TIAA Senior Cybersecurity Threat Hunting Specialist in Charlotte, North Carolina
Senior Cybersecurity Threat Hunting Specialist
The Cybersecurity Threat Hunting Specialist reports to the Insider Threat Manager and works to uncover threats or hidden events within the enterprise network. Under limited supervision, this job uses defensive measures and information collected from a variety of sources to protect the company's data, information systems and networks. This job also works to improve the existing protection systems by continually monitoring the internal control environment. This specialist will identify potential data leaks and determine if an incident constitutes a violation of policies and standards.
Key Responsibilities and Duties
Determines potential threats, anomalous or malicious activities to network resources by examining and analyzing network traffic.
Conducts internal User Behavior Analysis on a day to day basis.
Researches and analyzes various source data sets and identified malicious activities to analyze the root cause.
Discovers current weaknesses and exploitation methods, along with the residual effects on IT systems and information through root-cause analysis.
Reviews reports and documents regarding security incidents details and outcomes.
Participates in troubleshooting problems and recommending vulnerability conditions.
Partner with security architecture, network engineering and desktop delivery on implementing and improving security controls
Monitors the internal threat environment on a continual basis to best protect the organization's assets.
3 Years Required; 5 Years Preferred
University (Degree), Preferred
- Physical Requirements: Sedentary Work
- 3 or more years of experience in Cybersecurity or Information Technology operations
Possess one or more of the following certifications: GSEC, CISSP, CySA+, Security+, CEH, CFE or similar information security certifications
Experience with an Incident Management Tool (RSA Archer, ServiceNow)
Experience with user activity monitoring tools such as ObserveIT, Veriato 360 or similar product
Experience with databases, SQL, and data visualization tools
Experience with Windows, MacOS, Linux, iOS
Working knowledge of reviewing Windows, MacOS, or *NIX logs
Insider Threat program experience as a focus area within Cybersecurity
Experience working with at least one of the following SIEM or UBA tools (Splunk, ArcSight, LogRhythm, FireEye, CrowdStrike, Exabeam).
Working knowledge of Data Loss Prevention controls (e.g. Symantec, McAfee, Websense)
Mix of intelligence, threat analysis, investigative experience, and technical skills related to cyber security and insider threats
Proven ability to self-direct project outcomes, with minimal supervision, to achieve program goals.
Ability to navigate and work effectively across a complex organization.
Experience in regulated industry (financial, medical, etc)
Potential Salary: $106,500.00 USD
Actual base salary may vary based upon, but not limited to, relevant experience, time in role, base salary of internal peers, prior performance, business sector, and geographic location. In addition to base salary, the competitive compensation package may include, depending on the role, participation in an incentive program linked to performance (for example, annual discretionary incentive programs, non-annual sales incentive plans, or other non-annual incentive plans).
TIAA is the leading provider of financial services in the academic, research, medical, cultural and government fields. We offer a wide range of financial solutions, including investing, banking, advice and education, and retirement services.
Benefits and Total Rewards
The organization is committed to making financial well-being possible for its clients, and is equally committed to the well-being of our associates. That’s why we offer a comprehensive Total Rewards package designed to make a positive difference in the lives of our associates and their loved ones. Our benefits include a superior retirement program and highly competitive health, wellness and work life offerings that can help you achieve and maintain your best possible physical, emotional and financial well-being. To learn more about your benefits, please review our Benefits Summary (https://www.tiaa.org/public/pdf/benefits-at-a-glance.pdf) .
We are an Equal Opportunity/Affirmative Action Employer. We consider all qualified applicants for employment regardless of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other protected status.
Read more about the Equal Opportunity Law here (https://www.dol.gov/general/topics/posters) .
TIAA offers support for those who need assistance with our online application process to provide an equal employment opportunity to all job seekers, including individuals with disabilities.
If you are a U.S. applicant and desire a reasonable accommodation to complete a job application please use one of the below options to contact our accessibility support team:
Phone: (800) 842-2755
For residents of California, please click here (https://www.tiaa.org/public/tiaa-nuveen-ca-privacy) to access the TIAA CA Applicant Privacy Notice.
For residents of the EU / UK, please click here (https://www.tiaa.org/public/nuveen-eu-uk-privacy) to access the EU / UK Pre-employment Notice.
For all other residents, click here (http://www.tiaa.org/public/tiaa-nuveen-privacy) to access the Applicant Privacy Notice.
TIAA started out over 100 years ago to help ensure teachers could retire with dignity. Today, many people who work at not-for-profits rely on our wide range of financial products and services to support and strengthen their financial well-being.