TIAA Senior Cybersecurity Cloud Engineer in United States
TIAA is a unique financial partner. With an award-winning track record for consistent performance, TIAA is the leading provider of financial services in the academic, research, medical, cultural and government fields. TIAA has $1 trillion in assets under management (as of 9/30/2018) and offers a wide range of financial solutions, including investing, banking, advice and guidance, and retirement services.
The Cloud Security team is responsible for collaborating and partnering with various Cloud Platform teams and Business Units (BUs) and stakeholders across the organization to build security into the Cloud platforms and applications migrating to Cloud by building defense in depth, security controls protective detective and Response. Controls include and are not limited to security of infrastructure as code, CI-CD pipelines, application & microservices security, data protection, Threat detection, mitigation, investigation and response and other services across the organization.
KEYRESPONSIBILITIES AND DUTIES:
Job Responsibilities include but not limited to:
Plan, mobilize, influence, and drive change in acomplex, highly-matrixed environment
Liaise with an extensive range of businessstakeholders and support them for migration of their applications and servicesto Cloud.
Complement your knowledge with industry trends /best practices to develop governance frameworks, guiding principles, securitycontrols and detailed security design of solutions
Demonstrated information technology/softwaredevelopment experience in large global organizations specific to Cloud securityarchitecture and engineering
Knowledge of designing and implementing CloudServices (e.g., IaaS, PaaS, SaaS, etc.) offered from public cloud serviceproviders (e.g., AWS, Microsoft Azure, Google etc.)
Knowledge of 3 rd Party tools used to secureCloud Services (e.g. IaaS, PaaS, SaaS, etc.)
Knowledge of designing and implementingcontainer platforms including Kubernetes, Docker, etc.
Knowledge of designing and implementing securityservices for cloud, tools, and platforms.
General understanding of data servicesframeworks & stream processing
Experience with a broad set of informationsecurity technologies and processes within cloud environments
Understanding of Secure Software DevelopmentLife Cycle (SSDLC) security requirements
Understanding of enterprise IT security riskassessments and related frameworks (e.g., SOC2, ISO 270XX, NIST CSF, NIST800-XX, COBIT, etc.) and industry best practices
Demonstrated success in leading transformationprograms, driving business value and long term success
Strong influence and negotiating skills with theability to overcome resistance to execute against strategic plans
Excellent command of Cybersecurity organizationpractices, operations risk management processes, principles, architecturalrequirements, engineering threats and vulnerabilities, including incidentresponse methodologies
Understanding of national and internationallaws, regulations, policies and ethics related to financial industrycybersecurity
Should be a cybersecurity expert, keepingtechnical skills current and participating in multiple industry Security forums
Expertise in Agile and can work with at leastone of the common frameworks
Ability to identify network attacks and systemicsecurity issues as they relate to threats and vulnerabilities, with focus onrecommendations for enhancements or remediation
Ideal candidate should be comfortable in fastpaced, results oriented, and innovative environment focused on the creation ofnext generation platforms, cloud solutions, security solutions, and technologycontrols.
3 or more years ITEngineering or IT Security Engineering experience
Experience in Financial,Insurance or Tech industry
Bachelor of Science with6 year
3 years of relevant workexperience preferred.
Certification CISSP orCertified Cloud security professional
Certifications such asAWS certified Security Professional, Google Certified Solution &security professional.
Expertise in Windows,Linux, Python, Terraform, cloud formation etc.
Experience with cloudsecurity strategy, cloud provider ecosystems (Amazon AWS/ MicrosoftAzure).
Hands-on experience in AWS,Google and Azure platforms, including Kubernetes platform services.
Experience with cybertechnologies such as Data Loss Prevention (DLP), Malware detection, Userbehavior analysis (UBA), and Endpoint Detection and Response (EDR) tools.
Experience withNetworking technologies, Zero trust Models and technologies.
Excellent communicationskills, including demonstrated proficiency in clearly communicatingtechnical concepts to non-technical audiences in business terminology.
Hands on deployment andInfrastructure as code experience a plus.
Must be proactive andhave the ability to work independently in a fast paced environment, aswell as the ability to work collaboratively with cross-functional andremote teams.
Familiar with DevOps andAgile methodology
Able to learn quicklyand independently and apply new tools and techniques.
Equal EmploymentOpportunity is not just the law, it’s our commitment. Read more about the .
If you need assistanceapplying due to visually or hearing impaired, please email .
- Requisition ID: 1728405
Post Date: Aug 26, 2020