using version control, peer review, and change-management processes, maintaining traceability from requirement to implementation.
• Develop and maintain:
  • Operational runbooks
  • Exception and release-code workflows
  • User-facing guidance and FAQs
  • Release notes for policy updates and changes
• Partner with DLP operations and Incident Response teams to:
  • Triage alerts and events
  • Analyze trends and root causes
  • Drive corrective actions with data owners and application teams
• Define, track, and report key performance and risk indicators (KPIs/KRIs), including alert volumes, false-positive rates, channel coverage, and policy maturity.
• Support audits and regulatory exams by preparing evidence, maintaining documentation, and supporting quarterly and annual reviews.
• Align DLP rules and enforcement with Wells Fargo's information classification and labeling program, ensuring consistent use of tags and labels in policy conditions.
• Serve as a subject matter expert for:
  • SaaS and application security reviews
  • AppMail and data-egress use cases
  • Secure data-sharing controls
• Collaborate cross-functionally with Information Protection, Risk, Legal, Messaging & Collaboration, Endpoint, and Cloud teams to safely deploy and evolve controls.
• Mentor peers and contribute to standards, reusable patterns, and best practices for DLP engineering and security content development.

Required Qualifications:

• 5+ years of Engineering experience, or equivalent demonstrated through work experience, training, military service, or education
• 5+ years of experience in information protection, DLP engineering, or security content development
• Hands-on experience authoring and managing policies on one or more enterprise DLP platforms, such as:
  • Microsoft Purview
  • Broadcom (Symantec) DLP
  • Forcepoint
  • Proofpoint
  • Zscaler
  • or equivalent technologies
• Strong expertise in regex and pattern-matching techniques, with working knowledge of:
  • EDM/IDM
  • Sensitive data types (PII, PHI, PCI)
  • Data classification and labeling
• Familiarity with modern collaboration and productivity platforms, including:
  • Microsoft 365 (Exchange, SharePoint, OneDrive, Teams)
  • and/or Google Workspace
• Scripting and query proficiency (PowerShell, SQL, and/or Python) and experience working in Git-based version control and CI/CD workflows
• Excellent written communication and documentation skills, with the ability to communicate effectively to both technical and non-technical audiences

Desired Qualifications:

• Experience in financial services or other highly regulated industries, with familiarity with:
  • NIST 800-53 / 800-171
  • ISO/IEC 27001
  • Data privacy and protection requirements
• Knowledge of endpoint DLP, CASB/SSE, secure web gateways, email security, OCR, and document fingerprinting technologies
• Background in exception governance and release-code processes, balancing risk exposure, business needs, and user experience
• Relevant certifications such as:
  • SC-400 or SC-100
  • CISSP, CCSP
  • GIAC

Job Expectations:

• Ability to travel up to 10% of the time
• Ability to work in a fast-paced, high-demand environment while balancing multiple priorities.
• This position offers a hybrid work schedule
• This position is not eligible for Visa sponsorship
• Possible up to 10% travel

Locations:

• 1525 WT Harris Blvd, Charlotte, North Carolina
• 300 South Brevard, Charlotte, NC
• 2600 S Price Rd, Chandler, Arizona
• 194 Wood Ave S, Iselin, NJ
• 550 4th St, Minneapolis, MN
• 333 Market St, San Francisco, CA
• 1302 El Camino Menlo Park, CA

Pay Range
Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to demonstrated examples of prior performance, skills, experience, or work location. Employees may also be eligible for incentive opportunities.
$119,000.00 - $224,000.00
Benefits
Wells Fargo provides eligible employees with a comprehensive set of benefits, many of which are listed below. Visit Benefits - Wells Fargo Jobs for an overview of the following benefit plans and programs offered to employees.

• Health benefits
• 401(k) Plan
• Paid time off
• Disability benefits
• Life insurance, critical illness insurance, and accident insurance
• Parental leave
• Critical caregiving leave
• Discounts and savings
• Commuter benefits
• Tuition reimbursement
• Scholarships for dependent children
• Adoption reimbursement

Posting End Date:
4 Feb 2026
* Job posting may come down early due to volume of applicants.
We Value Equal Opportunity
Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic.
Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements.
Applicants with Disabilities
To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo .
Drug and Alcohol Policy
Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more.
Wells Fargo Recruitment and Hiring Requirements:
a. Third-Party recordings are prohibited unless authorized by Wells Fargo.
b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.