TIAA Lead Cybersecurity Manager in CHARLOTTE, North Carolina
As long as there are people who make the world a better place, we'll keep making a difference for them. Since 1918, it has been TIAA's mission to serve those who serve others. It is this mission and the values we embrace that make us a different kind of financial services organization.
When you work here at TIAA, you're not just in it for yourself. You are part of something bigger. A collective mission to make a difference - a collective mission we make our own.
To be difference makers.
For more information about TIAA, .
The Security Technology Engineering team is responsible for collaborating and partnering with various Business Units (BUs) and stakeholders across the organization to manage external and insider threat detection, mitigation, investigation and response efforts across the organization. The Lead Info Security Manager will participate in the activities of a small, expert team that develops robust technical solutions and advanced analytics to enable preventive threat detection efforts.
KEY RESPONSIBILITIES AND DUTIES:
Communicate the value of information technology (IT) security throughout all levels of the organization stakeholders.
Acquire and manage the necessary resources, including leadership support, financial resources, and key security personnel, to support information technology (IT) security goals and objectives and reduce overall organizational risk.
Lead and align information technology (IT) security priorities with the security strategy
Ensure that cybersecurity requirements are integrated into the continuity planning for that system and/or organization(s).
Track audit findings and recommendations to ensure that appropriate mitigation actions are taken.
Interpret patterns of noncompliance to determine their impact on levels of risk and/or overall effectiveness of the enterprise’s cybersecurity program.
Manage threat or target analysis of cyber defense information and production of threat information within the enterprise.
Monitor and evaluate the effectiveness of the enterprise's cybersecurity safeguards to ensure that they provide the intended level of protection.
Interpret and/or approve security requirements relative to the capabilities of new information technologies.
Manage the monitoring of information security data sources to maintain organizational situational awareness.
Participate in an information security risk assessment during the Security Assessment and Authorization process.
Recognize a possible security violation and take appropriate action to report the incident, as required.
Prepare, distribute, and maintain plans, instructions, guidance, and standard operating procedures concerning the security of network system(s) operations.
Identify security requirements specific to an information technology (IT) system in all phases of the system life cycle.
Support necessary compliance activities (e.g., ensure that system security configuration guidelines are followed, compliance monitoring occurs).
Lead and oversee information security budget, staffing, and contracting.
Ensure that all acquisitions, and outsourcing efforts address information security requirements consistent with organization goals.
Continuously validate the organization against policies/guidelines/procedures/regulations/laws to ensure compliance.
Forecast ongoing service demands and ensure that security assumptions are reviewed as necessary.
7 + years of experience in Information Security or Information Technology
3+ years of experience in managing a team.
2+ years of working experience in cloud technologies such as AWS, ASURE.
3+ years of experience in writing requirements for security technologies
Security certifications such as CISSP, AWS Security, SANS, etc.
Excellent verbal, written, and interpersonal communication skills.
Ability to provide strong customer service.
Equal Employment Opportunity is not just the law, it’s our commitment. Read more about the .
If you need assistance applying due to being visually or hearing impaired, please email .
We are an Equal Opportunity/Affirmative Action Employer. We will consider all qualified applicants for employment regardless of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other legally protected status.
- Requisition ID: 1722776
Post Date: Oct 13, 2019