This is a Non-Employee Contingent Worker Role providing services for TIAA’s family of companies and will be employed by TIAA’s preferred 3rd Party Supplier. As a Non-Employee CW, perform a variety of moderately complex business planning, support, and project-related duties. Demonstrates an exceptional standard of quality and holds themselves accountable to achieving excellent results.
This role is located onsite at our TIAA office in Charlotte, NC, USA but will currently be remote.
The anticipated term of this engagement will be 10 months. This term could be extended based on company business needs.
CW-Cyber Security Engineer III
The Senior Information Security Engineer conducts network and software vulnerability assessments and testing by utilizing reverse engineering techniques. This job tests the current state of the information security architecture and provides improvement recommendations by gathering key insights found from testing and analyzing the current systems and networks. This job also evaluates system security configurations and performs root cause analysis to determine how to provide optimal IT security for the organization.
Key Responsibilities and Duties
- Executes vulnerability analysis and exploitation of applications, operating systems and networks.
- Designing security models, reviewing and approving security configuration and installation of firewall, VPN, routers, IDS scanning technologies, and servers.
- Identifies intrusion or incident path or method through testing and evaluation procedures.
- Overseeing security awareness programs; educating and communicating to staff about information security polices, procedures, and practices.
- Contributes to the design, development and implementation of countermeasures, systems integration and tools specific to cyber and information operations.
- Monitoring industry security updates, technologies and best practices to improve security management.
- Resolves complex malware and intrusion issues within the system as they occur.
- Monitors industry security updates, technologies and practices on a continual basis to improve overall security management.
- Serves as an internal information security consultant on the standards, complex issues and best practices for the organization.
- Performs testing and analysis of complex software systems to determine both the functionality and intent of the systems.
- Builds and maintains operational and configuration documentation and creates and maintains diagrams.
- Works with Cybersecurity Risk and Security Operation teams to enhance the overall security posture of the enterprise.
Educational Requirements
- University (Degree) Preferred
Work Experience
- 3+ Years Required; 5+ Years Preferred
Physical Requirements
- Physical Requirements: Sedentary Work
Career Level
7IC
The CW Security Engineer III designs, implements, and maintains network security solutions, tools, and technologies leveraged by security operations for detection, response, prevention, and mitigation of security threats, attacks, vulnerabilities, and risk. This role is primarily targeted at support of Firewall/IDS/IPS controls for TIAA Bank , but may also be tasked with supporting other network security solutions such as proxies or network access control. This role will, with the guidance of the team lead, develop, implement and tune IDS/IPS and firewall control policies, as well as support security operations in the detection and response function.
Key Responsibilities and Duties
- Designs, implements, and maintains security tools and solutions specifically around security tools such as firewalls, intrusion detection systems (IDS), and intrusion protection systems(IPS).
- Support security operations in detection and response functions in support for firewall, IDS, and IPS
- Identifies issues and potential enhancements to security solutions and works with vendor and operational partners to correct issues and implement enhancements.
- Consults with control owners and risk partners to ensure tools and solutions are providing the required security controls.
- Monitors industry security updates, technologies and best practices on a continual basis to improve overall security management.
- Serves as an internal information security consultant on security solution designs and capabilities for the organization.
- Performs testing and analysis of complex software systems to determine both the functionality and intent of the systems.
- Builds and maintains operational and configuration documentation and creates and maintains diagrams.
- Works with Cybersecurity Risk and Operations teams to enhance the overall security posture of the enterprise.
Required Skills
- 5+ years of IT engineering experience with at least 3 years in Cybersecurity
- 2+ years of network security experience
- Experience with next generation firewall solutions and/or IDS/IPS
Preferred Skills
- Bachelor’s Degree in Cybersecurity, Information Technology, or other STEM degree.
- General information security certifications (CISSP, GSEC, etc)
- Technical information security and related network certifications (CCNA, GIAC, AWS, vendor, etc)
- Experience in financial services or other highly regulated industry
- Experience with development and management of firewall and threat policies in next gen firewalls
- Experience with web filtering solutions (proxies, firewall URL filters)
- Experience with network access control and network segmentation solutions
- Experience with packet capture and aggregation platforms
- Experience with cloud security, cloud provider ecosystems (Amazon AWS/Microsoft Azure)
- Experience in developing automation to improve efficiency
- Strong expertise with network security systems and design
- Highly proficient in engineering and debugging of complex IT systems
- Experience with Splunk, ArcSight and/or ELK platform
- Ability to work across functional groups to implement and maintain network security solutions
Start Date: 21-Feb-2022
End Date: 31-Dec-2022
Travel Required: No
Potential Salary: $120.80 USD
Actual base salary may vary based upon, but not limited to, relevant experience, time in role, base salary of internal peers, prior performance, business sector, and geographic location.
_____________________________________________________________________________________________________
COVID-19 Vaccination
TIAA requires all U.S. employees to be fully vaccinated against COVID-19 and provide documentation of full vaccination, unless you qualify for an accommodation as determined by TIAA consistent with applicable law.
Equal Opportunity
We are an Equal Opportunity/Affirmative Action Employer. We consider all qualified applicants for employment regardless of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other protected status.
Read more about the Equal Opportunity Law here.
Accessibility Support
TIAA offers support for those who need assistance with our online application process to provide an equal employment opportunity to all job seekers, including individuals with disabilities.
If you are a U.S. applicant and desire a reasonable accommodation to complete a job application please use one of the below options to contact our accessibility support team:
Phone: (800) 842-2755
Email: [email protected]
Privacy Notices
For residents of California, please click here to access the TIAA CA Applicant Privacy Notice.
For residents of the EU / UK, please click here to access the EU / UK Pre-employment Notice.
For all other residents, click here to access the Applicant Privacy Notice.
More Information
- Salary Offer $120.80 USD
- Address Jacksonville, FL, USA
- Experience Level Senior
- Total Years Experience 5-10