Senior Lead Business Resiliency Exercise Consultant

Enterprise Exercise Professional

Wells Fargo is seeking a seasoned and strategic exercise professional with a proven track record in designing, executing, and evaluating high-impact enterprise exercises. This role emphasizes a comprehensive approach to operational resilience, with a focus on Cybersecurity, Enterprise Critical Service / Products, and Third-Party Provider (TPP) risk. We are looking for an innovative exercise leader who can integrate business, technology, and operational requirements into enterprise-wide exercises that rigorously test and enhance critical capabilities, decision-making, response readiness, and recovery strategies.

In this role, you will :

• Lead the design and execution of enterprise-wide cyber and operational resilience exercises, ensuring alignment with the company's strategic objectives.
• Develop and implement a comprehensive exercise framework that integrates cybersecurity, enterprise-critical services / products, and third-party provider (TPP) risk domains to validate business continuity and operational resilience capabilities across the enterprise.
• Own the end-to-end lifecycle of enterprise exercises, including design, development, facilitation, and evaluation, with a focus on high-impact scenarios that test systemic risk exposure and organizational readiness across cyber, enterprise-critical services / products, and third-party ecosystems.
• Drive strategic planning and maturity roadmap development to continuously enhance the organization's resilience posture, including the validation of continuity capabilities for services delivered by internal teams and external third parties, with a strong emphasis on cybersecurity and enterprise-critical operations.
• Design and manage Master Scenario Event Lists (MSELs), injects, control elements, and evaluation criteria for operations-based exercises that simulate real-world disruptions across cyber, business, and third-party domains.
• Facilitate cross-functional, discussion-based exercises involving key stakeholders such as Enterprise Business Resiliency Leadership, Resiliency Leads, Business Owners, Line of Business Relationship Managers, Supplier Management, and external service providers, with scenarios that span cyber threats, enterprise-critical services, and third-party dependencies.
• Lead post-exercise analysis and debriefs, guiding participants in identifying gaps, vulnerabilities, and key findings, and translating these into actionable recommendations across cyber, enterprise-critical, and third-party domains.
• Produce high-quality, executive-level facilitation guides, briefings, and supplemental materials using Microsoft Office tools (Word, PowerPoint, etc.)
• Generate comprehensive After-Action Reports (AARs) that capture lessons learned, strategic insights, and prioritized recommendations to strengthen enterprise resilience across cybersecurity, critical services / products, and third-party operations.
• Present findings and strategic recommendations to senior leadership, highlighting opportunities for investment and improvement across cyber, operational, and third-party domains.
• Ensure timely delivery and quality of all exercise documentation and artifacts, meeting internal standards and regulatory expectations.
• Lead follow-up workshops or targeted exercises to address critical findings and reinforce resilience capabilities across cyber, enterprise-critical services / products, and third-party providers.
• Analyze exercise outcomes to identify enterprise-wide resilience risks, and proactively inform enhancements to cybersecurity, critical service, and TPP resilience strategies.
• Serve as a trusted advisor to business and technology leaders, providing insights and recommendations that drive performance and resilience across the enterprise, with a focus on cyber, enterprise-critical, and third-party domains.
• Support Risk and Control Self-Assessments (RCSAs) by identifying and evaluating risks and controls related to cyber, operational, and third-party resilience.
• Respond to internal audits and regulatory inquiries related to enterprise exercises, ensuring transparency and compliance with resilience standards across cyber, enterprise-critical services / products, and third-party testing.
• Lead the resolution of complex business execution challenges, delivering scalable, long-term solutions that enhance the effectiveness of the enterprise exercise program across all three domains.
• Provide strategic direction and thought leadership in the development of a robust, cross-organizational exercise capability that spans internal operations, cybersecurity, enterprise-critical services / products, and third-party dependencies.
• Facilitate decision-making and implementation of exercise strategies through regular engagement with cross-functional teams and leadership forums.
• Engage with stakeholders across all levels of the organization, serving as a subject matter expert in enterprise resilience, cybersecurity preparedness, and third-party risk management.
• Contribute to the development of a strategic scenario library, ensuring alignment with emerging threats, evolving business priorities, and regulatory expectations across cyber, enterprise-critical, and third-party domains.

Required Qualifications :

Desired Qualifications :

Job Expectations :