Head of Third-Party Cyber Training & Wargaming – Senior Lead

About the position About this role: Wells Fargo is seeking an experienced and highly skilled Senior Lead Information Security Analyst to be the Head of Third-Party Cyber Training & Wargaming. This critical role is responsible for enhancing the cyber resilience of our third-party ecosystem. This position will lead the end-to-end design and execution of sophisticated cyber training programs and wargame exercises tailored for our key partners and vendors. These initiatives are designed to test and improve their defensive capabilities, incident response processes, and decision-making under pressure. The Senior Lead will be instrumental in shaping the strategic direction of our third-party cyber readiness program. In this role, you will: Lead the design, development, and execution of a portfolio of cyber training programs and wargame scenarios for third-party partners, ensuring alignment with our strategic risk management objectives. Serve as the primary facilitator for high-fidelity wargame exercises with vendors and partners, guiding participants through complex simulations to foster critical thinking and collaborative problem-solving. Develop and deliver a comprehensive cybersecurity training curriculum for third parties, covering key topics such as secure coding, incident response, and threat awareness. Collaborate with internal cybersecurity experts, risk management teams, and key contacts at third-party organizations to define exercise objectives and training requirements. Develop comprehensive after-action reports and post-exercise analyses, identifying key findings and actionable recommendations to help third parties improve their security posture. Oversee the technical setup and operational readiness of training and wargaming environments, ensuring a seamless and realistic experience for external partners. Contribute to the continuous improvement of the third-party training and wargame program, including methodology refinement, tool selection, and the integration of new best practices. Present program outcomes, risk insights, and strategic recommendations to senior leadership and relevant stakeholders. Manage project timelines, resources, and budgets for all assigned third-party training and wargaming initiatives.

Responsibilities

• Lead the design, development, and execution of a portfolio of cyber training programs and wargame scenarios for third-party partners, ensuring alignment with our strategic risk management objectives.
• Serve as the primary facilitator for high-fidelity wargame exercises with vendors and partners, guiding participants through complex simulations to foster critical thinking and collaborative problem-solving.
• Develop and deliver a comprehensive cybersecurity training curriculum for third parties, covering key topics such as secure coding, incident response, and threat awareness.
• Collaborate with internal cybersecurity experts, risk management teams, and key contacts at third-party organizations to define exercise objectives and training requirements.
• Develop comprehensive after-action reports and post-exercise analyses, identifying key findings and actionable recommendations to help third parties improve their security posture.
• Oversee the technical setup and operational readiness of training and wargaming environments, ensuring a seamless and realistic experience for external partners.
• Contribute to the continuous improvement of the third-party training and wargame program, including methodology refinement, tool selection, and the integration of new best practices.
• Present program outcomes, risk insights, and strategic recommendations to senior leadership and relevant stakeholders.
• Manage project timelines, resources, and budgets for all assigned third-party training and wargaming initiatives.

Requirements

• 7+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 4 years' experience focused on designing and facilitating cyber wargames, developing security training programs, or managing third-party cyber risk, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education.
• Proven leadership and facilitation skills, with experience leading complex initiatives in dynamic environments.
• Deep understanding of offensive and defensive cybersecurity tactics, techniques, and procedures (TTPs).
• Strong analytical skills with the ability to synthesize complex information and translate it into clear, actionable recommendations for diverse audiences.
• Excellent written and verbal communication skills, with the ability to articulate technical concepts to both technical and non-technical stakeholders, including executive leadership.
• Experience in developing comprehensive documentation, including exercise plans, training materials, and after-action reports.
• Ability to work independently, manage multiple priorities, and lead cross-functional teams effectively.

Nice-to-haves

• Experience in a senior or lead role within a third-party risk management, security awareness, or incident response function.
• Certifications such as Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), GIAC certifications (e.g., GCIH, GPEN), or other relevant cybersecurity or wargaming certifications.
• Familiarity with simulation platforms, network emulation tools, and learning management systems (LMS) used in wargaming and training.
• Knowledge of industry best practices for exercise design (e.g., NIST SP 800-84, HSEEP) and third-party risk management frameworks.
• Experience with threat intelligence integration and adversary emulation techniques.

Benefits

• Health benefits
• 401(k) Plan
• Paid time off
• Disability benefits
• Life insurance, critical illness insurance, and accident insurance
• Parental leave
• Critical caregiving leave
• Discounts and savings
• Commuter benefits
• Tuition reimbursement
• Scholarships for dependent children
• Adoption reimbursement

Apply tot his job Apply To this Job