Lead Information Security Incident Response Specialist

The Lead Information Security Incident Response Specialist investigates and analyzes all response activities related to cyber incidents within the network environment or enclave. This job ensures all networks and systems within the organization are monitored and analyzed to identify and deter potential threats. This job also works across lines of business to inform key team members of cyber threat findings relevant to their business function.


Key Responsibilities and Duties

• Analyzes cyber threat information from a variety of IT Security tools including intrusion detection system alerts firewall and network traffic logs and host system logs.
• Reviews technical feasibility of adopting external cloud based IT platform and infrastructure services within the organization.
• Leads the identification of portions of the organizations IT platform/infrastructure with the highest potential return for cloud deployment.
• Facilitates implementation of the organizations global strategies and initiatives to enhance Information Technology plans operations and procedures.
• Conducts strategic assessments on systems and networks to determine potential cyber threat opportunities.
• Analyzes and reports all events and anomalies in accordance with IT Security directives including initiating responding and reporting discovered events.
• Provides tactical analyses and suggestions for network operations within the organization.
• Performs digital forensic tasks to consistently monitor all designated networks enclaves and systems.
• Lends technical assistance to other incident response and security operation teams including vulnerability assessments and intrusion detection.
• Coaches reviews and delegates work to lower level professionals.
• Leads the cost/benefit evaluation of cloud solutions compared to virtual private networks dedicated hosting and inhouse solutions.
• Leverage AI and machine learning technologies to enhance threat detection threat hunting automate incident analysis and improve response times in cybersecurity incident investigations.

Educational Requirements

• University (Degree) Preferred

Work Experience

• 5 Years Required; 7 Years Preferred

Physical Requirements

• Physical Requirements: Sedentary Work

Career Level
8IC

Required Skills:

• 5 years information security experience.
• Experience in handling security incidents which may include endpoint forensics network forensics malware analysis reviewing raw log files data correlation and analysis of disparate data sources (i.e. firewall network flow IDS system logs).
  

Preferred Skills:

• 5 years information security experience team lead and mentoring experience is preferred.
• Indepth analysis and incident response experience in AWS Azure GCP and/or OCI.
• Bachelors degree in computer science information technology or related field.
• Industryrecognized information security certifications.
• Experience creating new security alerts reports or other monitoring capabilities.
• Experience with performing malware analysis (static properties and dynamic) and reverse engineering.
• Previous experience in other information security roles such as penetration testing vulnerability management threat intelligence content development or risk management.
  
  
  #LIKG1

Anticipated Posting End Date:

Actual base salary may vary based upon but not limited to relevant experience time in role base salary of internal peers prior performance business sector and geographic location. In addition to base salary the competitive compensation package may include depending on the role participation in an incentive program linked to performance (for example annual discretionary incentive programs nonannual sales incentive plans or other nonannual incentive plans).

Company Overview

Every worker deserves a secure retirement. For more than 100 years TIAA has delivered it for millions of people. Founded to help educators retire with dignity today were a marketleading retirement company fueled by worldclass asset management. But were not just another legacy financial services firm. Were fighting harder than ever before for our clients and the many Americans who need us.

Benefits and Total Rewards

The organization is committed to making financial wellbeing possible for its clients and is equally committed to the wellbeing of our associates. Thats why we offer a comprehensive Total Rewards package designed to make a positive difference in the lives of our associates and their loved ones. Our benefits include a superior retirement program and highly competitive health wellness and work life offerings that can help you achieve and maintain your best possible physical emotional and financial wellbeing. To learn more about your benefits please review our Benefits Summary.

Equal Opportunity

We are an Equal Opportunity Employer. TIAA does not discriminate against any candidate or employee on the basis of age race color national origin sex religion veteran status disability sexual orientation gender identity or any other legally protected status.

Read more about your rights and view government notices here.

Accessibility Support

TIAA offers support for those who need assistance with our online application process to provide an equal employment opportunity to all job seekers including individuals with disabilities.

If you are a U.S. applicant and desire a reasonable accommodation to complete a job application please use one of the below options to contact our accessibility support team:

Phone:

Email:

Privacy Notices

For Applicants of TIAA Nuveen and Affiliates residing in US (other than California) click here.

For Applicants of TIAA Nuveen and Affiliates residing in California please click here.

ForApplicants of TIAA Global Capabilities click here.

For Applicants of Nuveen residing in Europe and APAC please click here.