About this role:

Wells Fargo is seeking a Senior Lead Digital Product Owner within the Cybersecurity Information Protection domain. This role reports to the Cybersecurity Governance Product Management Director and partners closely with the Head of Information Protection to execute the enterprise Information Protection and Data Security Posture Management (DSPM) strategy.

The Senior Lead Digital Product Owner is delivery-focused and responsible for translating strategic direction, policy requirements, and risk priorities into shipped capabilities—driving backlog execution, coordinated roadmaps, and measurable outcomes across discovery, scanning, classification, labeling, enforcement, and remediation workflows. The role works directly with engineering, architecture, privacy, compliance, legal, risk, and lines of business to deliver scalable, auditable, and compliant solutions across structured and unstructured data in on-prem, cloud, SaaS, and M365 environments.

In this role, you will

Lead Delivery and Execution

• Partner with the Head of Information Protection to operationalize strategy through executable roadmaps, delivery plans, and prioritized backlogs that align to policy and risk outcomes.

• Serve as the primary interface between Information Protection leadership and engineering teams, ensuring strategic intent is translated into clear technical requirements, delivery scope, and release milestones.

• Own end-to-end delivery for Information Protection scanning and governance capabilities—from discovery and design through build, rollout, adoption, and sustainment.

• Drive cross-team coordination to manage dependencies, unblock delivery, and ensure consistent implementation across platforms and lines of business.

• Lead investment planning and quarterly delivery execution across the Information Protection product area, tracking progress, risks, and outcomes through governance routines.

Information Protection & DSPM Tooling Enablement

• Deliver and continuously enhance enterprise DSPM and scanning capabilities, including data discovery, scanning, classification, validation, labeling, and remediation workflows across on-prem, cloud, SaaS, and M365 environments.

• Serve as product owner for Information Protection tooling platforms, including Securiti.ai (enterprise discovery/classification/governance) and Microsoft Purview (M365 labeling, DLP, and enforcement), or equivalent tools.

• Define onboarding patterns, coverage targets, sustainability models, and operating procedures that enable scalable scanning across technology stacks and business units.

• Establish and mature enterprise workflows for triage, misclassification findings, false positive/negative handling, exception management, remediation orchestration, and audit evidence generation.

Policy Alignment & Control Operationalization

• Translate data protection policy and regulatory requirements into deliverable product features, workflows, and measurable controls.

• Partner with privacy, compliance, legal, and risk teams to implement regulatory obligations (e.g., GDPR, HIPAA, SOX, PCI DSS) through automated discovery, classification, labeling, and enforcement capabilities.

• Drive consistent control execution across environments by standardizing definitions, control mappings, configuration baselines, and validation approaches.

• Ensure solution delivery supports auditability, evidentiary artifacts, and reporting requirements without creating undue operational burden for application and data owners.

Product Management & Agile Delivery

• Plan and manage the feature backlog by writing and refining epics, features, and user stories in Jira, partnering with scrum teams to deliver iteratively and remove impediments.

• Lead discovery and prioritization using voice-of-customer input from application teams, data owners, and governance partners—balancing usability with enterprise control needs.

• Establish, communicate, and monitor goals and performance indicators (OKRs/KPIs), using data to drive delivery decisions and continuous improvement.

• Apply process optimization and automation to reduce manual effort, improve consistency, and scale enterprise scanning, classification quality, and remediation execution.

Metrics, Reporting & Outcomes

• Provide defensible reporting and executive-ready updates on:

– discovery/scanning coverage and adoption

– classification accuracy, drift, and validation outcomes

– remediation SLAs, backlog health, and risk reduction progress

– residual risk trends and control performance

• Build operational transparency through dashboards and recurring stakeholder reviews that enable prioritization, accountability, and continuous improvement.

Required Qualifications

• 7+ years of product management or product ownership experience (or equivalent demonstrated through work experience, training, military experience, or education)

• 3+ years of experience with Agile practices and frameworks, with strong Jira proficiency (product owner or product manager role)

Desired Qualifications

• Experience delivering enterprise Information Protection, DSPM, data governance, or data protection programs at scale

• Hands-on experience with data discovery, scanning, classification, labeling, and/or DLP platforms (e.g., Securiti.ai, Microsoft Purview, or similar tools).

• Deep understanding of policy- and regulatory-driven data protection requirements (e.g., GDPR, HIPAA, SOX, PCI DSS) and how to translate them into operational controls

• Experience working across multiple cyber domains (Information Protection, Privacy, IAM, Cloud Security, Application Security, Cyber Defense, Third-Party Risk)

• Strong executive communication skills; ability to align stakeholders with competing priorities and drive decisions in a matrixed environment

• Demonstrated risk management leadership and experience improving enterprise risk posture through technology enablement and governance

• Comfort operating in ambiguity with proven ability to facilitate complex cross-functional discussions and drive delivery outcomes

Job Expectations

• Ability to travel up to 10% of the time.

• Ability to work a hybrid schedule – 3 days per week on-site/in office and 2 days per week remote

• This position is not eligible for Visa sponsorship

Locations:

• 300 South Brevard, Charlotte, NC

• 2600 S Price Rd, Chandler, Arizona

• 550 4th St, Minneapolis, MN

• 401 Las Colinas Blvd. W, Irving, TX

Pay Range

Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to demonstrated examples of prior performance, skills, experience, or work location. Employees may also be eligible for incentive opportunities.

Posting End Date:

*Job posting may come down early due to volume of applicants.

We Value Equal Opportunity

Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic.

Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit’s risk appetite and all risk and compliance program requirements.

Applicants with Disabilities

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo.

Drug and Alcohol Policy

Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more.

Wells Fargo Recruitment and Hiring Requirements:

a. Third-Party recordings are prohibited unless authorized by Wells Fargo.

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.