Lead Information Security Engineer

Lead Firewall Automation And Certification Engineer

We are seeking a Lead Firewall Automation and Certification Engineer to join our FirewallDEV team within the Application Hosting – Secure Network Services organization. This role is ideal for a technical leader passionate about network security and automation, with deep expertise in Next-Generation Firewall platforms.

You will play a pivotal role in designing, automating, and maintaining secure network infrastructure across our data centers, enabling secure connectivity to business partners, the public Internet, and cloud providers. This position is central to our transformation efforts—driving automation, improving transparency, and enhancing operational efficiency.

In this role, you will:

• Conduct rigorous testing and certification of next-generation firewalls (NGFWs) to validate performance, security efficacy, compliance with industry standards, and interoperability across diverse network environments.
• Design and implement scalable, secure NGFW architectures across enterprise environments.
• Lead cross-functional teams in planning and delivering firewall-related projects using Agile methodologies.
• Develop automation solutions for firewall provisioning, policy management, and operational tasks using Python, Ansible, and other tools.
• Perform complex firewall certifications, upgrade testing, and developing templated configurations.
• Ensure compliance with security and regulatory requirements in all firewall implementations.
• Analyze performance trends and recommend improvements to firewall operations and automation.
• Collaborate with network and cyber partner teams to educate and collaborate for success.
• Mentor junior engineers and contribute to technical design documentation.

Required Qualifications:

• 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education.
• 3+ years of hands-on experience with NGFW platforms.
• 3+ years of automation experience.
• Strong understanding of firewall policy design, NAT, VPNs, threat prevention features, and templated installations.
• Experience with Python, Ansible, REST APIs, and automation frameworks.

Desired Qualifications:

• Strong networking knowledge - proficiency in TCP/IP, routing, switching, VPNs, and network protocols.
• Experience with testing methodologies - familiarity with performance, functional, interoperability, and security testing frameworks.
• Certifications relevant certifications such as: Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), GIAC Security Essentials (GSEC), Vendor-specific certs (e.g., Palo Alto Networks PCNSE, Fortinet NSE, Cisco CCNP Security).
• Knowledge of industry standards with hands-on experience with test tools proficiency in tools like Ixia, Wireshark, Nmap, and vulnerability scanners.
• Familiarity with automation tools such as Ansible Tower, Terraform, and Git.
• Experience with Agile methodology and CI/CD pipelines (Jenkins, GitLab).
• Knowledge of network security best practices and compliance frameworks.
• Experience in large enterprise environments with complex firewall deployments.
• Excellent verbal, written, and interpersonal communication skills.
• Documentation and reporting skills - ability to produce clear, detailed test plans, procedures, and certification reports.

Job Expectations:

• This position offers a hybrid work schedule.
• This role is not eligible for Visa Sponsorship.

We value equal opportunity. Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic.