Sr Analyst- Cloud Security Engineer-1

Cyber Cloud Security Associate
Cyber Cloud Security Associate will work Independently support & implement cloud security strategy, standards, procedures, best practices, and DevSecOps. Implement processes and technical controls supporting cloud security standards including integration of cloud services and workloads into corporate cybersecurity services. Ability to identify threat surfaces & identify pro-active & reactive security controls to minimize the overall residual risk.

Key Responsibilities and Duties

• Contribute to a secure/compliant cloud-native service catalog, repositories
• Maintain Compliance across our Production, Development and Corporate systems hosted in the public clouds
• Collaborate with engineering and operations teams toward implementing controls and processes that address identified gaps

Educational Requirements

• University (Degree) Preferred

Work Experience

• 2+ Years Required; 3+ Years Preferred

Physical Requirements

• Physical Requirements: Sedentary Work

Career Level
6IC

§ 3+ years of experience leading complex enterprise-wide integration programs and efforts as an individual contributor.

§ 2+ years of self-leadership experience.

§ 2+ years of experience writing Python, Rego, YAML, GRAPH (GQL)

§ 2+ years of maintaining a CSPM and SSPM tool that assess, detect, and mitigate misconfigurations & vulnerabilities in the cloud. Preferred tools Adaptive shield, Reco.ai, Wiz.io, Sysdig, AWS Config, etc.

§ 2+ years of experience working with services in AWS, GCP, OCI, and Azure.

§ 2+ years of experience working with Terraform

§ Provides operations and engineering support for critical security systems and services including servers, endpoint security, computer forensics, vulnerability/penetration assessment/mitigation, and security event management.

§ Leads the cost/benefit evaluation of cloud solutions compared to virtual private networks, dedicated hosting, and in-house solutions.

§ Reviews technical feasibility of adopting external cloud based IT platform and infrastructure services within the organization.

§ Leads the identification of portions of the organization's IT platform/infrastructure with the highest potential return for cloud deployment.

§ Facilitates implementation of the organization's global strategies and initiatives to enhance Information Technology plans, operations and procedures.

§ Ensures the execution of vulnerability analysis and exploitation of applications, operating systems and networks.

§ Reports identified intrusion or incident paths and methods discovered through testing and evaluation procedures.

§ Designs, develops and implements countermeasures, systems integration and tools specific to cyber and information operations.

§ Resolves and documents complex malware and intrusion issues within the system as they occur.

§ Functions as an internal information security consultant on the standards, complex issues and best practices for the organization.

§ Conducts testing and analysis of complex software systems to determine both the functionality and intent of the systems.

§ Communicates with cybersecurity risk and security operation teams to enhance the overall security posture of the enterprise.

§ Coaches, reviews and delegates work to lower level professionals to enhance their knowledge and performance related to information technology (IT) Security.

Related Skills

Accountability, Adaptability, Business Continuity Planning, Cloud Computing Security, Collaboration, Communication, Compliance, Consultative Communication, Cybersecurity, Detail-Oriented, General Risk Management, Network Security, Prioritizes Effectively

_____________________________________________________________________________________________________

Company Overview

TIAA Global Capabilities was established in 2016 with a mission to tap into a vast pool of talent, reduce risk by insourcing key platforms and processes, as well as contribute to innovation with a focus on enhancing our technology stack. TIAA Global Capabilities is focused on building a scalable and sustainable organization , with a focus on technology , operations and expanding into the shared services business space.

 
Working closely with our U.S. colleagues and other partners, our goal is to reduce risk, improve the efficiency of our technology and processes and develop innovative ideas to increase throughput and productivity.

We are an Equal Opportunity Employer. TIAA does not discriminate against any candidate or employee on the basis of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other legally protected status.

Accessibility Support

TIAA offers support for those who need assistance with our online application process to provide an equal employment opportunity to all job seekers, including individuals with disabilities.

If you are a U.S. applicant and desire a reasonable accommodation to complete a job application please use one of the below options to contact our accessibility support team: 

Phone: (800) 842-2755

Email: accessibility.support@tiaa.org

Privacy Notices

For Applicants of TIAA, Nuveen and Affiliates residing in US (other than California), click here.

For Applicants of TIAA, Nuveen and Affiliates residing in California, please click here.

For Applicants of TIAA Global Capabilities, click here.

For Applicants of Nuveen residing in Europe and APAC, please click here.