Principal Engineer - Application Security: Secure Development

Wells Fargo

Hybrid

Quick summary

Work type: Hybrid
Location: Charlotte, NCChandler, AZ
Posted: 1 day ago
Closes: Jun 27, 2026

Market check

Salary context

How this pay compares to similar roles

Similar $192k

$134k most similar roles pay here $246k

This listing doesn't post a salary. Most similar roles pay $161,500–$222,000.

Based on 239 similar postings.

Employer

About Wells Fargo

Wells Fargo & Company is one of the largest banks in the United States, providing banking, investment, mortgage, and consumer and commercial finance products and services nationwide. Industry: Banking & Financial Services

Wells Fargo currently has 89 open roles on FindRole.

Listed pay typically runs $149,009–$224,000 across 48 roles with salary data.

Most-posted roles

View all roles at Wells Fargo

At a glance

TL;DR · Principal Engineer - Application Security: Secure Development

Apply Now Log in to save

Wells Fargo is seeking a Principal Engineer to lead a team of Application Security Champions supporting the Technology development teams that deliver centralized shared services. This role involves providing vision, direction, and expertise on implementing innovative business solutions by establishing standards, playbooks, and metrics for secure development practices across non-CIO engineering teams. The Principal Engineer will drive integration of application security controls into CI/CD pipelines, conduct threat modeling and vulnerability assessments, and champion the secure adoption of emerging technologies like AI/LLM-enabled applications. Required skills include deep expertise in secure coding practices, threat modeling, and experience with modern tech stacks such as Java, .NET, Python, JavaScript/TypeScript, Node.js, Go, and cloud-native systems on Azure, AWS, or GCP. Strong hands-on experience with CI/CD pipelines, runtime application protection, and software supply chain security is essential.

Skills

Java .NET Python JavaScript TypeScript Node.js Go CI/CD SAST SCA DAST IaC scanning container security API security testing code review threat modeling runtime protection AI security Azure AWS GCP software supply chain security Zero Trust policy-as-code

What you'll do

Lead a team of Application Security Champions to establish standards and metrics for secure development practices.
Drive integration of security controls into CI/CD pipelines to enable automated detection and remediation of vulnerabilities.
Oversee threat modeling, vulnerability assessments, and secure design reviews for high-risk applications and shared services.
Champion the secure adoption of emerging technologies by defining risk mitigation strategies and guardrails.
Provide hands-on expertise in secure application architecture, coding practices, and vulnerability analysis.

What we're looking for

7+ years of experience in Application Security Engineering
Deep expertise in secure application architecture, coding practices, threat modeling, and common vulnerabilities
Hands-on experience securing modern technology stacks (Java, .NET, Python, etc.)
Experience integrating security into CI/CD pipelines and developer workflows
Expertise in AI security and securing AI-enabled applications
Proven ability to lead and mentor Application Security Champions
Background in software engineering or architecture prior to moving into security

Save